Package flex.messaging.security

Source Code of flex.messaging.security.OracleLoginCommand

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
/*************************************************************************
*
* ADOBE CONFIDENTIAL
* __________________
*
*  Copyright 2002 - 2007 Adobe Systems Incorporated
*  All Rights Reserved.
*
* NOTICE:  All information contained herein is, and remains
* the property of Adobe Systems Incorporated and its suppliers,
* if any.  The intellectual and technical concepts contained
* herein are proprietary to Adobe Systems Incorporated
* and its suppliers and may be covered by U.S. and Foreign Patents,
* patents in process, and are protected by trade secret or copyright law.
* Dissemination of this information or reproduction of this material
* is strictly forbidden unless prior written permission is obtained
* from Adobe Systems Incorporated.
**************************************************************************/
package flex.messaging.security;

import oracle.security.jazn.JAZNConfig;
import oracle.security.jazn.callback.JAZNCallbackHandler;

import java.security.Principal;
import java.util.*;
import javax.security.auth.callback.*;
import javax.security.auth.login.*;

/**
* A Oracle specific implementation of LoginCommand to manually authenticate
* a user with the current web-app container.
*/
public class OracleLoginCommand extends AppServerLoginCommand
{
    /** {@inheritDoc} */
    public Principal doAuthentication(String username, Object credentials)
        throws SecurityException
    {
        OracleUser user;
        try
        {
            CallbackHandler callbackHandler = new JAZNCallbackHandler
                (JAZNConfig.getJAZNConfig(), null,
                 username, extractPassword(credentials));
            LoginContext context = new LoginContext
                ("oracle.security.jazn.oc4j.JAZNUserManager", callbackHandler);
            user = new OracleUser(context);
        }
        catch (LoginException loginException)
        {
            throw wrapLoginException(loginException);
        }
        return user;
    }

    /** {@inheritDoc} */
    public boolean doAuthorization(Principal principal, List roles)
        throws SecurityException
    {
        boolean result = false;
        if (principal instanceof OracleUser)
        {
            OracleUser user = (OracleUser) principal;
            result = user.isMemberOf(roles);
        }       
        return result;
    }

    /** {@inheritDoc} */
    public boolean logout(Principal principal) throws SecurityException
    {
        boolean result = false;
        if (principal instanceof OracleUser)
        {
            OracleUser user = (OracleUser) principal;
            try
            {
                user.logout();
                result = true;
            }
            catch (LoginException loginException)
            {
                throw wrapLoginException(loginException);
            }
        }
        return result;
    }

    private SecurityException wrapLoginException(LoginException exception)
    {
        SecurityException result = new SecurityException();
        result.setRootCause(exception);
        return result;
    }
}
TOP

Related Classes of flex.messaging.security.OracleLoginCommand

  • oracle.security.jazn.callback.JAZNCallbackHandler
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.