bundles/org.eclipse.emf.emfstore.server/src/org/eclipse/emf/emfstore/internal/server/accesscontrol/authentication/verifiers/UserVerifier.java - emf-store/org.eclipse.emf.emfstore.core - Git at Google

 /*******************************************************************************
  * Copyright (c) 2011-2015 EclipseSource Muenchen GmbH and others.
  *
  * All rights reserved. This program and the accompanying materials
  * are made available under the terms of the Eclipse Public License v1.0
  * which accompanies this distribution, and is available at
  * http://www.eclipse.org/legal/epl-v10.html
  *
  * Contributors:
  * Edgar Mueller - initial API and implementation
  ******************************************************************************/
 package org.eclipse.emf.emfstore.internal.server.accesscontrol.authentication.verifiers;

 import java.util.Set;

 import org.apache.commons.lang.StringUtils;
 import org.eclipse.emf.emfstore.internal.common.APIUtil;
 import org.eclipse.emf.emfstore.internal.common.model.util.ModelUtil;
 import org.eclipse.emf.emfstore.internal.server.ServerConfiguration;
 import org.eclipse.emf.emfstore.internal.server.core.MonitorProvider;
 import org.eclipse.emf.emfstore.internal.server.exceptions.AccessControlException;
 import org.eclipse.emf.emfstore.internal.server.model.AuthenticationInformation;
 import org.eclipse.emf.emfstore.internal.server.model.accesscontrol.ACUser;
 import org.eclipse.emf.emfstore.internal.server.model.accesscontrol.AccesscontrolFactory;
 import org.eclipse.emf.emfstore.server.model.ESAuthenticationInformation;
 import org.eclipse.emf.emfstore.server.model.ESClientVersionInfo;
 import org.eclipse.emf.emfstore.server.model.ESOrgUnitProvider;
 import org.eclipse.emf.emfstore.server.model.ESUser;

 /**
  * @author emueller
  *
  */
 public abstract class UserVerifier extends PasswordVerifier {

 	private final ESOrgUnitProvider orgUnitProvider;

 	/**
 	 * Default constructor.
 	 *
 	 * @param orgUnitProvider
 	 *            an {@link ESOrgUnitProvider} for finding users
 	 */
 	public UserVerifier(ESOrgUnitProvider orgUnitProvider) {
 		this.orgUnitProvider = orgUnitProvider;
 	}

 	/**
 	 * Tries to login the given user.
 	 *
 	 * @param username
 	 *            the user name as determined by the client
 	 * @param password
 	 *            the password as entered by the client
 	 * @param clientVersionInfo
 	 *            the version of the client
 	 * @return an {@link AuthenticationInformation} instance holding information about the
 	 *         logged-in session
 	 *
 	 * @throws AccessControlException in case the login fails
 	 */
 	public ESAuthenticationInformation verifyUser(String username, String password,
 		ESClientVersionInfo clientVersionInfo) throws AccessControlException {

 		checkClientVersion(clientVersionInfo);
 		final String preparedPassword = preparePassword(password);
 		final String superUser = ServerConfiguration.getProperties()
 			.getProperty(ServerConfiguration.SUPER_USER, ServerConfiguration.SUPER_USER_DEFAULT);

 		if (verifySuperUser(username, preparedPassword)) {
 			return createAuthInfo(username);
 		} else if (!username.equals(superUser) && verifyPassword(username, preparedPassword)) {
 			return createAuthInfo(username);
 		}

 		throw new AccessControlException();
 	}

 	private ESAuthenticationInformation createAuthInfo(String username) throws AccessControlException {
 		final AuthenticationInformation createAuthenticationInfo = createAuthenticationInfo();
 		createAuthenticationInfo.setResolvedACUser(ModelUtil.clone(findUser(username)));
 		return createAuthenticationInfo.toAPI();
 	}

 	/**
 	 * Find the user with the given user name.
 	 *
 	 * @param username
 	 *            the name of the user to be found
 	 * @return the found user
 	 * @throws AccessControlException in case the user hasn't been found
 	 */
 	protected ACUser findUser(String username) throws AccessControlException {

 		final Boolean ignoreCase = Boolean.parseBoolean(ServerConfiguration.getProperties().getProperty(
 			ServerConfiguration.AUTHENTICATION_MATCH_USERS_IGNORE_CASE, Boolean.FALSE.toString()));

 		final Boolean createAuthenticatedUsers = Boolean.parseBoolean(ServerConfiguration.getProperties().getProperty(
 			ServerConfiguration.AUTHENTICATION_CREATE_AUTHENTICATED_USERS, Boolean.FALSE.toString()));

 		synchronized (MonitorProvider.getInstance().getMonitor()) {
 			final Set<ESUser> users = orgUnitProvider.getUsers();
 			final Set<ACUser> internal = APIUtil.toInternal(users);
 			for (final ACUser user : internal) {
 				if (ignoreCase) {
 					if (user.getName().equalsIgnoreCase(username)) {
 						return user;
 					}
 				} else {
 					if (user.getName().equals(username)) {
 						return user;
 					}
 				}
 			}
 			if (createAuthenticatedUsers) {
 				final ACUser acUser = AccesscontrolFactory.eINSTANCE.createACUser();
 				acUser.setName(username);
 				acUser.setDescription(StringUtils.EMPTY);
 				orgUnitProvider.addUser(acUser.toAPI());
 				return acUser;
 			}
 			throw new AccessControlException();
 		}
 	}

 }
	/*******************************************************************************
	* Copyright (c) 2011-2015 EclipseSource Muenchen GmbH and others.
	*
	* All rights reserved. This program and the accompanying materials
	* are made available under the terms of the Eclipse Public License v1.0
	* which accompanies this distribution, and is available at
	* http://www.eclipse.org/legal/epl-v10.html
	*
	* Contributors:
	* Edgar Mueller - initial API and implementation
	******************************************************************************/
	package org.eclipse.emf.emfstore.internal.server.accesscontrol.authentication.verifiers;

	import java.util.Set;

	import org.apache.commons.lang.StringUtils;
	import org.eclipse.emf.emfstore.internal.common.APIUtil;
	import org.eclipse.emf.emfstore.internal.common.model.util.ModelUtil;
	import org.eclipse.emf.emfstore.internal.server.ServerConfiguration;
	import org.eclipse.emf.emfstore.internal.server.core.MonitorProvider;
	import org.eclipse.emf.emfstore.internal.server.exceptions.AccessControlException;
	import org.eclipse.emf.emfstore.internal.server.model.AuthenticationInformation;
	import org.eclipse.emf.emfstore.internal.server.model.accesscontrol.ACUser;
	import org.eclipse.emf.emfstore.internal.server.model.accesscontrol.AccesscontrolFactory;
	import org.eclipse.emf.emfstore.server.model.ESAuthenticationInformation;
	import org.eclipse.emf.emfstore.server.model.ESClientVersionInfo;
	import org.eclipse.emf.emfstore.server.model.ESOrgUnitProvider;
	import org.eclipse.emf.emfstore.server.model.ESUser;

	/**
	* @author emueller
	*
	*/
	public abstract class UserVerifier extends PasswordVerifier {

	private final ESOrgUnitProvider orgUnitProvider;

	/**
	* Default constructor.
	*
	* @param orgUnitProvider
	* an {@link ESOrgUnitProvider} for finding users
	*/
	public UserVerifier(ESOrgUnitProvider orgUnitProvider) {
	this.orgUnitProvider = orgUnitProvider;
	}

	/**
	* Tries to login the given user.
	*
	* @param username
	* the user name as determined by the client
	* @param password
	* the password as entered by the client
	* @param clientVersionInfo
	* the version of the client
	* @return an {@link AuthenticationInformation} instance holding information about the
	* logged-in session
	*
	* @throws AccessControlException in case the login fails
	*/
	public ESAuthenticationInformation verifyUser(String username, String password,
	ESClientVersionInfo clientVersionInfo) throws AccessControlException {

	checkClientVersion(clientVersionInfo);
	final String preparedPassword = preparePassword(password);
	final String superUser = ServerConfiguration.getProperties()
	.getProperty(ServerConfiguration.SUPER_USER, ServerConfiguration.SUPER_USER_DEFAULT);

	if (verifySuperUser(username, preparedPassword)) {
	return createAuthInfo(username);
	} else if (!username.equals(superUser) && verifyPassword(username, preparedPassword)) {
	return createAuthInfo(username);
	}

	throw new AccessControlException();
	}

	private ESAuthenticationInformation createAuthInfo(String username) throws AccessControlException {
	final AuthenticationInformation createAuthenticationInfo = createAuthenticationInfo();
	createAuthenticationInfo.setResolvedACUser(ModelUtil.clone(findUser(username)));
	return createAuthenticationInfo.toAPI();
	}

	/**
	* Find the user with the given user name.
	*
	* @param username
	* the name of the user to be found
	* @return the found user
	* @throws AccessControlException in case the user hasn't been found
	*/
	protected ACUser findUser(String username) throws AccessControlException {

	final Boolean ignoreCase = Boolean.parseBoolean(ServerConfiguration.getProperties().getProperty(
	ServerConfiguration.AUTHENTICATION_MATCH_USERS_IGNORE_CASE, Boolean.FALSE.toString()));

	final Boolean createAuthenticatedUsers = Boolean.parseBoolean(ServerConfiguration.getProperties().getProperty(
	ServerConfiguration.AUTHENTICATION_CREATE_AUTHENTICATED_USERS, Boolean.FALSE.toString()));

	synchronized (MonitorProvider.getInstance().getMonitor()) {
	final Set<ESUser> users = orgUnitProvider.getUsers();
	final Set<ACUser> internal = APIUtil.toInternal(users);
	for (final ACUser user : internal) {
	if (ignoreCase) {
	if (user.getName().equalsIgnoreCase(username)) {
	return user;
	}
	} else {
	if (user.getName().equals(username)) {
	return user;
	}
	}
	}
	if (createAuthenticatedUsers) {
	final ACUser acUser = AccesscontrolFactory.eINSTANCE.createACUser();
	acUser.setName(username);
	acUser.setDescription(StringUtils.EMPTY);
	orgUnitProvider.addUser(acUser.toAPI());
	return acUser;
	}
	throw new AccessControlException();
	}
	}

	}