AuthenticationMgr xref

View Javadoc

1   /***
2    * Redistribution and use of this software and associated documentation
3    * ("Software"), with or without modification, are permitted provided
4    * that the following conditions are met:
5    *
6    * 1. Redistributions of source code must retain copyright
7    *    statements and notices.  Redistributions must also contain a
8    *    copy of this document.
9    *
10   * 2. Redistributions in binary form must reproduce the
11   *    above copyright notice, this list of conditions and the
12   *    following disclaimer in the documentation and/or other
13   *    materials provided with the distribution.
14   *
15   * 3. The name "Exolab" must not be used to endorse or promote
16   *    products derived from this Software without prior written
17   *    permission of Exoffice Technologies.  For written permission,
18   *    please contact info@exolab.org.
19   *
20   * 4. Products derived from this Software may not be called "Exolab"
21   *    nor may "Exolab" appear in their names without prior written
22   *    permission of Exoffice Technologies. Exolab is a registered
23   *    trademark of Exoffice Technologies.
24   *
25   * 5. Due credit should be given to the Exolab Project
26   *    (http://www.exolab.org/).
27   *
28   * THIS SOFTWARE IS PROVIDED BY EXOFFICE TECHNOLOGIES AND CONTRIBUTORS
29   * ``AS IS'' AND ANY EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT
30   * NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND
31   * FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL
32   * EXOFFICE TECHNOLOGIES OR ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT,
33   * INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
34   * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
35   * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
36   * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
37   * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
38   * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
39   * OF THE POSSIBILITY OF SUCH DAMAGE.
40   *
41   * Copyright 2003-2004 (C) Exoffice Technologies Inc. All Rights Reserved.
42   */
43  package org.exolab.jms.authentication;
44  
45  import java.security.Principal;
46  
47  import org.exolab.jms.common.security.BasicPrincipal;
48  import org.exolab.jms.net.connector.Authenticator;
49  import org.exolab.jms.service.Service;
50  
51  
52  /***
53   * This is the active authentication component within the JMS server.
54   *
55   * @author <a href="mailto:knut@lerpold">Knut Lerpold</a>
56   * @version $Revision: 1.2 $ $Date: 2005/08/30 05:00:24 $
57   */
58  public class AuthenticationMgr extends Service implements Authenticator {
59  
60      /***
61       * The user manager.
62       */
63      private final UserManager _users;
64  
65  
66      /***
67       * Construct a new <code>AuthenticationManager</code>.
68       *
69       * @param users the user manager
70       */
71      public AuthenticationMgr(UserManager users) {
72          super("AuthenticationMgr");
73          if (users == null) {
74              throw new IllegalArgumentException("Argument 'users' is null");
75          }
76          _users = users;
77      }
78  
79      /***
80       * Create a user.
81       *
82       * @param user the user to create
83       * @return <code>true</code> if the user is created otherwise
84       *         <code>false</code>
85       */
86      public boolean addUser(User user) {
87          return _users.createUser(user);
88      }
89  
90      /***
91       * Remove this user
92       *
93       * @param user the user to remove
94       * @return <code>true</code> if the user is removed otherwise
95       *         <code>false</code>
96       */
97      public boolean removeUser(User user) {
98          return _users.deleteUser(user);
99      }
100 
101     /***
102      * Update a user.
103      *
104      * @param user the user to update
105      * @return <code>true</code> if the password is updated otherwise
106      *         <code>false</code>
107      */
108     public boolean updateUser(User user) {
109         return _users.updateUser(user);
110     }
111 
112     /***
113      * Validate the password for the specified user.
114      *
115      * @param username the user's name
116      * @param password the password to check
117      * @return <code>true</code> if the username and password exist, otherwise
118      *         <code>false</code>
119      */
120     public boolean validateUser(String username, String password) {
121         return _users.validateUser(username, password);
122     }
123 
124     /***
125      * Determines if a principal has permissions to connect
126      *
127      * @param principal the principal to check
128      * @return <code>true</code> if the principal has permissions to connect
129      */
130     public boolean authenticate(Principal principal) {
131         String user = null;
132         String password = null;
133         if (principal instanceof BasicPrincipal) {
134             BasicPrincipal basic = (BasicPrincipal) principal;
135             user = basic.getName();
136             password = basic.getPassword();
137         } else {
138             // treat everything else as an unauthenticated/unknown user
139         }
140         return validateUser(user, password);
141     }
142 }