Example 21 with ProtectedStringType
use of com.evolveum.prism.xml.ns._public.types_3.ProtectedStringType in project midpoint by Evolveum.
the class ChangePasswordPanel method initLayout.
private void initLayout(final boolean oldPasswordVisible) {
model = (LoadableModel<MyPasswordsDto>) getModel();
Label oldPasswordLabel = new Label(ID_OLD_PASSWORD_LABEL, createStringResource("PageSelfCredentials.oldPasswordLabel"));
add(oldPasswordLabel);
oldPasswordLabel.add(new VisibleEnableBehaviour() {
private static final long serialVersionUID = 1L;
@Override
public boolean isVisible() {
return oldPasswordVisible;
}
});
Label passwordLabel = new Label(ID_PASSWORD_LABEL, createStringResource("PageSelfCredentials.passwordLabel1"));
add(passwordLabel);
PasswordTextField oldPasswordField = new PasswordTextField(ID_OLD_PASSWORD_FIELD, new PropertyModel<String>(model, MyPasswordsDto.F_OLD_PASSWORD));
oldPasswordField.setRequired(false);
oldPasswordField.setResetPassword(false);
add(oldPasswordField);
oldPasswordField.add(new VisibleEnableBehaviour() {
private static final long serialVersionUID = 1L;
public boolean isVisible() {
return oldPasswordVisible;
}
;
});
PasswordPanel passwordPanel = new PasswordPanel(ID_PASSWORD_PANEL, new PropertyModel<ProtectedStringType>(model, MyPasswordsDto.F_PASSWORD));
passwordPanel.getBaseFormComponent().add(new AttributeModifier("autofocus", ""));
add(passwordPanel);
WebMarkupContainer accountContainer = new WebMarkupContainer(ID_ACCOUNTS_CONTAINER);
List<IColumn<PasswordAccountDto, String>> columns = initColumns();
ListDataProvider<PasswordAccountDto> provider = new ListDataProvider<PasswordAccountDto>(this, new PropertyModel<List<PasswordAccountDto>>(model, MyPasswordsDto.F_ACCOUNTS));
TablePanel accounts = new TablePanel(ID_ACCOUNTS_TABLE, provider, columns);
accounts.setItemsPerPage(30);
accounts.setShowPaging(false);
if (model.getObject().getPropagation() != null && model.getObject().getPropagation().equals(CredentialsPropagationUserControlType.MAPPING)) {
accountContainer.setVisible(false);
}
accountContainer.add(accounts);
AjaxLink help = new AjaxLink(ID_BUTTON_HELP) {
private static final long serialVersionUID = 1L;
@Override
public void onClick(AjaxRequestTarget target) {
showHelpPerformed(target);
}
};
accountContainer.add(help);
add(accountContainer);
}
Also used :
ListDataProvider(com.evolveum.midpoint.web.component.util.ListDataProvider)
PasswordPanel(com.evolveum.midpoint.gui.api.component.password.PasswordPanel)
Label(org.apache.wicket.markup.html.basic.Label)
PasswordTextField(org.apache.wicket.markup.html.form.PasswordTextField)
AttributeModifier(org.apache.wicket.AttributeModifier)
WebMarkupContainer(org.apache.wicket.markup.html.WebMarkupContainer)
AjaxRequestTarget(org.apache.wicket.ajax.AjaxRequestTarget)
IColumn(org.apache.wicket.extensions.markup.html.repeater.data.table.IColumn)
PasswordAccountDto(com.evolveum.midpoint.web.page.admin.home.dto.PasswordAccountDto)
MyPasswordsDto(com.evolveum.midpoint.web.page.admin.home.dto.MyPasswordsDto)
ArrayList(java.util.ArrayList)
List(java.util.List)
VisibleEnableBehaviour(com.evolveum.midpoint.web.component.util.VisibleEnableBehaviour)
AjaxLink(org.apache.wicket.ajax.markup.html.AjaxLink)
ProtectedStringType(com.evolveum.prism.xml.ns._public.types_3.ProtectedStringType)
TablePanel(com.evolveum.midpoint.web.component.data.TablePanel)
Example 22 with ProtectedStringType
use of com.evolveum.prism.xml.ns._public.types_3.ProtectedStringType in project midpoint by Evolveum.
the class PageAbstractSelfCredentials method setEncryptedPasswordData.
protected void setEncryptedPasswordData(EncryptedDataType data) {
MyPasswordsDto dto = model.getObject();
ProtectedStringType password = dto.getPassword();
if (password != null) {
password.setEncryptedData(data);
}
}
Also used :
MyPasswordsDto(com.evolveum.midpoint.web.page.admin.home.dto.MyPasswordsDto)
ProtectedStringType(com.evolveum.prism.xml.ns._public.types_3.ProtectedStringType)
Example 23 with ProtectedStringType
use of com.evolveum.prism.xml.ns._public.types_3.ProtectedStringType in project midpoint by Evolveum.
the class PageAccountActivation method propagatePassword.
private void propagatePassword(AjaxRequestTarget target, Form<?> form) {
List<ShadowType> shadowsToActivate = getShadowsToActivate();
PasswordTextField passwordPanel = (PasswordTextField) form.get(createComponentPath(ID_PASSWORD));
String value = passwordPanel.getModelObject();
ConnectionEnvironment connEnv = ConnectionEnvironment.create(SchemaConstants.CHANNEL_GUI_USER_URI);
UsernamePasswordAuthenticationToken token;
try {
token = authenticationEvaluator.authenticate(connEnv, new PasswordAuthenticationContext(userModel.getObject().getName().getOrig(), value));
} catch (Exception ex) {
LOGGER.error("Failed to authenticate user, reason ", ex.getMessage());
getSession().error(getString("PageAccountActivation.authentication.failed"));
throw new RestartResponseException(PageAccountActivation.class, getPageParameters());
}
if (token == null) {
LOGGER.error("Failed to authenticate user");
getSession().error(getString("PageAccountActivation.authentication.failed"));
throw new RestartResponseException(PageAccountActivation.class, getPageParameters());
}
ProtectedStringType passwordValue = new ProtectedStringType();
passwordValue.setClearValue(value);
Collection<ObjectDelta<ShadowType>> passwordDeltas = new ArrayList<>(shadowsToActivate.size());
for (ShadowType shadow : shadowsToActivate) {
ObjectDelta<ShadowType> shadowDelta = ObjectDelta.createModificationReplaceProperty(ShadowType.class, shadow.getOid(), SchemaConstants.PATH_PASSWORD_VALUE, getPrismContext(), passwordValue);
shadowDelta.addModificationReplaceProperty(ShadowType.F_LIFECYCLE_STATE, SchemaConstants.LIFECYCLE_PROPOSED);
passwordDeltas.add(shadowDelta);
}
OperationResult result = runPrivileged(new Producer<OperationResult>() {
@Override
public OperationResult run() {
OperationResult result = new OperationResult(OPERATION_ACTIVATE_SHADOWS);
Task task = createAnonymousTask(OPERATION_ACTIVATE_SHADOWS);
WebModelServiceUtils.save((Collection) passwordDeltas, null, result, task, PageAccountActivation.this);
return result;
}
});
result.recomputeStatus();
if (!result.isSuccess()) {
getSession().error(getString("PageAccountActivation.account.activation.failed"));
LOGGER.error("Failed to acitvate accounts, reason: {} ", result.getMessage());
target.add(getFeedbackPanel());
} else {
getSession().success(getString("PageAccountActivation.account.activation.successful"));
target.add(getFeedbackPanel());
activated = true;
}
target.add(PageAccountActivation.this);
}
Also used :
PasswordAuthenticationContext(com.evolveum.midpoint.model.api.context.PasswordAuthenticationContext)
Task(com.evolveum.midpoint.task.api.Task)
ShadowType(com.evolveum.midpoint.xml.ns._public.common.common_3.ShadowType)
ArrayList(java.util.ArrayList)
PasswordTextField(org.apache.wicket.markup.html.form.PasswordTextField)
UsernamePasswordAuthenticationToken(org.springframework.security.authentication.UsernamePasswordAuthenticationToken)
OperationResult(com.evolveum.midpoint.schema.result.OperationResult)
RestartResponseException(org.apache.wicket.RestartResponseException)
ConnectionEnvironment(com.evolveum.midpoint.security.api.ConnectionEnvironment)
RestartResponseException(org.apache.wicket.RestartResponseException)
Collection(java.util.Collection)
ObjectDelta(com.evolveum.midpoint.prism.delta.ObjectDelta)
ProtectedStringType(com.evolveum.prism.xml.ns._public.types_3.ProtectedStringType)
Example 24 with ProtectedStringType
use of com.evolveum.prism.xml.ns._public.types_3.ProtectedStringType in project midpoint by Evolveum.
the class ModelInteractionServiceImpl method collectDeltasForGeneratedValuesIfNeeded.
private <O extends ObjectType> void collectDeltasForGeneratedValuesIfNeeded(PrismObject<O> object, PolicyItemDefinitionType policyItemDefinition, Collection<PropertyDelta<?>> deltasToExecute, ItemPath path, PrismPropertyDefinition<?> itemDef) throws SchemaException {
Object value = policyItemDefinition.getValue();
if (ProtectedStringType.COMPLEX_TYPE.equals(itemDef.getTypeName())) {
ProtectedStringType pst = new ProtectedStringType();
pst.setClearValue((String) value);
value = pst;
} else if (PolyStringType.COMPLEX_TYPE.equals(itemDef.getTypeName())) {
value = new PolyString((String) value);
}
PropertyDelta<?> propertyDelta = PropertyDelta.createModificationReplaceProperty(path, object.getDefinition(), value);
// in bulk actions we need to modify original objects - hope that REST is OK with this
propertyDelta.applyTo(object);
if (BooleanUtils.isTrue(policyItemDefinition.isExecute())) {
deltasToExecute.add(propertyDelta);
}
}
Also used :
PolyString(com.evolveum.midpoint.prism.polystring.PolyString)
ProtectedStringType(com.evolveum.prism.xml.ns._public.types_3.ProtectedStringType)
Example 25 with ProtectedStringType
use of com.evolveum.prism.xml.ns._public.types_3.ProtectedStringType in project midpoint by Evolveum.
the class ModelInteractionServiceImpl method validateValue.
private <T, O extends ObjectType> boolean validateValue(PrismObject<O> object, ValuePolicyType policy, PolicyItemDefinitionType policyItemDefinition, Task task, OperationResult parentResult) throws ExpressionEvaluationException, SchemaException, ObjectNotFoundException, CommunicationException, ConfigurationException, SecurityViolationException, PolicyViolationException {
ValuePolicyType stringPolicy = resolveValuePolicy(policyItemDefinition, policy, task, parentResult);
RawType rawValue = (RawType) policyItemDefinition.getValue();
String valueToValidate = null;
List<String> valuesToValidate = new ArrayList<>();
PolicyItemTargetType target = policyItemDefinition.getTarget();
ItemPath path = null;
if (target != null) {
path = target.getPath().getItemPath();
}
if (rawValue != null) {
valueToValidate = rawValue.getParsedRealValue(String.class);
valuesToValidate.add(valueToValidate);
} else {
if (target == null || target.getPath() == null) {
LOGGER.error("Target item path must be defined");
parentResult.recordFatalError("Target item path must be defined");
throw new SchemaException("Target item path must be defined");
}
path = target.getPath().getItemPath();
PrismProperty<T> property = object.findProperty(path);
if (property == null || property.isEmpty()) {
LOGGER.error("Attribute {} has no value. Nothing to validate.", property);
parentResult.recordFatalError("Attribute " + property + " has no value. Nothing to validate");
throw new SchemaException("Attribute " + property + " has no value. Nothing to validate");
}
PrismPropertyDefinition<T> itemToValidateDefinition = property.getDefinition();
QName definitionName = itemToValidateDefinition.getTypeName();
if (!isSupportedType(definitionName)) {
LOGGER.error("Trying to validate string policy on the property of type {} failed. Unsupported type.", itemToValidateDefinition);
parentResult.recordFatalError("Trying to validate string policy on the property of type " + itemToValidateDefinition + " failed. Unsupported type.");
throw new SchemaException("Trying to validate string policy on the property of type " + itemToValidateDefinition + " failed. Unsupported type.");
}
if (itemToValidateDefinition.isSingleValue()) {
if (definitionName.equals(PolyStringType.COMPLEX_TYPE)) {
valueToValidate = ((PolyString) property.getRealValue()).getOrig();
} else if (definitionName.equals(ProtectedStringType.COMPLEX_TYPE)) {
ProtectedStringType protectedString = ((ProtectedStringType) property.getRealValue());
valueToValidate = getClearValue(protectedString);
} else {
valueToValidate = (String) property.getRealValue();
}
valuesToValidate.add(valueToValidate);
} else {
if (definitionName.equals(DOMUtil.XSD_STRING)) {
valuesToValidate.addAll(property.getRealValues(String.class));
} else if (definitionName.equals(ProtectedStringType.COMPLEX_TYPE)) {
for (ProtectedStringType protectedString : property.getRealValues(ProtectedStringType.class)) {
valuesToValidate.add(getClearValue(protectedString));
}
} else {
for (PolyString val : property.getRealValues(PolyString.class)) {
valuesToValidate.add(val.getOrig());
}
}
}
}
for (String newValue : valuesToValidate) {
OperationResult result = parentResult.createSubresult(OPERATION_VALIDATE_VALUE + ".value");
if (path != null)
result.addParam("path", path);
result.addParam("valueToValidate", newValue);
if (!policyProcessor.validateValue(newValue, stringPolicy, object, "validate value " + (path != null ? "for " + path : "") + " for " + object + " value " + valueToValidate, task, result)) {
result.recordFatalError("Validation for value " + newValue + " against policy " + stringPolicy + " failed");
LOGGER.error("Validation for value {} against policy {} failed", newValue, stringPolicy);
}
result.computeStatusIfUnknown();
}
parentResult.computeStatus();
policyItemDefinition.setResult(parentResult.createOperationResultType());
return parentResult.isAcceptable();
}
Also used :
SchemaException(com.evolveum.midpoint.util.exception.SchemaException)
QName(javax.xml.namespace.QName)
OperationResult(com.evolveum.midpoint.schema.result.OperationResult)
PolyString(com.evolveum.midpoint.prism.polystring.PolyString)
PolyString(com.evolveum.midpoint.prism.polystring.PolyString)
RawType(com.evolveum.prism.xml.ns._public.types_3.RawType)
ProtectedStringType(com.evolveum.prism.xml.ns._public.types_3.ProtectedStringType)
PolicyItemTargetType(com.evolveum.midpoint.xml.ns._public.common.api_types_3.PolicyItemTargetType)
ItemPath(com.evolveum.midpoint.prism.path.ItemPath)
Aggregations
ProtectedStringType (com.evolveum.prism.xml.ns._public.types_3.ProtectedStringType)120
OperationResult (com.evolveum.midpoint.schema.result.OperationResult)48
Test (org.testng.annotations.Test)48
Task (com.evolveum.midpoint.task.api.Task)39
UserType (com.evolveum.midpoint.xml.ns._public.common.common_3.UserType)25
ItemPath (com.evolveum.midpoint.prism.path.ItemPath)24
QName (javax.xml.namespace.QName)20
PolyString (com.evolveum.midpoint.prism.polystring.PolyString)18
PasswordType (com.evolveum.midpoint.xml.ns._public.common.common_3.PasswordType)18
CredentialsType (com.evolveum.midpoint.xml.ns._public.common.common_3.CredentialsType)15
SchemaException (com.evolveum.midpoint.util.exception.SchemaException)13
ObjectDelta (com.evolveum.midpoint.prism.delta.ObjectDelta)11
ShadowType (com.evolveum.midpoint.xml.ns._public.common.common_3.ShadowType)10
AbstractInitializedModelIntegrationTest (com.evolveum.midpoint.model.intest.AbstractInitializedModelIntegrationTest)9
AbstractModelIntegrationTest (com.evolveum.midpoint.model.test.AbstractModelIntegrationTest)9
EncryptionException (com.evolveum.midpoint.prism.crypto.EncryptionException)9
MapXNode (com.evolveum.midpoint.prism.xnode.MapXNode)9
Document (org.w3c.dom.Document)8
ArrayList (java.util.ArrayList)7
Entry (org.apache.directory.api.ldap.model.entry.Entry)7
