Example 16 with AuthToken
use of com.zimbra.cs.account.AuthToken in project zm-mailbox by Zimbra.
the class DocumentHandler method getAuthenticatedAccount.
/** Returns the {@link Account} corresponding to the authenticated user.
* The authenticated user is determined from the serialized
* {@link com.zimbra.cs.account.AuthToken} in the SOAP request's
* <pre><context></pre> header element. */
public static Account getAuthenticatedAccount(ZimbraSoapContext zsc) throws ServiceException {
String id = zsc.getAuthtokenAccountId();
AuthToken at = zsc.getAuthToken();
if (GuestAccount.GUID_PUBLIC.equals(id) || (at != null && !at.isZimbraUser())) {
return new GuestAccount(at);
}
Account acct = Provisioning.getInstance().get(AccountBy.id, id, zsc.getAuthToken());
if (acct == null && !(at != null && at.isZMGAppBootstrap())) {
throw ServiceException.AUTH_REQUIRED();
}
return acct;
}
Also used :
GuestAccount(com.zimbra.cs.account.GuestAccount)
Account(com.zimbra.cs.account.Account)
GuestAccount(com.zimbra.cs.account.GuestAccount)
AuthToken(com.zimbra.cs.account.AuthToken)
Example 17 with AuthToken
use of com.zimbra.cs.account.AuthToken in project zm-mailbox by Zimbra.
the class StatsImageServlet method doGet.
public void doGet(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
AuthToken authToken = getAdminAuthTokenFromCookie(req, resp);
if (authToken == null)
return;
String imgName = null;
InputStream is = null;
boolean imgAvailable = true;
boolean localServer = false;
boolean systemWide = false;
String serverAddr = "";
String noDefaultImg = req.getParameter("nodef");
boolean noDefault = false;
if (noDefaultImg != null && !noDefaultImg.equals("") && noDefaultImg.equals("1")) {
noDefault = true;
}
String reqPath = req.getRequestURI();
try {
//check if this is the logger host, otherwise proxy the request to the logger host
String serviceHostname = Provisioning.getInstance().getLocalServer().getAttr(Provisioning.A_zimbraServiceHostname);
String logHost = Provisioning.getInstance().getConfig().getAttr(Provisioning.A_zimbraLogHostname);
if (!serviceHostname.equalsIgnoreCase(logHost)) {
StringBuffer url = new StringBuffer("https");
url.append("://").append(logHost).append(':').append(LC.zimbra_admin_service_port.value());
url.append(reqPath);
String queryStr = req.getQueryString();
if (queryStr != null)
url.append('?').append(queryStr);
// create an HTTP client with the same cookies
HttpState state = new HttpState();
try {
state.addCookie(new org.apache.commons.httpclient.Cookie(logHost, ZimbraCookie.COOKIE_ZM_ADMIN_AUTH_TOKEN, authToken.getEncoded(), "/", null, false));
} catch (AuthTokenException ate) {
throw ServiceException.PROXY_ERROR(ate, url.toString());
}
HttpClient client = ZimbraHttpConnectionManager.getInternalHttpConnMgr().newHttpClient();
client.setState(state);
GetMethod get = new GetMethod(url.toString());
try {
int statusCode = HttpClientUtil.executeMethod(client, get);
if (statusCode != HttpStatus.SC_OK)
throw ServiceException.RESOURCE_UNREACHABLE(get.getStatusText(), null);
resp.setContentType("image/gif");
ByteUtil.copy(get.getResponseBodyAsStream(), true, resp.getOutputStream(), false);
return;
} catch (HttpException e) {
throw ServiceException.RESOURCE_UNREACHABLE(get.getStatusText(), e);
} catch (IOException e) {
throw ServiceException.RESOURCE_UNREACHABLE(get.getStatusText(), e);
} finally {
get.releaseConnection();
}
}
} catch (Exception ex) {
resp.sendError(HttpServletResponse.SC_NOT_FOUND, "Image not found");
return;
}
try {
if (reqPath == null || reqPath.length() == 0) {
resp.sendError(HttpServletResponse.SC_BAD_REQUEST);
return;
}
if (mLog.isDebugEnabled())
mLog.debug("received request to:(" + reqPath + ")");
String[] reqParts = reqPath.split("/");
String reqFilename = reqParts[3];
imgName = LC.stats_img_folder.value() + File.separator + reqFilename;
try {
is = new FileInputStream(imgName);
} catch (FileNotFoundException ex) {
//unlikely case - only if the server's files are broken
if (is != null)
is.close();
if (!noDefault) {
imgName = LC.stats_img_folder.value() + File.separator + IMG_NOT_AVAIL;
is = new FileInputStream(imgName);
} else {
resp.sendError(HttpServletResponse.SC_NOT_FOUND, "Image not found");
return;
}
}
} catch (Exception ex) {
if (is != null)
is.close();
resp.sendError(HttpServletResponse.SC_INTERNAL_SERVER_ERROR, "FNF image File not found");
return;
}
resp.setContentType("image/gif");
ByteUtil.copy(is, true, resp.getOutputStream(), false);
}
Also used :
HttpState(org.apache.commons.httpclient.HttpState)
ServletException(javax.servlet.ServletException)
ServiceException(com.zimbra.common.service.ServiceException)
AuthTokenException(com.zimbra.cs.account.AuthTokenException)
HttpException(org.apache.commons.httpclient.HttpException)
AuthTokenException(com.zimbra.cs.account.AuthTokenException)
HttpClient(org.apache.commons.httpclient.HttpClient)
GetMethod(org.apache.commons.httpclient.methods.GetMethod)
AuthToken(com.zimbra.cs.account.AuthToken)
HttpException(org.apache.commons.httpclient.HttpException)
Example 18 with AuthToken
use of com.zimbra.cs.account.AuthToken in project zm-mailbox by Zimbra.
the class RefreshRegisteredAuthTokens method handle.
@Override
public Element handle(Element request, Map<String, Object> context) throws ServiceException {
ZimbraSoapContext zsc = getZimbraSoapContext(context);
checkRight(zsc, context, null, AdminRight.PR_SYSTEM_ADMIN_ONLY);
Provisioning prov = Provisioning.getInstance();
Server localServer = prov.getLocalServer();
if (localServer.getLowestSupportedAuthVersion() < 2) {
return JaxbUtil.jaxbToElement(new RefreshRegisteredAuthTokensResponse());
}
RefreshRegisteredAuthTokensRequest req = JaxbUtil.elementToJaxb(request);
List<String> tokens = req.getTokens();
if (tokens != null && !tokens.isEmpty()) {
for (String token : tokens) {
try {
AuthToken zt = ZimbraAuthToken.getAuthToken(token);
if (zt.isRegistered()) {
Account acc = zt.getAccount();
Provisioning.getInstance().reload(acc);
ZimbraLog.soap.debug("Refreshed token %s for account %s", token, acc.getName());
}
} catch (AuthTokenException | ServiceException e) {
ZimbraLog.soap.error("Failed to refresh deregistered authtoken %s", token, e);
}
}
}
return JaxbUtil.jaxbToElement(new RefreshRegisteredAuthTokensResponse());
}
Also used :
Account(com.zimbra.cs.account.Account)
Server(com.zimbra.cs.account.Server)
ServiceException(com.zimbra.common.service.ServiceException)
ZimbraSoapContext(com.zimbra.soap.ZimbraSoapContext)
AuthTokenException(com.zimbra.cs.account.AuthTokenException)
ZimbraAuthToken(com.zimbra.cs.account.ZimbraAuthToken)
AuthToken(com.zimbra.cs.account.AuthToken)
Provisioning(com.zimbra.cs.account.Provisioning)
RefreshRegisteredAuthTokensResponse(com.zimbra.soap.admin.message.RefreshRegisteredAuthTokensResponse)
RefreshRegisteredAuthTokensRequest(com.zimbra.soap.admin.message.RefreshRegisteredAuthTokensRequest)
Example 19 with AuthToken
use of com.zimbra.cs.account.AuthToken in project zm-mailbox by Zimbra.
the class WebClientServiceUtil method sendServiceRequestToEveryUiNode.
/**
* send service request to every ui node
* @param serviceUrl the url that should be matched and handled by ServiceServlet in ZimbraWebClient
* @throws ServiceException
*/
public static void sendServiceRequestToEveryUiNode(String serviceUrl) throws ServiceException {
List<Server> servers = Provisioning.getInstance().getAllServers(Provisioning.SERVICE_WEBCLIENT);
if (servers == null || servers.isEmpty()) {
servers.add(Provisioning.getInstance().getLocalServer());
}
AuthToken authToken = AuthProvider.getAdminAuthToken();
ZimbraLog.misc.debug("got admin auth token");
//sequentially flush each node
HttpClient client = ZimbraHttpConnectionManager.getExternalHttpConnMgr().newHttpClient();
HttpProxyUtil.configureProxy(client);
for (Server server : servers) {
if (isServerAtLeast8dot5(server)) {
HttpMethod method = null;
try {
method = new GetMethod(URLUtil.getServiceURL(server, serviceUrl, false));
ZimbraLog.misc.debug("connecting to ui node %s", server.getName());
try {
method.addRequestHeader(PARAM_AUTHTOKEN, authToken.getEncoded());
} catch (AuthTokenException e) {
ZimbraLog.misc.warn(e);
}
int respCode = HttpClientUtil.executeMethod(client, method);
if (respCode != 200) {
ZimbraLog.misc.warn("service failed, return code: %d", respCode);
}
} catch (Exception e) {
ZimbraLog.misc.warn("service failed for node %s", server.getName(), e);
} finally {
if (method != null) {
method.releaseConnection();
}
}
}
}
if (authToken != null && authToken.isRegistered()) {
try {
authToken.deRegister();
ZimbraLog.misc.debug("de-registered auth token, isRegistered?%s", authToken.isRegistered());
} catch (AuthTokenException e) {
ZimbraLog.misc.warn("failed to de-register auth token", e);
}
}
}
Also used :
Server(com.zimbra.cs.account.Server)
HttpClient(org.apache.commons.httpclient.HttpClient)
AuthTokenException(com.zimbra.cs.account.AuthTokenException)
GetMethod(org.apache.commons.httpclient.methods.GetMethod)
AuthToken(com.zimbra.cs.account.AuthToken)
HttpMethod(org.apache.commons.httpclient.HttpMethod)
IOException(java.io.IOException)
ServiceException(com.zimbra.common.service.ServiceException)
AuthTokenException(com.zimbra.cs.account.AuthTokenException)
Example 20 with AuthToken
use of com.zimbra.cs.account.AuthToken in project zm-mailbox by Zimbra.
the class WebClientServiceUtil method sendServiceRequestToUiNode.
public static String sendServiceRequestToUiNode(Server server, String serviceUrl) throws ServiceException {
if (isServerAtLeast8dot5(server)) {
HttpClient client = ZimbraHttpConnectionManager.getExternalHttpConnMgr().newHttpClient();
HttpProxyUtil.configureProxy(client);
AuthToken authToken = AuthProvider.getAdminAuthToken();
ZimbraLog.misc.debug("got admin auth token");
String resp = "";
HttpMethod method = null;
try {
method = new GetMethod(URLUtil.getServiceURL(server, serviceUrl, false));
ZimbraLog.misc.debug("connecting to ui node %s", server.getName());
method.addRequestHeader(PARAM_AUTHTOKEN, authToken.getEncoded());
int result = HttpClientUtil.executeMethod(client, method);
ZimbraLog.misc.debug("resp: %d", result);
resp = method.getResponseBodyAsString();
ZimbraLog.misc.debug("got response from ui node: %s", resp);
} catch (IOException e) {
ZimbraLog.misc.warn("failed to get response from ui node", e);
} catch (AuthTokenException e) {
ZimbraLog.misc.warn("failed to get authToken", e);
} finally {
if (method != null) {
method.releaseConnection();
}
}
if (authToken != null && authToken.isRegistered()) {
try {
authToken.deRegister();
ZimbraLog.misc.debug("de-registered auth token, isRegistered?%s", authToken.isRegistered());
} catch (AuthTokenException e) {
ZimbraLog.misc.warn("failed to de-register authToken", e);
}
}
return resp;
}
return "";
}
Also used :
HttpClient(org.apache.commons.httpclient.HttpClient)
AuthTokenException(com.zimbra.cs.account.AuthTokenException)
GetMethod(org.apache.commons.httpclient.methods.GetMethod)
AuthToken(com.zimbra.cs.account.AuthToken)
IOException(java.io.IOException)
HttpMethod(org.apache.commons.httpclient.HttpMethod)
Aggregations
AuthToken (com.zimbra.cs.account.AuthToken)98
ServiceException (com.zimbra.common.service.ServiceException)46
Account (com.zimbra.cs.account.Account)44
ZimbraAuthToken (com.zimbra.cs.account.ZimbraAuthToken)27
AuthTokenException (com.zimbra.cs.account.AuthTokenException)26
Element (com.zimbra.common.soap.Element)24
Provisioning (com.zimbra.cs.account.Provisioning)23
ZMailbox (com.zimbra.client.ZMailbox)19
ZAuthToken (com.zimbra.common.auth.ZAuthToken)18
IOException (java.io.IOException)14
Server (com.zimbra.cs.account.Server)12
ZimbraSoapContext (com.zimbra.soap.ZimbraSoapContext)12
HttpClient (org.apache.commons.httpclient.HttpClient)12
HashMap (java.util.HashMap)11
GetMethod (org.apache.commons.httpclient.methods.GetMethod)11
Test (org.junit.Test)11
SoapHttpTransport (com.zimbra.common.soap.SoapHttpTransport)10
ServletException (javax.servlet.ServletException)10
AuthFailedServiceException (com.zimbra.cs.account.AccountServiceException.AuthFailedServiceException)8
MailServiceException (com.zimbra.cs.mailbox.MailServiceException)8
