Examples with UsernamePasswordAuthenticationToken net.sf.acegisecurity.providers.UsernamePasswordAuthenticationToken used on opensource projects

Search in sources :

Example 1 with UsernamePasswordAuthenticationToken

use of net.sf.acegisecurity.providers.UsernamePasswordAuthenticationToken in project alfresco-repository by Alfresco.

the class AuthenticationComponentImpl method authenticateImpl.

/**
 * Authenticate
 */
@Override
protected void authenticateImpl(final String userNameIn, final char[] password) throws AuthenticationException {
    if (logger.isTraceEnabled()) {
        logger.trace("Authentication for user: " + AuthenticationUtil.maskUsername(userNameIn));
    }
    try {
        Pair<String, String> userTenant = AuthenticationUtil.getUserTenant(userNameIn);
        final String userName = userTenant.getFirst();
        final String tenantDomain = userTenant.getSecond();
        String normalized = getTransactionService().getRetryingTransactionHelper().doInTransaction(new RetryingTransactionCallback<String>() {

            public String execute() throws Throwable {
                return TenantUtil.runAsSystemTenant(new TenantRunAsWork<String>() {

                    public String doWork() throws Exception {
                        String normalized = getPersonService().getUserIdentifier(userName);
                        String finalUserName = normalized == null ? userName : normalized;
                        UsernamePasswordAuthenticationToken authentication = new UsernamePasswordAuthenticationToken(finalUserName, new String(password));
                        authenticationManager.authenticate(authentication);
                        // check whether the user's password requires re-hashing
                        UserDetails userDetails = authenticationDao.loadUserByUsername(finalUserName);
                        if (userDetails instanceof RepositoryAuthenticatedUser) {
                            List<String> hashIndicator = ((RepositoryAuthenticatedUser) userDetails).getHashIndicator();
                            if (hashIndicator != null && !hashIndicator.isEmpty()) {
                                // current encoding is not the preferred encoding then re-generate
                                if (hashIndicator.size() > 1 || !passwordEncoder.lastEncodingIsPreferred(hashIndicator)) {
                                    // add transaction listener to re-hash the users password
                                    HashPasswordTransactionListener txListener = new HashPasswordTransactionListener(userName, password);
                                    txListener.setTransactionService(getTransactionService());
                                    txListener.setAuthenticationDao(authenticationDao);
                                    AlfrescoTransactionSupport.bindListener(txListener);
                                    if (logger.isDebugEnabled()) {
                                        logger.debug("New hashed password for user '" + AuthenticationUtil.maskUsername(userName) + "' has been requested");
                                    }
                                }
                            }
                        }
                        return normalized;
                    }
                }, tenantDomain);
            }
        }, true);
        if (normalized == null) {
            setCurrentUser(userName, UserNameValidationMode.CHECK_AND_FIX);
        } else {
            setCurrentUser(normalized, UserNameValidationMode.NONE);
        }
        TenantContextHolder.setTenantDomain(tenantDomain);
    } catch (TenantDisabledException tde) {
        throw new AuthenticationException(tde.getMessage(), tde);
    } catch (net.sf.acegisecurity.AuthenticationException ae) {
        // This is a bit gross, I admit, but when LDAP is
        // configured ae, above, is non-serializable and breaks
        // remote authentication.
        StringWriter sw = new StringWriter();
        PrintWriter out = new PrintWriter(sw);
        out.println(ae.toString());
        ae.printStackTrace(out);
        out.close();
        throw new AuthenticationException(sw.toString());
    }
}
Also used : UsernamePasswordAuthenticationToken(net.sf.acegisecurity.providers.UsernamePasswordAuthenticationToken) TenantDisabledException(org.alfresco.repo.tenant.TenantDisabledException) UserDetails(net.sf.acegisecurity.UserDetails) StringWriter(java.io.StringWriter) TenantRunAsWork(org.alfresco.repo.tenant.TenantUtil.TenantRunAsWork) PrintWriter(java.io.PrintWriter)

Example 2 with UsernamePasswordAuthenticationToken

use of net.sf.acegisecurity.providers.UsernamePasswordAuthenticationToken in project alfresco-repository by Alfresco.

the class AuthenticationTest method testTicket.

public void testTicket() {
    dao.createUser("Andy", "ticket".toCharArray());
    UsernamePasswordAuthenticationToken token = new UsernamePasswordAuthenticationToken("Andy", "ticket");
    token.setAuthenticated(false);
    Authentication result = authenticationManager.authenticate(token);
    result.setAuthenticated(true);
    String ticket = ticketComponent.getNewTicket(getUserName(result));
    String user = ticketComponent.validateTicket(ticket);
    assertEquals(ticketComponent.getCurrentTicket("Andy", true), ticket);
    user = null;
    try {
        user = ticketComponent.validateTicket("INVALID");
        assertNotNull(null);
    } catch (AuthenticationException e) {
        assertNull(user);
    }
    ticketComponent.invalidateTicketById(ticket);
    try {
        user = ticketComponent.validateTicket(ticket);
        assertEquals(ticketComponent.getCurrentTicket("Andy", true), ticket);
        assertNotNull(null);
    } catch (AuthenticationException e) {
    }
    dao.deleteUser("Andy");
// assertNull(dao.getUserOrNull("Andy"));
}
Also used : Authentication(net.sf.acegisecurity.Authentication) UsernamePasswordAuthenticationToken(net.sf.acegisecurity.providers.UsernamePasswordAuthenticationToken)

Example 3 with UsernamePasswordAuthenticationToken

use of net.sf.acegisecurity.providers.UsernamePasswordAuthenticationToken in project alfresco-repository by Alfresco.

the class AuthenticationTest method testAuthenticationFailure.

public void testAuthenticationFailure() {
    dao.createUser("Andy", "squash".toCharArray());
    UsernamePasswordAuthenticationToken token = new UsernamePasswordAuthenticationToken("Andy", "turnip");
    token.setAuthenticated(false);
    try {
        Authentication result = authenticationManager.authenticate(token);
        assertNotNull(result);
        assertNotNull(null);
    } catch (BadCredentialsException e) {
    // Expected
    }
    dao.deleteUser("Andy");
// assertNull(dao.getUserOrNull("Andy"));
}
Also used : Authentication(net.sf.acegisecurity.Authentication) UsernamePasswordAuthenticationToken(net.sf.acegisecurity.providers.UsernamePasswordAuthenticationToken) BadCredentialsException(net.sf.acegisecurity.BadCredentialsException)

Example 4 with UsernamePasswordAuthenticationToken

use of net.sf.acegisecurity.providers.UsernamePasswordAuthenticationToken in project alfresco-repository by Alfresco.

the class AuthenticationTest method testAuthentication.

public void testAuthentication() {
    dao.createUser("GUEST", DONT_CARE_PASSWORD);
    UsernamePasswordAuthenticationToken token = new UsernamePasswordAuthenticationToken("GUEST", new String(DONT_CARE_PASSWORD));
    token.setAuthenticated(false);
    Authentication result = authenticationManager.authenticate(token);
    assertNotNull(result);
    dao.createUser("Andy", "squash".toCharArray());
    token = new UsernamePasswordAuthenticationToken("Andy", "squash");
    token.setAuthenticated(false);
    result = authenticationManager.authenticate(token);
    assertNotNull(result);
    dao.setEnabled("Andy", false);
    try {
        result = authenticationManager.authenticate(token);
        assertNotNull(result);
        assertNotNull(null);
    } catch (DisabledException e) {
    // Expected
    }
    dao.setEnabled("Andy", true);
    result = authenticationManager.authenticate(token);
    assertNotNull(result);
    dao.setLocked("Andy", true);
    try {
        result = authenticationManager.authenticate(token);
        assertNotNull(result);
        assertNotNull(null);
    } catch (LockedException e) {
    // Expected
    }
    dao.setLocked("Andy", false);
    result = authenticationManager.authenticate(token);
    assertNotNull(result);
    dao.setAccountExpires("Andy", true);
    dao.setCredentialsExpire("Andy", true);
    result = authenticationManager.authenticate(token);
    assertNotNull(result);
    dao.setAccountExpiryDate("Andy", null);
    dao.setCredentialsExpiryDate("Andy", null);
    result = authenticationManager.authenticate(token);
    assertNotNull(result);
    dao.setAccountExpiryDate("Andy", new Date(new Date().getTime() + 10000));
    dao.setCredentialsExpiryDate("Andy", new Date(new Date().getTime() + 10000));
    result = authenticationManager.authenticate(token);
    assertNotNull(result);
    dao.setAccountExpiryDate("Andy", new Date(new Date().getTime() - 10000));
    try {
        result = authenticationManager.authenticate(token);
        assertNotNull(result);
        assertNotNull(null);
    } catch (AccountExpiredException e) {
    // Expected
    }
    dao.setAccountExpiryDate("Andy", new Date(new Date().getTime() + 10000));
    result = authenticationManager.authenticate(token);
    assertNotNull(result);
    dao.setCredentialsExpiryDate("Andy", new Date(new Date().getTime() - 10000));
    try {
        result = authenticationManager.authenticate(token);
        assertNotNull(result);
        assertNotNull(null);
    } catch (CredentialsExpiredException e) {
    // Expected
    }
    dao.setCredentialsExpiryDate("Andy", new Date(new Date().getTime() + 10000));
    result = authenticationManager.authenticate(token);
    assertNotNull(result);
    dao.deleteUser("Andy");
// assertNull(dao.getUserOrNull("Andy"));
}
Also used : LockedException(net.sf.acegisecurity.LockedException) CredentialsExpiredException(net.sf.acegisecurity.CredentialsExpiredException) Authentication(net.sf.acegisecurity.Authentication) AccountExpiredException(net.sf.acegisecurity.AccountExpiredException) DisabledException(net.sf.acegisecurity.DisabledException) UsernamePasswordAuthenticationToken(net.sf.acegisecurity.providers.UsernamePasswordAuthenticationToken) Date(java.util.Date)

Example 5 with UsernamePasswordAuthenticationToken

use of net.sf.acegisecurity.providers.UsernamePasswordAuthenticationToken in project alfresco-repository by Alfresco.

the class AuthenticationTest method testTicketRepeat.

public void testTicketRepeat() {
    InMemoryTicketComponentImpl tc = new InMemoryTicketComponentImpl();
    tc.setOneOff(false);
    tc.setTicketsExpire(false);
    tc.setValidDuration("P0D");
    tc.setTicketsCache(ticketsCache);
    tc.setUsernameToTicketIdCache(usernameToTicketIdCache);
    dao.createUser("Andy", "ticket".toCharArray());
    UsernamePasswordAuthenticationToken token = new UsernamePasswordAuthenticationToken("Andy", "ticket");
    token.setAuthenticated(false);
    Authentication result = authenticationManager.authenticate(token);
    result.setAuthenticated(true);
    String ticket = tc.getNewTicket(getUserName(result));
    tc.validateTicket(ticket);
    assertEquals(ticketComponent.getCurrentTicket("Andy", true), ticket);
    tc.validateTicket(ticket);
    assertEquals(ticketComponent.getCurrentTicket("Andy", true), ticket);
    dao.deleteUser("Andy");
// assertNull(dao.getUserOrNull("Andy"));
}
Also used : Authentication(net.sf.acegisecurity.Authentication) UsernamePasswordAuthenticationToken(net.sf.acegisecurity.providers.UsernamePasswordAuthenticationToken)

Aggregations

UsernamePasswordAuthenticationToken (net.sf.acegisecurity.providers.UsernamePasswordAuthenticationToken)11 Authentication (net.sf.acegisecurity.Authentication)8 AccountExpiredException (net.sf.acegisecurity.AccountExpiredException)2 CredentialsExpiredException (net.sf.acegisecurity.CredentialsExpiredException)2 DisabledException (net.sf.acegisecurity.DisabledException)2 LockedException (net.sf.acegisecurity.LockedException)2 UserDetails (net.sf.acegisecurity.UserDetails)2 PrintWriter (java.io.PrintWriter)1 StringWriter (java.io.StringWriter)1 Date (java.util.Date)1 BadCredentialsException (net.sf.acegisecurity.BadCredentialsException)1 GrantedAuthority (net.sf.acegisecurity.GrantedAuthority)1 GrantedAuthorityImpl (net.sf.acegisecurity.GrantedAuthorityImpl)1 User (net.sf.acegisecurity.providers.dao.User)1 TenantDisabledException (org.alfresco.repo.tenant.TenantDisabledException)1 TenantRunAsWork (org.alfresco.repo.tenant.TenantUtil.TenantRunAsWork)1
About Me
UseOf

Java Tutorials :

Simple Java RabbitMQ Example with Spring
Simple Springboot JPA Eclipeslink Example
Simple SpringBoot JPA Hibernate Example
Jackson JSON @JsonIgnore and @JsonIgnoreProperties Examples
Java Infinite recursion (StackOverflowError) Jackson solutions
Simple Java Jackson Serialize Objects to JSON and convert them back To Object
ElasticSearch 5 - Upload files using Java API in binary field Example
Java JAXB marshall unmarshall Examples from String and Stream
Java 8 forEach List and Map examples
ElasticSearch 5 Java API SearchRequestBuilder examples
Java ElasticSearch 5 examples with node index and mapping - running local
Convert String to int or Integer Java 8
Java 9 in action - JShell - Ubuntu
Java - removing invalid characters from a file name
Hello world!? or Hello Tutorial