Example 1 with ExpiredCredentialsException
use of org.apache.shiro.authc.ExpiredCredentialsException in project wechat by dllwh.
the class ShiroHelper method login.
/**
* ----------------------------------------------------- Fields end
*/
public static AjaxJson login(String userName, String passWord) {
// 用户名密码令牌
UsernamePasswordToken token = new UsernamePasswordToken(userName, passWord);
token.setRememberMe(false);
String logMsg = "", resultMsg = "";
AjaxJson ajaxJson = new AjaxJson();
boolean suc = false;
// 获得当前登录用户对象Subject,现在状态为 “未认证”
Subject subject = SecurityUtils.getSubject();
try {
subject.login(token);
} catch (UnknownAccountException uae) {
logMsg = "对用户[" + userName + "]进行登录验证..验证未通过,未知账户";
resultMsg = MessageConstant.LOGIN_USER_UNKNOWN;
} catch (IncorrectCredentialsException ice) {
logMsg = "对用户[" + userName + "]进行登录验证..验证未通过,错误的凭证";
resultMsg = MessageConstant.LOGIN_USER_REEOE;
} catch (LockedAccountException lae) {
logMsg = "对用户[" + userName + "]进行登录验证..验证未通过,账户已锁定";
resultMsg = MessageConstant.LOGIN_USER_LOCK;
} catch (DisabledAccountException dae) {
logMsg = "对用户[" + userName + "]进行登录验证..验证未通过,帐号已被禁用";
resultMsg = MessageConstant.LOGIN_USER_DISABLED;
} catch (ExpiredCredentialsException ece) {
logMsg = "对用户[" + userName + "]进行登录验证..验证未通过,帐号已过期";
resultMsg = MessageConstant.LOGIN_USER_EXPIRED;
} catch (ExcessiveAttemptsException eae) {
logMsg = "对用户[" + userName + "]进行登录验证..验证未通过,用户名或密码错误次数过多";
resultMsg = MessageConstant.LOGIN_USER_MORE;
} catch (UnauthorizedException e) {
logMsg = "对用户[" + userName + "]进行登录验证..验证未通过,您没有得到相应的授权!";
resultMsg = MessageConstant.LOGIN_USER_UNAUTHORIZED;
} catch (AuthenticationException ae) {
logMsg = "对用户[" + userName + "]进行登录验证..验证未通过," + ae.getMessage();
resultMsg = MessageConstant.LOGIN_ERROR;
}
if (subject.isAuthenticated()) {
logMsg = "对用户[" + userName + "]进行登录验证..验证通过";
suc = true;
} else {
token.clear();
}
ajaxJson.setSuccess(suc);
ajaxJson.setMsg(resultMsg);
ajaxJson.setObj(logMsg);
return ajaxJson;
}
Also used :
DisabledAccountException(org.apache.shiro.authc.DisabledAccountException)
IncorrectCredentialsException(org.apache.shiro.authc.IncorrectCredentialsException)
AuthenticationException(org.apache.shiro.authc.AuthenticationException)
UnknownAccountException(org.apache.shiro.authc.UnknownAccountException)
ExcessiveAttemptsException(org.apache.shiro.authc.ExcessiveAttemptsException)
AjaxJson(com.cdeledu.common.base.AjaxJson)
Subject(org.apache.shiro.subject.Subject)
ExpiredCredentialsException(org.apache.shiro.authc.ExpiredCredentialsException)
UsernamePasswordToken(org.apache.shiro.authc.UsernamePasswordToken)
UnauthorizedException(org.apache.shiro.authz.UnauthorizedException)
LockedAccountException(org.apache.shiro.authc.LockedAccountException)
Example 2 with ExpiredCredentialsException
use of org.apache.shiro.authc.ExpiredCredentialsException in project shiro by apache.
the class SimpleAccountRealm method doGetAuthenticationInfo.
protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken token) throws AuthenticationException {
UsernamePasswordToken upToken = (UsernamePasswordToken) token;
SimpleAccount account = getUser(upToken.getUsername());
if (account != null) {
if (account.isLocked()) {
throw new LockedAccountException("Account [" + account + "] is locked.");
}
if (account.isCredentialsExpired()) {
String msg = "The credentials for account [" + account + "] are expired";
throw new ExpiredCredentialsException(msg);
}
}
return account;
}
Also used :
SimpleAccount(org.apache.shiro.authc.SimpleAccount)
LockedAccountException(org.apache.shiro.authc.LockedAccountException)
ExpiredCredentialsException(org.apache.shiro.authc.ExpiredCredentialsException)
UsernamePasswordToken(org.apache.shiro.authc.UsernamePasswordToken)
Example 3 with ExpiredCredentialsException
use of org.apache.shiro.authc.ExpiredCredentialsException in project cas by apereo.
the class ShiroAuthenticationHandler method authenticateUsernamePasswordInternal.
@Override
protected AuthenticationHandlerExecutionResult authenticateUsernamePasswordInternal(final UsernamePasswordCredential transformedCredential, final String originalPassword) throws GeneralSecurityException {
try {
val token = new UsernamePasswordToken(transformedCredential.getUsername(), transformedCredential.getPassword());
if (transformedCredential instanceof RememberMeUsernamePasswordCredential) {
token.setRememberMe(RememberMeUsernamePasswordCredential.class.cast(transformedCredential).isRememberMe());
}
val currentUser = getCurrentExecutingSubject();
currentUser.login(token);
checkSubjectRolesAndPermissions(currentUser);
val strategy = getPasswordPolicyHandlingStrategy();
val messageList = new ArrayList<MessageDescriptor>();
if (strategy != null) {
LOGGER.debug("Attempting to examine and handle password policy via [{}]", strategy.getClass().getSimpleName());
val principal = this.principalFactory.createPrincipal(token.getUsername());
messageList.addAll(strategy.handle(principal, getPasswordPolicyConfiguration()));
}
return createAuthenticatedSubjectResult(transformedCredential, currentUser, messageList);
} catch (final UnknownAccountException uae) {
throw new AccountNotFoundException(uae.getMessage());
} catch (final LockedAccountException | ExcessiveAttemptsException lae) {
throw new AccountLockedException(lae.getMessage());
} catch (final ExpiredCredentialsException eae) {
throw new CredentialExpiredException(eae.getMessage());
} catch (final DisabledAccountException eae) {
throw new AccountDisabledException(eae.getMessage());
} catch (final AuthenticationException ice) {
throw new FailedLoginException(ice.getMessage());
}
}
Also used :
lombok.val(lombok.val)
DisabledAccountException(org.apache.shiro.authc.DisabledAccountException)
AccountLockedException(javax.security.auth.login.AccountLockedException)
AuthenticationException(org.apache.shiro.authc.AuthenticationException)
UnknownAccountException(org.apache.shiro.authc.UnknownAccountException)
ArrayList(java.util.ArrayList)
ExcessiveAttemptsException(org.apache.shiro.authc.ExcessiveAttemptsException)
ExpiredCredentialsException(org.apache.shiro.authc.ExpiredCredentialsException)
UsernamePasswordToken(org.apache.shiro.authc.UsernamePasswordToken)
FailedLoginException(javax.security.auth.login.FailedLoginException)
AccountNotFoundException(javax.security.auth.login.AccountNotFoundException)
CredentialExpiredException(javax.security.auth.login.CredentialExpiredException)
RememberMeUsernamePasswordCredential(org.apereo.cas.authentication.credential.RememberMeUsernamePasswordCredential)
LockedAccountException(org.apache.shiro.authc.LockedAccountException)
AccountDisabledException(org.apereo.cas.authentication.exceptions.AccountDisabledException)
Aggregations
ExpiredCredentialsException (org.apache.shiro.authc.ExpiredCredentialsException)3
LockedAccountException (org.apache.shiro.authc.LockedAccountException)3
UsernamePasswordToken (org.apache.shiro.authc.UsernamePasswordToken)3
AuthenticationException (org.apache.shiro.authc.AuthenticationException)2
DisabledAccountException (org.apache.shiro.authc.DisabledAccountException)2
ExcessiveAttemptsException (org.apache.shiro.authc.ExcessiveAttemptsException)2
UnknownAccountException (org.apache.shiro.authc.UnknownAccountException)2
AjaxJson (com.cdeledu.common.base.AjaxJson)1
ArrayList (java.util.ArrayList)1
AccountLockedException (javax.security.auth.login.AccountLockedException)1
AccountNotFoundException (javax.security.auth.login.AccountNotFoundException)1
CredentialExpiredException (javax.security.auth.login.CredentialExpiredException)1
FailedLoginException (javax.security.auth.login.FailedLoginException)1
lombok.val (lombok.val)1
IncorrectCredentialsException (org.apache.shiro.authc.IncorrectCredentialsException)1
SimpleAccount (org.apache.shiro.authc.SimpleAccount)1
UnauthorizedException (org.apache.shiro.authz.UnauthorizedException)1
Subject (org.apache.shiro.subject.Subject)1
RememberMeUsernamePasswordCredential (org.apereo.cas.authentication.credential.RememberMeUsernamePasswordCredential)1
AccountDisabledException (org.apereo.cas.authentication.exceptions.AccountDisabledException)1
