All Downloads are FREE. Search and download functionalities are using the official Maven repository.
  • Log In
  • Register

    • org.kawanfw.sql.api.server.auth.WebServiceUserAuthenticator Maven / Gradle / Ivy

    Go to download

    AceQL HTTP is a framework of REST like http APIs that allow to access to remote SQL databases over http from any device that supports http. AceQL HTTP is provided with four client SDK: - The AceQL C# Client SDK allows to wrap the HTTP APIs using Microsoft SQL Server like calls in their code, just like they would for a local database. - The AceQL Java Client SDK allows to wrap the HTTP APIs using JDBC calls in their code, just like they would for a local database. - The AceQL Python Client SDK allows SQL calls to be encoded with standard unmodified DB-API 2.0 syntax

    There is a newer version: 12.2
    Show newest version
    /*
 * Copyright (c)2022 KawanSoft S.A.S. All rights reserved.
 * 
 * Use of this software is governed by the Business Source License included
 * in the LICENSE.TXT file in the project's root directory.
 *
 * Change Date: 2026-11-01
 *
 * On the date above, in accordance with the Business Source License, use
 * of this software will be governed by version 2.0 of the Apache License.
 */
package org.kawanfw.sql.api.server.auth;

import java.io.File;
import java.io.IOException;
import java.io.StringReader;
import java.net.URL;
import java.sql.SQLException;
import java.util.HashMap;
import java.util.Map;
import java.util.Objects;
import java.util.Properties;

import javax.json.Json;
import javax.json.JsonObject;
import javax.json.JsonReader;
import javax.json.JsonString;
import javax.json.JsonStructure;

import org.apache.commons.lang3.StringUtils;
import org.kawanfw.sql.api.server.DatabaseConfigurator;
import org.kawanfw.sql.api.server.util.SimpleHttpClient;
import org.kawanfw.sql.servlet.injection.classes.InjectedClassesStore;
import org.kawanfw.sql.servlet.injection.properties.PropertiesFileStore;
import org.kawanfw.sql.servlet.injection.properties.PropertiesFileUtil;
import org.kawanfw.sql.util.Tag;
import org.slf4j.Logger;

/**
 * A concrete {@code UserAuthenticator} that allows zero-code remote client
 * {@code (username, password)} authentication against a Web service. 
    
 * 
    
 * The URL of the Web service is defined in
 * {@code the webServiceUserAuthenticator.url} in the
 * {@code aceql-server.properties} file. 
    
 * 
    
 * The Web service must just implement these features:
 * 
      
 * 
    • It must accept the 2 POST parameters {@code username} and
 * {@code password}.
      • 
 * 
    • It must return either:
 * 
        
 * 
      • The JSON string {"status"="OK"} if the authentication
 * succeeds.
        • 
 * 
      • The JSON string {"status"="FAIL"} if the authentication
 * fails.
        • 
 * 
      
 * 
      • 
 * 
    
 *
 * @see UserAuthenticator
 * @author Nicolas de Pomereu
 * @since 5.0
 */

public class WebServiceUserAuthenticator implements UserAuthenticator {

    private Properties properties = null;
    private String database = null;
    private Logger logger = null;

    /*
     * (non-Javadoc)
     *
     * @see
     * org.kawanfw.sql.api.server.auth.UserAuthenticator#login(java.lang.String,
     * char[], java.lang.String, java.lang.String)
     */
    /**
     * @return true if the Authentication Web Service defined in
     *         {@code aceql-server.properties} returns the JSON String
     *         {"status"="OK"}, else false .
     */
    @Override
    public boolean login(String username, char[] password, String database, String ipAddress)
	    throws IOException, SQLException {

	if (properties == null) {
	    File file = PropertiesFileStore.get();
	    properties = PropertiesFileUtil.getProperties(file);
	}

	this.database = Objects.requireNonNull(database, "database cannot be null!");

	String url = properties.getProperty("webServiceUserAuthenticator.url");
	String timeoutSecondsStr = properties.getProperty("webServiceUserAuthenticator.timeoutSeconds");
	String httpTraceStr = properties.getProperty("webServiceUserAuthenticator.httpTrace");

	// Accept free login if no Web Service URL defined or is localhost
	if (url == null || url.contentEquals("localhost")) {
	    return true;
	}

	if (timeoutSecondsStr == null) {
	    timeoutSecondsStr = "0";
	}

	if (!StringUtils.isNumeric(timeoutSecondsStr)) {
	    throw new IllegalArgumentException(
		    "The default.login.webService.timeoutSeconds property is not numeric: " + timeoutSecondsStr);
	}

	int timeoutSeconds = Integer.parseInt(timeoutSecondsStr);
	int connectTimeout = timeoutSeconds * 1000;
	int readTimeout = timeoutSeconds * 1000;

	setTraceActivity(httpTraceStr);

	Map parametersMap = buildParametersMap(username, password);

	String jsonResult = buildJsonResult(username, url, connectTimeout, readTimeout, parametersMap);

	if (jsonResult == null) {
	    return false;
	}

	return statusIsOk(jsonResult.trim());

    }

    /**
     * @param httpTraceStr
     */
    private void setTraceActivity(String httpTraceStr) {
	if (Boolean.parseBoolean(httpTraceStr)) {
	    SimpleHttpClient.TRACE_ON = true;
	} else {
	    SimpleHttpClient.TRACE_ON = false;
	}
    }

    /**
     * @param jsonResult
     * @return
     * @throws IOException
     */
    private boolean statusIsOk(String jsonResult) throws IOException {

	try {
	    JsonReader reader = Json.createReader(new StringReader(jsonResult));
	    JsonStructure jsonst = reader.read();

	    JsonObject object = (JsonObject) jsonst;
	    JsonString status = (JsonString) object.get("status");

	    return status != null && status.getString().equals("OK");

	} catch (Exception e) {
	    if (logger == null) {
		DatabaseConfigurator databaseConfigurator = InjectedClassesStore.get().getDatabaseConfigurators()
			.get(database);
		logger = databaseConfigurator.getLogger();
	    }
	    logger.error(
		    getInitTag() + "Error when parsing jsonResult of Authentication Web Service: " + e.getMessage());
	    return false;
	}
    }

    /**
     * @param username
     * @param url
     * @param connectTimeout
     * @param readTimeout
     * @param parametersMap
     * @return
     * @throws IOException
     */
    private String buildJsonResult(String username, String url, int connectTimeout, int readTimeout,
	    Map parametersMap) throws IOException {
	SimpleHttpClient simpleHttpClient = new SimpleHttpClient(connectTimeout, readTimeout);

	String jsonResult = null;
	try {
	    jsonResult = simpleHttpClient.callWithPost(new URL(url), parametersMap);
	} catch (Exception e) {
	    if (logger == null) {
		DatabaseConfigurator databaseConfigurator = InjectedClassesStore.get().getDatabaseConfigurators()
			.get(database);
		logger = databaseConfigurator.getLogger();
	    }
	    logger.error(getInitTag() + "Username " + username
		    + " can not authenticate. Error when calling SimpleHttpClient: " + e.getMessage());
	    return null;
	}

	return jsonResult;
    }

    /**
     * @param username
     * @param password
     * @return
     */
    private Map buildParametersMap(String username, char[] password) {
	Map parametersMap = new HashMap<>();
	parametersMap.put("username", username);
	parametersMap.put("password", new String(password));
	return parametersMap;
    }

    /**
     * @return the beginning of the log line
     */
    private String getInitTag() {
	return Tag.PRODUCT + " " + WebServiceUserAuthenticator.class.getSimpleName() + ": ";
    }

}




    © 2015 - 2025 Weber Informatics LLC | Privacy Policy