• Home
• edu.vt.middleware
• vt-ldap
• 3.3.7
• source code
• DefaultConnectionHandler.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

edu.vt.middleware.ldap.handler.DefaultConnectionHandler Maven / Gradle / Ivy

/*
  $Id: DefaultConnectionHandler.java 2231 2012-02-02 15:46:27Z dfisher $

  Copyright (C) 2003-2010 Virginia Tech.
  All rights reserved.

  SEE LICENSE FOR MORE INFORMATION

  Author:  Middleware Services
  Email:   [email protected]
  Version: $Revision: 2231 $
  Updated: $Date: 2012-02-02 10:46:27 -0500 (Thu, 02 Feb 2012) $
*/
package edu.vt.middleware.ldap.handler;

import java.util.Hashtable;
import javax.naming.NamingException;
import javax.naming.ldap.InitialLdapContext;
import edu.vt.middleware.ldap.LdapConfig;
import edu.vt.middleware.ldap.LdapConstants;
import edu.vt.middleware.ldap.ssl.ThreadLocalTLSSocketFactory;

/**
 * DefaultConnectionHandler creates a new LdapContext
 * using environment properties obtained from {@link
 * LdapConfig#getEnvironment()}.
 *
 * @author  Middleware Services
 * @version  $Revision: 2231 $
 */
public class DefaultConnectionHandler extends AbstractConnectionHandler
{


  /** Default constructor. */
  public DefaultConnectionHandler() {}


  /**
   * Creates a new DefaultConnectionHandler with the supplied ldap
   * config.
   *
   * @param  lc  ldap config
   */
  public DefaultConnectionHandler(final LdapConfig lc)
  {
    this.setLdapConfig(lc);
  }


  /**
   * Copy constructor for DefaultConnectionHandler.
   *
   * @param  ch  to copy properties from
   */
  public DefaultConnectionHandler(final DefaultConnectionHandler ch)
  {
    this.setLdapConfig(ch.getLdapConfig());
    this.setConnectionStrategy(ch.getConnectionStrategy());
    this.setConnectionRetryExceptions(ch.getConnectionRetryExceptions());
    this.setConnectionCount(ch.getConnectionCount());
  }


  /** {@inheritDoc} */
  protected void connectInternal(
    final String authtype,
    final String dn,
    final Object credential,
    final Hashtable env)
    throws NamingException
  {
    if (this.logger.isDebugEnabled()) {
      this.logger.debug("Bind with the following parameters:");
      this.logger.debug("  authtype = " + authtype);
      this.logger.debug("  dn = " + dn);
      if (this.config.getLogCredentials()) {
        if (this.logger.isDebugEnabled()) {
          this.logger.debug("  credential = " + credential);
        }
      } else {
        if (this.logger.isDebugEnabled()) {
          this.logger.debug("  credential = ");
        }
      }
      if (this.logger.isTraceEnabled()) {
        this.logger.trace("  env = " + env);
      }
    }

    // note that when using simple authentication (the default),
    // if the credential is null the provider will automatically revert the
    // authentication to none
    env.put(LdapConstants.AUTHENTICATION, authtype);
    if (dn != null) {
      env.put(LdapConstants.PRINCIPAL, dn);
      if (credential != null) {
        env.put(LdapConstants.CREDENTIALS, credential);
      }
    }

    // JNDI does not perform hostname validation for LDAPS
    // set a socket factory that will
    if (LdapConstants.SSL_PROTOCOL.equals(env.get(LdapConstants.PROTOCOL)) ||
        ((String) env.get(LdapConstants.PROVIDER_URL)).toLowerCase().contains(
          "ldaps://")) {
      if (env.get(LdapConstants.SOCKET_FACTORY) == null) {
        // parse hostnames for validation
        final String[] hostnames =
          ((String) env.get(LdapConstants.PROVIDER_URL)).split(" ");
        for (int i = 0; i < hostnames.length; i++) {
          // remove scheme, if it exists
          if (hostnames[i].startsWith("ldap://")) {
            hostnames[i] = hostnames[i].substring("ldap://".length());
          } else if (hostnames[i].startsWith("ldaps://")) {
            hostnames[i] = hostnames[i].substring("ldaps://".length());
          }
          // remove port, if it exist
          if (hostnames[i].indexOf(":") != -1) {
            hostnames[i] = hostnames[i].substring(0, hostnames[i].indexOf(":"));
          }
        }
        ThreadLocalTLSSocketFactory.getHostnameVerifierFactory(hostnames);
        env.put(
          LdapConstants.SOCKET_FACTORY,
          ThreadLocalTLSSocketFactory.class.getName());
        if (this.logger.isDebugEnabled()) {
          this.logger.debug("Set hostname verifier for ldaps");
        }
      }
    }

    try {
      this.context = new InitialLdapContext(env, null);
    } catch (NamingException e) {
      if (this.context != null) {
        try {
          this.context.close();
        } finally {
          this.context = null;
        }
      }
      throw e;
    }
  }


  /** {@inheritDoc} */
  public DefaultConnectionHandler newInstance()
  {
    return new DefaultConnectionHandler(this);
  }
}