org.efaps.jaas.SetPasswordHandler Maven / Gradle / Ivy
/*
* Copyright 2003 - 2012 The eFaps Team
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*
* Revision: $Rev: 7483 $
* Last Changed: $Date: 2012-05-11 11:57:38 -0500 (Fri, 11 May 2012) $
* Last Changed By: $Author: [email protected] $
*/
package org.efaps.jaas;
import javax.security.auth.callback.Callback;
import javax.security.auth.callback.CallbackHandler;
import javax.security.auth.callback.NameCallback;
import javax.security.auth.callback.PasswordCallback;
import javax.security.auth.callback.TextOutputCallback;
import javax.security.auth.callback.UnsupportedCallbackException;
import javax.security.auth.login.LoginContext;
import javax.security.auth.login.LoginException;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
/**
* This is class is used to handle the interface between JAAS and eFaps that
* enables a User to change his Password
* To be able to change the Passwordx the name and password of the user method
* {@link #checkLogin} could be used to test if the user is allowed to login.
* The method returns then the related person to the given name and password (if
* found) or null (if not found)
*
* @author The eFaps Team
* @version $Id: SetPasswordHandler.java 7483 2012-05-11 16:57:38Z [email protected] $
*/
public class SetPasswordHandler
{
/**
* Logging instance used to give logging information of this class.
*/
private static Logger LOG = LoggerFactory.getLogger(SetPasswordHandler.class);
/**
* The name of the application used to create a new login context. The
* default value is eFaps.
*/
private String application = "eFaps";
/**
* Constructor to initialize the setpassword handler. If null is
* given to the application name, the default value defined in
* {@link #application} is used.
*
* @param _application application name of the JAAS configuration
*/
public SetPasswordHandler(final String _application)
{
if (_application != null) {
this.application = _application;
}
}
/**
* Set the password.
* @param _name Username
* @param _newpasswd new passowrd
* @param _oldpasswd old passowrd
* @return true if successful
* @throws LoginException on error
*/
public boolean setPassword(final String _name,
final String _newpasswd,
final String _oldpasswd)
throws LoginException
{
boolean ret = false;
final LoginContext login = new LoginContext(
this.application,
new SetPasswordCallbackHandler(ActionCallback.Mode.SET_PASSWORD, _name, _newpasswd, _oldpasswd));
login.login();
ret = true;
return ret;
}
/**
* Callbackhandler.
*/
protected class SetPasswordCallbackHandler
implements CallbackHandler
{
/**
* The user name to test is stored in this instance variable.
*/
private final String name;
/**
* The new password used from the user is stored in this instance variable.
*/
private final String newpassword;
/**
* The action mode for which the login must be made is stored in this
* instance variable (e.g. login, information about all persons, etc.)
*/
private final ActionCallback.Mode mode;
/**
* The old password used from the user is stored in this instance variable.
*/
private final String oldpassword;
/**
* Constructor initializing the action, name and password in this call back
* handler.
*
* @param _mode defines mode for which the login is made
* @param _name name of the login user
* @param _newpasswd new password for the user
* @param _oldpasswd old password
* password of the login user
* @see #action
* @see #name
* @see #newpassword
*/
protected SetPasswordCallbackHandler(final ActionCallback.Mode _mode,
final String _name,
final String _newpasswd,
final String _oldpasswd)
{
this.mode = _mode;
this.name = _name;
this.oldpassword = _oldpasswd;
this.newpassword = _newpasswd;
}
/**
* hanlde the callbacks.
* @param _callbacks callbacks to be handled
* @throws UnsupportedCallbackException on error
*/
public void handle(final Callback[] _callbacks)
throws UnsupportedCallbackException
{
for (int i = 0; i < _callbacks.length; i++) {
if (_callbacks[i] instanceof ActionCallback) {
final ActionCallback ac = (ActionCallback) _callbacks[i];
ac.setMode(this.mode);
} else if (_callbacks[i] instanceof NameCallback) {
final NameCallback nc = (NameCallback) _callbacks[i];
nc.setName(this.name);
} else if (_callbacks[i] instanceof PasswordCallback) {
final PasswordCallback pc = (PasswordCallback) _callbacks[i];
if ("Password".equals(pc.getPrompt()) && this.oldpassword != null) {
pc.setPassword(this.oldpassword.toCharArray());
}
if ("newPassword".equals(pc.getPrompt()) && this.newpassword != null) {
pc.setPassword(this.newpassword.toCharArray());
}
} else if (_callbacks[i] instanceof TextOutputCallback) {
SetPasswordHandler.LOG.debug("ignored handler: " + _callbacks[i]);
// do nothing, TextOutputCallBack's are ignored!
} else {
throw new UnsupportedCallbackException(_callbacks[i], "Unrecognized Callback");
}
}
}
}
}