• Home
• org.infinispan
• infinispan-cli
• 8.2.4.Final
• source code
• LocalUserClient.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

org.jboss.sasl.localuser.LocalUserClient Maven / Gradle / Ivy

/*
 * JBoss, Home of Professional Open Source.
 * Copyright 2011, Red Hat, Inc., and individual contributors
 * as indicated by the @author tags. See the copyright.txt file in the
 * distribution for a full listing of individual contributors.
 *
 * This is free software; you can redistribute it and/or modify it
 * under the terms of the GNU Lesser General Public License as
 * published by the Free Software Foundation; either version 2.1 of
 * the License, or (at your option) any later version.
 *
 * This software is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
 * Lesser General Public License for more details.
 *
 * You should have received a copy of the GNU Lesser General Public
 * License along with this software; if not, write to the Free
 * Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
 * 02110-1301 USA, or see the FSF site: http://www.fsf.org.
 */

package org.jboss.sasl.localuser;

import java.io.Closeable;
import java.io.File;
import java.io.FileInputStream;
import java.io.IOException;
import java.util.Map;

import org.jboss.sasl.util.AbstractSaslClient;
import org.jboss.sasl.util.Charsets;
import org.jboss.sasl.util.SaslState;
import org.jboss.sasl.util.SaslStateContext;

import javax.security.auth.callback.CallbackHandler;
import javax.security.auth.callback.NameCallback;
import javax.security.sasl.RealmCallback;
import javax.security.sasl.SaslException;

/**
 * @author David M. Lloyd
 */
public final class LocalUserClient extends AbstractSaslClient {

    public static final String QUIET_AUTH = "jboss.sasl.local-user.quiet-auth";

    private final boolean quietAuth;

    private static final byte UTF8NUL = 0x00;

    LocalUserClient(final String protocol, final String serverName, final Map props, final CallbackHandler callbackHandler, final String authorizationId) {
        super(LocalUserSaslFactory.JBOSS_LOCAL_USER, protocol, serverName, callbackHandler, authorizationId, true);

        quietAuth = props.containsKey(QUIET_AUTH) ? Boolean.parseBoolean((String) props.get(QUIET_AUTH)) : false;
    }

    public void init() {
        getContext().setNegotiationState(new SaslState() {
            public byte[] evaluateMessage(final SaslStateContext context, final byte[] message) throws SaslException {
                final String authorizationId = getAuthorizationId();
                final byte[] bytes;
                if (authorizationId != null) {
                    bytes = new byte[Charsets.encodedLengthOf(authorizationId)];
                    Charsets.encodeTo(authorizationId, bytes, 0);
                } else {
                    bytes = new byte[] { UTF8NUL };
                }
                context.setNegotiationState(new SaslState() {
                    public byte[] evaluateMessage(final SaslStateContext context, final byte[] message) throws SaslException {
                        final String path = new String(message, Charsets.UTF_8);
                        final File file = new File(path);
                        final byte[] challenge = new byte[8];
                        int t = 0;
                        try {
                            final FileInputStream stream = new FileInputStream(file);
                            try {
                                while (t < 8) {
                                    int r = stream.read(challenge, t, 8-t);
                                    if (r < 0) {
                                        throw new SaslException("Invalid server challenge");
                                    } else {
                                        t += r;
                                    }
                                }
                            } finally {
                                safeClose(stream);
                            }
                        } catch (IOException e) {
                            throw new SaslException("Failed to read server challenge", e);
                        }
                        String authenticationId = getAuthorizationId();
                        String authenticationRealm = null;
                        if (quietAuth == false) {
                            final NameCallback nameCallback = authenticationId != null ? new NameCallback("User name",
                                    authenticationId) : new NameCallback("User name");
                            final RealmCallback realmCallback = new RealmCallback("User realm");
                            handleCallbacks(nameCallback, realmCallback);
                            authenticationId = nameCallback.getName();
                            authenticationRealm = realmCallback.getText();
                        }
                        if (authenticationId == null) authenticationId = "";
                        if (authenticationRealm == null) authenticationRealm = "";
                        final int authenticationIdLength = Charsets.encodedLengthOf(authenticationId);
                        final int authenticationRealmLength = Charsets.encodedLengthOf(authenticationRealm);
                        final byte[] response = new byte[8 + 1 + authenticationIdLength + authenticationRealmLength];
                        System.arraycopy(challenge, 0, response, 0, 8);
                        Charsets.encodeTo(authenticationId, response, 8);
                        Charsets.encodeTo(authenticationRealm, response, 8 + 1 + authenticationIdLength);
                        context.negotiationComplete();
                        return response;
                    }
                });
                return bytes;
            }
        });
    }

    private static void safeClose(Closeable c) {
        if (c != null) try {
            c.close();
        } catch (Throwable ignored) {}
    }
}