• Home
• org.infinispan
• infinispan-server-runtime
• 15.1.0.Dev03
• source code
• LdapIdentityMappingConfiguration.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

org.infinispan.server.configuration.security.LdapIdentityMappingConfiguration Maven / Gradle / Ivy

package org.infinispan.server.configuration.security;

import java.util.EnumSet;
import java.util.List;

import org.infinispan.commons.configuration.attributes.AttributeDefinition;
import org.infinispan.commons.configuration.attributes.AttributeSet;
import org.infinispan.commons.configuration.attributes.ConfigurationElement;
import org.infinispan.server.configuration.Attribute;
import org.infinispan.server.configuration.Element;
import org.infinispan.server.security.ServerSecurityRealm;
import org.wildfly.security.auth.realm.ldap.LdapSecurityRealmBuilder;

/**
 * @since 10.0
 */
public class LdapIdentityMappingConfiguration extends ConfigurationElement {

   static final AttributeDefinition RDN_IDENTIFIER = AttributeDefinition.builder(Attribute.RDN_IDENTIFIER, null, String.class).immutable().build();
   static final AttributeDefinition SEARCH_BASE_DN = AttributeDefinition.builder(Attribute.SEARCH_DN, null, String.class).immutable().build();
   static final AttributeDefinition SEARCH_RECURSIVE = AttributeDefinition.builder(Attribute.SEARCH_RECURSIVE, false, Boolean.class).immutable().build();
   static final AttributeDefinition SEARCH_TIME_LIMIT = AttributeDefinition.builder(Attribute.SEARCH_TIME_LIMIT, 10_000, Integer.class).immutable().build();
   static final AttributeDefinition FILTER_NAME = AttributeDefinition.builder(Attribute.FILTER_NAME, "(rdn_identifier={0})", String.class).immutable().build();

   static AttributeSet attributeDefinitionSet() {
      return new AttributeSet(LdapIdentityMappingConfiguration.class, RDN_IDENTIFIER, SEARCH_BASE_DN, SEARCH_RECURSIVE, SEARCH_TIME_LIMIT, FILTER_NAME);
   }

   private final List attributeMappings;
   private final LdapUserPasswordMapperConfiguration userPasswordMapper;

   LdapIdentityMappingConfiguration(AttributeSet attributes,
                                    List attributeMappings,
                                    LdapUserPasswordMapperConfiguration userPasswordMapper) {
      super(Element.IDENTITY_MAPPING, attributes);
      this.attributeMappings = attributeMappings;
      this.userPasswordMapper = userPasswordMapper;
   }

   public List attributeMappings() {
      return attributeMappings;
   }

   public LdapUserPasswordMapperConfiguration userPasswordMapper() {
      return userPasswordMapper;
   }

   EnumSet build(LdapSecurityRealmBuilder builder, RealmConfiguration realm) {
      LdapSecurityRealmBuilder.IdentityMappingBuilder identity = builder.identityMapping();
      if (attributes.attribute(RDN_IDENTIFIER).isModified()) {
         identity.setRdnIdentifier(attributes.attribute(RDN_IDENTIFIER).get());
      }
      if (attributes.attribute(SEARCH_BASE_DN).isModified()) {
         identity.setSearchDn(attributes.attribute(SEARCH_BASE_DN).get());
      }
      if (attributes.attribute(SEARCH_RECURSIVE).get()) {
         identity.searchRecursive();
      }
      identity.setSearchTimeLimit(attributes.attribute(SEARCH_TIME_LIMIT).get());
      if (attributes.attribute(FILTER_NAME).isModified()) {
         identity.setFilterName(attributes.attribute(FILTER_NAME).get());
      }
      for (LdapAttributeConfiguration mapping : attributeMappings) {
         mapping.build(identity);
      }
      EnumSet features = userPasswordMapper.build(builder, realm);
      identity.build(); // side-effect
      return features;
   }
}