org.restcomm.connect.dao.entities.shiro.Realm Maven / Gradle / Ivy
/*
* TeleStax, Open Source Cloud Communications
* Copyright 2011-2014, Telestax Inc and individual contributors
* by the @authors tag.
*
* This program is free software: you can redistribute it and/or modify
* under the terms of the GNU Affero General Public License as
* published by the Free Software Foundation; either version 3 of
* the License, or (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU Affero General Public License for more details.
*
* You should have received a copy of the GNU Affero General Public License
* along with this program. If not, see roles;
public Realm() {
super();
}
@Override
protected AuthorizationInfo doGetAuthorizationInfo(final PrincipalCollection principals) {
final Sid sid = new Sid((String) principals.getPrimaryPrincipal());
final ShiroResources services = ShiroResources.getInstance();
final DaoManager daos = services.get(DaoManager.class);
final AccountsDao accounts = daos.getAccountsDao();
final Account account = accounts.getAccount(sid);
final String roleName = account.getRole();
final Set set = new HashSet();
set.add(roleName);
final SimpleAuthorizationInfo authorizationInfo = new SimpleAuthorizationInfo(set);
final SimpleRole role = getRole(roleName);
if (role != null) {
authorizationInfo.setObjectPermissions(role.getPermissions());
}
return authorizationInfo;
}
@Override
protected AuthenticationInfo doGetAuthenticationInfo(final AuthenticationToken token) throws AuthenticationException {
final UsernamePasswordToken authenticationToken = (UsernamePasswordToken) token;
String username = authenticationToken.getUsername();
Sid sid = null;
Account account = null;
String authToken = null;
final ShiroResources services = ShiroResources.getInstance();
final DaoManager daos = services.get(DaoManager.class);
final AccountsDao accounts = daos.getAccountsDao();
try {
if (Sid.pattern.matcher(username).matches()) {
sid = new Sid(username);
account = accounts.getAccount(sid);
} else {
account = accounts.getAccountToAuthenticate(username);
sid = account.getSid();
}
if (account != null) {
authToken = account.getAuthToken();
return new SimpleAuthenticationInfo(sid.toString(), authToken.toCharArray(), getName());
} else {
return null;
}
} catch (Exception ignored) {
return null;
}
}
private SimpleRole getRole(final String role) {
if (roles != null) {
return roles.get(role);
} else {
synchronized (this) {
if (roles == null) {
roles = new HashMap();
final ShiroResources services = ShiroResources.getInstance();
final Configuration configuration = services.get(Configuration.class);
loadSecurityRoles(configuration.subset("security-roles"));
}
}
return roles.get(role);
}
}
private void loadSecurityRoles(final Configuration configuration) {
@SuppressWarnings("unchecked")
final List roleNames = (List) configuration.getList("role[@name]");
final int numberOfRoles = roleNames.size();
if (numberOfRoles > 0) {
for (int roleIndex = 0; roleIndex < numberOfRoles; roleIndex++) {
StringBuilder buffer = new StringBuilder();
buffer.append("role(").append(roleIndex).append(")").toString();
final String prefix = buffer.toString();
final String name = configuration.getString(prefix + "[@name]");
@SuppressWarnings("unchecked")
final List permissions = configuration.getList(prefix + ".permission");
final int numberOfPermissions = permissions.size();
if (name != null) {
if (numberOfPermissions > 0) {
final SimpleRole role = new SimpleRole(name);
for (int permissionIndex = 0; permissionIndex < numberOfPermissions; permissionIndex++) {
String permissionName = permissions.get(permissionIndex);
//buffer = new StringBuilder();
//buffer.append(prefix).append(".permission(").append(permissionIndex).append(")");
final Permission permission = new WildcardPermission(permissionName);
role.add(permission);
}
roles.put(name, role);
}
}
}
}
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy