All Downloads are FREE. Search and download functionalities are using the official Maven repository.

org.sonar.server.user.SystemPasscodeImpl Maven / Gradle / Ivy

There is a newer version: 7.2.1
Show newest version
/*
 * SonarQube
 * Copyright (C) 2009-2018 SonarSource SA
 * mailto:info AT sonarsource DOT com
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU Lesser General Public
 * License as published by the Free Software Foundation; either
 * version 3 of the License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
 * Lesser General Public License for more details.
 *
 * You should have received a copy of the GNU Lesser General Public License
 * along with this program; if not, write to the Free Software Foundation,
 * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
 */
package org.sonar.server.user;

import java.util.Optional;
import org.apache.commons.lang.StringUtils;
import org.sonar.api.Startable;
import org.sonar.api.config.Configuration;
import org.sonar.api.server.ServerSide;
import org.sonar.api.server.ws.Request;
import org.sonar.api.utils.log.Loggers;

@ServerSide
public class SystemPasscodeImpl implements SystemPasscode, Startable {

  public static final String PASSCODE_HTTP_HEADER = "X-Sonar-Passcode";
  public static final String PASSCODE_CONF_PROPERTY = "sonar.web.systemPasscode";

  private final Configuration configuration;
  private String configuredPasscode;

  public SystemPasscodeImpl(Configuration configuration) {
    this.configuration = configuration;
  }

  @Override
  public boolean isConfigured() {
    return configuredPasscode != null;
  }

  @Override
  public boolean isValid(Request request) {
    if (configuredPasscode == null) {
      return false;
    }
    return request.header(PASSCODE_HTTP_HEADER)
      .map(s -> configuredPasscode.equals(s))
      .orElse(false);
  }

  @Override
  public void start() {
    Optional passcodeOpt = configuration.get(PASSCODE_CONF_PROPERTY)
      // if present, result is never empty string
      .map(StringUtils::trimToNull);

    if (passcodeOpt.isPresent()) {
      logState("enabled");
      configuredPasscode = passcodeOpt.get();
    } else {
      logState("disabled");
      configuredPasscode = null;
    }
  }

  private void logState(String state) {
    Loggers.get(getClass()).info("System authentication by passcode is {}", state);
  }

  @Override
  public void stop() {
    // nothing to do
  }
}




© 2015 - 2024 Weber Informatics LLC | Privacy Policy