org.sonar.server.user.SystemPasscodeImpl Maven / Gradle / Ivy
/*
* SonarQube
* Copyright (C) 2009-2018 SonarSource SA
* mailto:info AT sonarsource DOT com
*
* This program is free software; you can redistribute it and/or
* modify it under the terms of the GNU Lesser General Public
* License as published by the Free Software Foundation; either
* version 3 of the License, or (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
* Lesser General Public License for more details.
*
* You should have received a copy of the GNU Lesser General Public License
* along with this program; if not, write to the Free Software Foundation,
* Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
*/
package org.sonar.server.user;
import java.util.Optional;
import org.apache.commons.lang.StringUtils;
import org.sonar.api.Startable;
import org.sonar.api.config.Configuration;
import org.sonar.api.server.ServerSide;
import org.sonar.api.server.ws.Request;
import org.sonar.api.utils.log.Loggers;
@ServerSide
public class SystemPasscodeImpl implements SystemPasscode, Startable {
public static final String PASSCODE_HTTP_HEADER = "X-Sonar-Passcode";
public static final String PASSCODE_CONF_PROPERTY = "sonar.web.systemPasscode";
private final Configuration configuration;
private String configuredPasscode;
public SystemPasscodeImpl(Configuration configuration) {
this.configuration = configuration;
}
@Override
public boolean isConfigured() {
return configuredPasscode != null;
}
@Override
public boolean isValid(Request request) {
if (configuredPasscode == null) {
return false;
}
return request.header(PASSCODE_HTTP_HEADER)
.map(s -> configuredPasscode.equals(s))
.orElse(false);
}
@Override
public void start() {
Optional passcodeOpt = configuration.get(PASSCODE_CONF_PROPERTY)
// if present, result is never empty string
.map(StringUtils::trimToNull);
if (passcodeOpt.isPresent()) {
logState("enabled");
configuredPasscode = passcodeOpt.get();
} else {
logState("disabled");
configuredPasscode = null;
}
}
private void logState(String state) {
Loggers.get(getClass()).info("System authentication by passcode is {}", state);
}
@Override
public void stop() {
// nothing to do
}
}