• Home
• org.subethamail
• subethasmtp
• 2.1.0
• source code
• PlainAuthenticationHandler.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

org.subethamail.smtp.auth.PlainAuthenticationHandler Maven / Gradle / Ivy

package org.subethamail.smtp.auth;

import java.util.ArrayList;
import java.util.List;
import java.util.StringTokenizer;
import org.subethamail.smtp.RejectException;
import org.subethamail.smtp.AuthenticationHandler;
import org.subethamail.smtp.server.ConnectionContext;
import org.subethamail.smtp.util.Base64;

/**
 * Implements the SMTP AUTH PLAIN mechanism.

 * You are only required to plug your UsernamePasswordValidator implementation
 * for username and password validation to take effect.
 * 
 * @author Marco Trevisan 
 */
public class PlainAuthenticationHandler implements AuthenticationHandler
{
	private UsernamePasswordValidator helper;

	private static List AUTH_MECH;

	/** Creates a new instance of PlainAuthenticationHandler */
	public PlainAuthenticationHandler(UsernamePasswordValidator helper)
	{
		this.helper = helper;

		AUTH_MECH = new ArrayList(1);
		AUTH_MECH.add("PLAIN");
	}

	public List getAuthenticationMechanisms()
	{
		return AUTH_MECH;
	}

	public boolean auth(String clientInput, StringBuilder response, ConnectionContext ctx)
			throws RejectException
	{
		StringTokenizer stk = new StringTokenizer(clientInput);
		String secret = stk.nextToken();
		if (secret.trim().equalsIgnoreCase("AUTH"))
		{
			// Let's read the RFC2554 "initial-response" parameter
			// The line could be in the form of "AUTH PLAIN "
			if (!stk.nextToken().trim().equalsIgnoreCase("PLAIN"))
			{
				// Mechanism mismatch
				response.append("504 AUTH mechanism mismatch.");
				return true;
			}
			if (stk.hasMoreTokens())
			{
				// the client submitted an initial response
				secret = stk.nextToken();
			}
			else
			{
				// the client did not submit an initial response
				response.append("334 Ok");
				return false;
			}
		}

		byte[] decodedSecret = Base64.decode(secret);
		if (decodedSecret == null)
			throw new RejectException();

		int usernameStop = -1;
		for (int i = 1; i < decodedSecret.length && usernameStop < 0; i++)
		{
			if (decodedSecret[i] == 0)
			{
				usernameStop = i;
			}
		}

		String username = new String(decodedSecret, 1, usernameStop - 1);
		String password = new String(decodedSecret, usernameStop + 1,
				decodedSecret.length - usernameStop - 1);
		try
		{
			helper.login(username.toString(), password);
			resetState();
		}
		catch (LoginFailedException lfe)
		{
			resetState();
			throw new RejectException();
		}
		
		ctx.setCredential(new Credential(username));
		return true;
	}

	public void resetState()
	{
	}
}