io.undertow.security.impl.InMemorySingleSignOnManager Maven / Gradle / Ivy
Go to download
This artifact provides a single jar that contains all classes required to use remote EJB and JMS, including
all dependencies. It is intended for use by those not using maven, maven users should just import the EJB and
JMS BOM's instead (shaded JAR's cause lots of problems with maven, as it is very easy to inadvertently end up
with different versions on classes on the class path).
/*
* JBoss, Home of Professional Open Source.
* Copyright 2014 Red Hat, Inc., and individual contributors
* as indicated by the @author tags.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package io.undertow.security.impl;
import java.util.Collections;
import java.util.Iterator;
import java.util.Map;
import java.util.concurrent.ConcurrentHashMap;
import io.undertow.security.idm.Account;
import io.undertow.server.session.SecureRandomSessionIdGenerator;
import io.undertow.server.session.Session;
import io.undertow.server.session.SessionManager;
import io.undertow.util.CopyOnWriteMap;
import org.jboss.logging.Logger;
/**
* @author Stuart Douglas
* @author Paul Ferraro
*/
public class InMemorySingleSignOnManager implements SingleSignOnManager {
private static final Logger log = Logger.getLogger(InMemorySingleSignOnManager.class);
private static final SecureRandomSessionIdGenerator SECURE_RANDOM_SESSION_ID_GENERATOR = new SecureRandomSessionIdGenerator();
private final Map ssoEntries = new ConcurrentHashMap<>();
@Override
public SingleSignOn findSingleSignOn(String ssoId) {
return this.ssoEntries.get(ssoId);
}
@Override
public SingleSignOn createSingleSignOn(Account account, String mechanism) {
String id = SECURE_RANDOM_SESSION_ID_GENERATOR.createSessionId();
SingleSignOn entry = new SimpleSingleSignOnEntry(id, account, mechanism);
this.ssoEntries.put(id, entry);
if(log.isTraceEnabled()) {
log.tracef("Creating SSO ID %s for Principal %s and Roles %s.", id, account.getPrincipal().getName(), account.getRoles().toString());
}
return entry;
}
@Override
public void removeSingleSignOn(SingleSignOn sso) {
if(log.isTraceEnabled()) {
log.tracef("Removing SSO ID %s.", sso.getId());
}
this.ssoEntries.remove(sso.getId());
}
private static class SimpleSingleSignOnEntry implements SingleSignOn {
private final String id;
private final Account account;
private final String mechanismName;
private final Map sessions = new CopyOnWriteMap<>();
SimpleSingleSignOnEntry(String id, Account account, String mechanismName) {
this.id = id;
this.account = account;
this.mechanismName = mechanismName;
}
@Override
public String getId() {
return this.id;
}
@Override
public Account getAccount() {
return this.account;
}
@Override
public String getMechanismName() {
return this.mechanismName;
}
@Override
public Iterator iterator() {
return Collections.unmodifiableCollection(this.sessions.values()).iterator();
}
@Override
public boolean contains(Session session) {
return this.sessions.containsKey(session.getSessionManager());
}
@Override
public Session getSession(SessionManager manager) {
return this.sessions.get(manager);
}
@Override
public void add(Session session) {
this.sessions.put(session.getSessionManager(), session);
}
@Override
public void remove(Session session) {
this.sessions.remove(session.getSessionManager());
}
@Override
public void close() {
// Do nothing
}
}
}