blob: 5f59a8574882779f0399c6e40554e38affb26eb8 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
|
package org.openslx.imagemaster.session;
import org.apache.log4j.Logger;
import org.openslx.imagemaster.db.DbSatellite;
import org.openslx.imagemaster.db.DbUser;
import org.openslx.imagemaster.db.LdapUser;
import org.openslx.imagemaster.thrift.iface.AuthenticationError;
import org.openslx.imagemaster.thrift.iface.AuthenticationException;
public class Authenticator
{
private static Logger log = Logger.getLogger( Authenticator.class );
/**
* Authenticate the user against whatever backend
*
* @param username
* @param password
* @return
* @throws AuthenticationException
*/
public static User authenticate( String username, String password ) throws AuthenticationException
{
// DbUser user = DbUser.forLogin( username );
// if ( user == null || !Sha512Crypt.verifyPassword( password, user.password ) ) {
// log.debug( "Login failed: " + username );
// throw new AuthenticationException( AuthenticationError.INVALID_CREDENTIALS, "Invalid username or password!" );
// }
// log.debug( "Login successful: " + username );
String login = username;
if (username.split( "@" ).length == 2) {
log.info( "username is in username@organization format" );
// we are in username@organization format
// --> get prefix
DbSatellite satellite = DbSatellite.fromOrganization( username.split( "@" )[1] );
if (satellite == null)
throw new AuthenticationException( AuthenticationError.INVALID_CREDENTIALS, "Unkown Organization." );
login = satellite.getPrefix() + "_" + username.split( "@" )[0];
} else if (username.split( "_" ).length != 2) {
log.info( "username is not in a valid format." );
throw new AuthenticationException(AuthenticationError.INVALID_CREDENTIALS, "Credentials must be in (username@organization) or (prefix@username)");
}
log.info( "Logging in with: " + login );
LdapUser user = LdapUser.forLogin( login, password ); // throws exception if credentials are invalid
if ( user == null ) {
log.debug( "Login failed: " + username );
throw new AuthenticationException( AuthenticationError.GENERIC_ERROR, "Something went wrong." );
}
log.debug( "Login succesful: " + username );
// if successfull: update/insert into db
DbUser.insertOrUpdate( user );
return user;
}
//
}
|