001 //$HeadURL$
002 /*---------------- FILE HEADER ------------------------------------------
003 This file is part of deegree.
004 Copyright (C) 2001-2008 by:
005 Department of Geography, University of Bonn
006 http://www.giub.uni-bonn.de/deegree/
007 lat/lon GmbH
008 http://www.lat-lon.de
009
010 This library is free software; you can redistribute it and/or
011 modify it under the terms of the GNU Lesser General Public
012 License as published by the Free Software Foundation; either
013 version 2.1 of the License, or (at your option) any later version.
014 This library is distributed in the hope that it will be useful,
015 but WITHOUT ANY WARRANTY; without even the implied warranty of
016 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
017 Lesser General Public License for more details.
018 You should have received a copy of the GNU Lesser General Public
019 License along with this library; if not, write to the Free Software
020 Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
021 Contact:
022
023 Andreas Poth
024 lat/lon GmbH
025 Aennchenstr. 19
026 53177 Bonn
027 Germany
028 E-Mail: poth@lat-lon.de
029
030 Prof. Dr. Klaus Greve
031 Department of Geography
032 University of Bonn
033 Meckenheimer Allee 166
034 53115 Bonn
035 Germany
036 E-Mail: greve@giub.uni-bonn.de
037 ---------------------------------------------------------------------------*/
038 package org.deegree.security;
039
040 import java.util.Map;
041
042 import org.deegree.framework.log.ILogger;
043 import org.deegree.framework.log.LoggerFactory;
044 import org.deegree.i18n.Messages;
045 import org.deegree.security.drm.SecurityAccessManager;
046 import org.deegree.security.drm.WrongCredentialsException;
047 import org.deegree.security.drm.model.User;
048
049 /**
050 *
051 *
052 * @author <a href="mailto:poth@lat-lon.de">Andreas Poth</a>
053 * @author last edited by: $Author: poth $
054 *
055 * @version. $Revision: 6251 $, $Date: 2007-03-19 16:59:28 +0100 (Mo, 19 Mrz 2007) $
056 */
057 public class UserPasswordAuthentication extends AbstractAuthentication {
058
059 private static final ILogger LOG = LoggerFactory.getLogger( UserPasswordAuthentication.class );
060
061 protected static final String AUTH_PARAM_USER = "USER";
062
063 protected static final String AUTH_PARAM_PASSWORD = "PASSWORD";
064
065
066
067 /**
068 *
069 * @param authenticationName
070 * @param initParams
071 */
072 public UserPasswordAuthentication( String authenticationName, Map<String, String> initParams ) {
073 super( authenticationName, initParams );
074 }
075
076 /**
077 * authenticates a user and returns an instance of
078 *
079 * @see {@link User} if authentication has been successfull. Otherwise a
080 * WrongCredentialsException will be thrown
081 * @return an instance of User
082 * @throws WrongCredentialsException
083 */
084 public User authenticate( Map<String, String> params )
085 throws WrongCredentialsException {
086 String user = params.get( AUTH_PARAM_USER );
087 String password = params.get( AUTH_PARAM_PASSWORD );
088
089 LOG.logDebug( "USER: ", user );
090 LOG.logDebug( "PASSWORD: ", password );
091 User usr = null;
092 if ( password != null && user != null ) {
093 try {
094 SecurityAccessManager sam = SecurityAccessManager.getInstance();
095 usr = sam.getUserByName( user );
096 usr.authenticate( password );
097 } catch ( Exception e ) {
098 LOG.logError( e.getMessage() );
099 throw new WrongCredentialsException( Messages.getMessage( "OWSPROXY_USER_AUTH_ERROR", user ) );
100 }
101 }
102
103 return usr;
104 }
105
106 }