001 //$HeadURL$ 002 /*---------------------------------------------------------------------------- 003 This file is part of deegree, http://deegree.org/ 004 Copyright (C) 2001-2009 by: 005 Department of Geography, University of Bonn 006 and 007 lat/lon GmbH 008 009 This library is free software; you can redistribute it and/or modify it under 010 the terms of the GNU Lesser General Public License as published by the Free 011 Software Foundation; either version 2.1 of the License, or (at your option) 012 any later version. 013 This library is distributed in the hope that it will be useful, but WITHOUT 014 ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS 015 FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more 016 details. 017 You should have received a copy of the GNU Lesser General Public License 018 along with this library; if not, write to the Free Software Foundation, Inc., 019 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA 020 021 Contact information: 022 023 lat/lon GmbH 024 Aennchenstr. 19, 53177 Bonn 025 Germany 026 http://lat-lon.de/ 027 028 Department of Geography, University of Bonn 029 Prof. Dr. Klaus Greve 030 Postfach 1147, 53001 Bonn 031 Germany 032 http://www.geographie.uni-bonn.de/deegree/ 033 034 e-mail: info@deegree.org 035 ----------------------------------------------------------------------------*/ 036 037 package org.deegree.security; 038 039 import java.util.Map; 040 041 import org.deegree.framework.log.ILogger; 042 import org.deegree.framework.log.LoggerFactory; 043 import org.deegree.i18n.Messages; 044 import org.deegree.security.drm.SecurityAccessManager; 045 import org.deegree.security.drm.WrongCredentialsException; 046 import org.deegree.security.drm.model.User; 047 048 /** 049 * 050 * 051 * @author <a href="mailto:poth@lat-lon.de">Andreas Poth</a> 052 * @author last edited by: $Author: poth $ 053 * 054 * @version $Revision: 6251 $, $Date: 2007-03-19 16:59:28 +0100 (Mo, 19 Mrz 2007) $ 055 */ 056 public class UserPrincipalAuthentication extends AbstractAuthentication { 057 058 private static final ILogger LOG = LoggerFactory.getLogger( UserPrincipalAuthentication.class ); 059 060 protected static final String AUTH_PARAM_USERPRINCIPAL = "USERPRINCIPAL"; 061 062 /** 063 * 064 * @param authenticationName 065 * @param initParams 066 */ 067 public UserPrincipalAuthentication( String authenticationName, Map<String, String> initParams ) { 068 super( authenticationName, initParams ); 069 } 070 071 /* 072 * (non-Javadoc) 073 * 074 * @see org.deegree.security.AbstractAuthentication#authenticate(java.util.Map) 075 */ 076 public User authenticate( Map<String, String> params ) 077 throws WrongCredentialsException { 078 String user = params.get( AUTH_PARAM_USERPRINCIPAL ); 079 080 LOG.logDebug( "USER: ", user ); 081 User usr = null; 082 if ( user != null ) { 083 try { 084 SecurityAccessManager sam = SecurityAccessManager.getInstance(); 085 usr = sam.getUserByName( user ); 086 try { 087 usr.authenticate( null ); 088 } catch ( Exception e ) { 089 LOG.logWarning( "no authentication of user: " + user + " without password" ); 090 } 091 if ( !usr.isAuthenticated() ) { 092 LOG.logDebug( "authenticate user: " + user + " with password: " + user ); 093 usr.authenticate( user ); 094 } 095 } catch ( Exception e ) { 096 LOG.logWarning( "no authentication of user: " + user + " with password: " + user ); 097 LOG.logError( e.getMessage() ); 098 throw new WrongCredentialsException( Messages.getMessage( "OWSPROXY_USER_AUTH_ERROR", user ) ); 099 } 100 } 101 102 return usr; 103 } 104 105 }