inteligr8/alfresco-community-repo
1
0
Fork 0
mirror of https://github.com/Alfresco/alfresco-community-repo.git synced 2025-08-14 17:58:59 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merged V3.1 to HEAD

Browse Source 
13957 Support for UsernameToken WS-Security.  Password Type 'PasswordText' with optional timestamp support.

git-svn-id: https://svn.alfresco.com/repos/alfresco-enterprise/alfresco/HEAD/root@13959 c4b6b30b-aa2e-2d43-bbcb-ca4b014f7261
This commit is contained in:
David Caruana
2009-04-15 14:49:17 +00:00
parent 4c99493d79
commit 09c0e208c8
5 changed files with 118 additions and 27 deletions
Download Patch File Download Diff File Expand all files Collapse all files

29
source/java/org/alfresco/repo/cmis/ws/AuthenticationTokenCallbackHandler.java
View File

@@ -30,41 +30,26 @@ import javax.security.auth.callback.Callback;
import javax.security.auth.callback.CallbackHandler;
import javax.security.auth.callback.UnsupportedCallbackException;
import org.apache.ws.security.WSConstants;
import org.apache.ws.security.WSPasswordCallback;
/**
* @author Michael Shavnev
* @author Dmitry Velichkevich
*/
public class AuthenticationTokenCallbackHandler implements CallbackHandler
{
public void handle(Callback[] callbacks) throws IOException, UnsupportedCallbackException
{
WSPasswordCallback wssPasswordCallback = (WSPasswordCallback) callbacks[0];
String userName = wssPasswordCallback.getIdentifer();
String password = getPassword(userName);
// Check the UsernameToken element.
// Depending on the password type contained in the element the processing differs.
if (wssPasswordCallback.getUsage() == WSPasswordCallback.USERNAME_TOKEN)
if ((WSPasswordCallback.USERNAME_TOKEN_UNKNOWN != wssPasswordCallback.getUsage()) && (WSPasswordCallback.USERNAME_TOKEN != wssPasswordCallback.getUsage()))
{
// If the password type is password digest provide stored password perform
// hash algorithm and compare the result with the transmitted password
wssPasswordCallback.setPassword(password);
throw new SecurityException("Only 'UsernameToken' usage is supported.");
}
else
if (!WSConstants.PASSWORD_TEXT.equals(wssPasswordCallback.getPasswordType()))
{
// If the password is of type password text or any other yet unknown password type
// the delegate the password validation to the callback class.
if (!password.equals(wssPasswordCallback.getPassword()))
{
throw new SecurityException("Incorrect password");
}
throw new SecurityException("Password type '" + wssPasswordCallback.getPasswordType() + "' unsupported. Only '" + WSConstants.PW_TEXT + "' is supported.");
}
}
private String getPassword(String userName)
{
return userName;
}
}