Merged V3.2E to HEAD

17246: ETHREEOH-3208: User profiles for users authenticated by immutable subsystems are now read only - Introduced MutableAuthenticationService interface, only implemented by Alfresco native authentication service - Split out those methods from AuthenticationService that mutate the user store and added isAuthenticationMutable() - Now both Alfresco Explorer and Share user profile / password edit link rendering is conditional on isAuthenticationMutable - Works with authentication chain containing mixture of internally and externally authenticated users 17247: Fix failing unit tests - rm-public-services-security-context.xml needed to be brought in line with public-services-security-context.xml (and will forever more!) 17248: ETHREEOH-1593: alfUser cookie value should be base 64 encoded to allow for non-ASCII characters 17253: *RECORD ONLY* ETHREEOH-2885: web.xml must conform to the schema to work on JBoss git-svn-id: https://svn.alfresco.com/repos/alfresco-enterprise/alfresco/HEAD/root@18098 c4b6b30b-aa2e-2d43-bbcb-ca4b014f7261
2025-08-07 17:49:17 +00:00 · 2010-01-18 15:32:57 +00:00
parent 0399805772
commit 7f24c8c4e7
59 changed files with 742 additions and 349 deletions
--- a/source/java/org/alfresco/repo/security/authentication/AuthenticationServiceImpl.java
+++ b/source/java/org/alfresco/repo/security/authentication/AuthenticationServiceImpl.java
@@ -32,8 +32,6 @@ import org.alfresco.repo.security.authentication.AuthenticationComponent.UserNam

 public class AuthenticationServiceImpl extends AbstractAuthenticationService implements ActivateableBean
 {
-    MutableAuthenticationDao authenticationDao;
-
    AuthenticationComponent authenticationComponent;
    
    TicketComponent ticketComponent;
@@ -51,11 +49,6 @@ public class AuthenticationServiceImpl extends AbstractAuthenticationService imp
        super();
    }
    
-    public void setAuthenticationDao(MutableAuthenticationDao authenticationDao)
-    {
-        this.authenticationDao = authenticationDao;
-    }
-
    public void setTicketComponent(TicketComponent ticketComponent)
    {
        this.ticketComponent = ticketComponent;
@@ -76,46 +69,6 @@ public class AuthenticationServiceImpl extends AbstractAuthenticationService imp
                || ((ActivateableBean) this.authenticationComponent).isActive();
    }

-    public void createAuthentication(String userName, char[] password) throws AuthenticationException
-    {
-        authenticationDao.createUser(userName, password);
-    }
-
-    public void updateAuthentication(String userName, char[] oldPassword, char[] newPassword)
-            throws AuthenticationException
-    {
-        // Need to preserve the run-as user
-        String currentUser = AuthenticationUtil.getRunAsUser();
-        try
-        {
-            authenticate(userName, oldPassword);
-        }
-        finally
-        {
-            AuthenticationUtil.setRunAsUser(currentUser);
-        }
-        authenticationDao.updateUser(userName, newPassword);
-    }
-
-    public void setAuthentication(String userName, char[] newPassword) throws AuthenticationException
-    {
-        authenticationDao.updateUser(userName, newPassword);
-    }
-
-    public void deleteAuthentication(String userName) throws AuthenticationException
-    {
-        authenticationDao.deleteUser(userName);
-    }
-
-    public boolean getAuthenticationEnabled(String userName) throws AuthenticationException
-    {
-        return authenticationDao.getEnabled(userName);
-    }
-
-    public void setAuthenticationEnabled(String userName, boolean enabled) throws AuthenticationException
-    {
-        authenticationDao.setEnabled(userName, enabled);
-    }

    public void authenticate(String userName, char[] password) throws AuthenticationException
    {
@@ -136,11 +89,6 @@ public class AuthenticationServiceImpl extends AbstractAuthenticationService imp
        ticketComponent.getCurrentTicket(userName); // to ensure new ticket is created (even if client does not explicitly call getCurrentTicket)
    }
    
-    public boolean authenticationExists(String userName)
-    {
-        return authenticationDao.userExists(userName);
-    }
-
    public String getCurrentUserName() throws AuthenticationException
    {
        return authenticationComponent.getCurrentUserName();
@@ -327,4 +275,20 @@ public class AuthenticationServiceImpl extends AbstractAuthenticationService imp
    {
        return authenticationComponent.getDefaultGuestUserNames();
    }
+
+    /**
+     * {@inheritDoc}
+     */
+    public boolean authenticationExists(String userName)
+    {
+        return true;
+    }
+
+    /**
+     * {@inheritDoc}
+     */
+    public boolean getAuthenticationEnabled(String userName) throws AuthenticationException
+    {
+        return true;
+    }        
 }