Merged V3.2 to HEAD

Auto-reformat added 20 minutes of work!
   17456: Fix for: ETHREEOH-1465: It's impossible to get the login history for a given user (Audit)
   17463: Fixed ETHREEOH-3363: CLONE -Regression: readOnly settings causing bootstrap to fail


git-svn-id: https://svn.alfresco.com/repos/alfresco-enterprise/alfresco/HEAD/root@18144 c4b6b30b-aa2e-2d43-bbcb-ca4b014f7261

source/java/org/alfresco/repo/security/authentication/AuthenticationServiceImpl.java

@@ -24,11 +24,16 @@
  */
 package org.alfresco.repo.security.authentication;
 
+import java.lang.reflect.Method;
 import java.util.Collections;
 import java.util.Set;
 
+import org.alfresco.repo.audit.AuditComponent;
 import org.alfresco.repo.management.subsystems.ActivateableBean;
 import org.alfresco.repo.security.authentication.AuthenticationComponent.UserNameValidationMode;
+import org.alfresco.service.cmr.security.AuthenticationService;
+import org.aopalliance.intercept.MethodInvocation;
+import org.springframework.aop.framework.ReflectiveMethodInvocation;
 
 public class AuthenticationServiceImpl extends AbstractAuthenticationService implements ActivateableBean
 {
@@ -36,6 +41,8 @@ public class AuthenticationServiceImpl extends AbstractAuthenticationService imp
     
     TicketComponent ticketComponent;
     
+    AuditComponent auditComponent;
+    
     private String domain;
     
     private boolean allowsUserCreation = true;
@@ -58,7 +65,16 @@ public class AuthenticationServiceImpl extends AbstractAuthenticationService imp
     {
         this.authenticationComponent = authenticationComponent;
     }
+   
     
+    /**
+     * @param auditComponent the auditComponent to set
+     */
+    public void setAuditComponent(AuditComponent auditComponent)
+    {
+        this.auditComponent = auditComponent;
+    }
+
     /*
      * (non-Javadoc)
      * @see org.alfresco.repo.management.subsystems.ActivateableBean#isActive()
@@ -85,8 +101,7 @@ public class AuthenticationServiceImpl extends AbstractAuthenticationService imp
             throw ae;
         }
         ticketComponent.clearCurrentTicket();
-        
-        ticketComponent.getCurrentTicket(userName, null, true); // to ensure new ticket is created (even if client does not explicitly call getCurrentTicket)
+        getCurrentTicket(null);       
     }
     
     public String getCurrentUserName() throws AuthenticationException
@@ -146,24 +161,16 @@ public class AuthenticationServiceImpl extends AbstractAuthenticationService imp
         String ticket = ticketComponent.getCurrentTicket(userName, sessionId, false);
         if (ticket == null)
         {
-            try
-            {
-                preAuthenticationCheck(userName);
-            }
-            catch (AuthenticationException e)
-            {
-                clearCurrentSecurityContext();
-                throw e;
-            }
             // If we get through the authentication check then it's safe to issue a new ticket (e.g. for
             // SSO/external-based login)
-            return ticketComponent.getCurrentTicket(userName, sessionId, true);
+            return getNewTicket(sessionId);
         }
         return ticket;
     }
 
     public String getNewTicket(String sessionId)
     {
+        auditComponent.beforeMethodCallManualAudit(AuthenticationService.class, this, "getNewTicket", "");
         String userName = getCurrentUserName();
         try
         {