mirror of
https://github.com/Alfresco/alfresco-community-repo.git
synced 2025-06-30 18:15:39 +00:00
7f24c8c4e7
17246: ETHREEOH-3208: User profiles for users authenticated by immutable subsystems are now read only
- Introduced MutableAuthenticationService interface, only implemented by Alfresco native authentication service
- Split out those methods from AuthenticationService that mutate the user store and added isAuthenticationMutable()
- Now both Alfresco Explorer and Share user profile / password edit link rendering is conditional on isAuthenticationMutable
- Works with authentication chain containing mixture of internally and externally authenticated users
17247: Fix failing unit tests
- rm-public-services-security-context.xml needed to be brought in line with public-services-security-context.xml (and will forever more!)
17248: ETHREEOH-1593: alfUser cookie value should be base 64 encoded to allow for non-ASCII characters
17253: *RECORD ONLY* ETHREEOH-2885: web.xml must conform to the schema to work on JBoss
git-svn-id: https://svn.alfresco.com/repos/alfresco-enterprise/alfresco/HEAD/root@18098 c4b6b30b-aa2e-2d43-bbcb-ca4b014f7261
154 lines
6.0 KiB
Java
154 lines
6.0 KiB
Java
/*
|
|
* Copyright (C) 2005-2007 Alfresco Software Limited.
|
|
*
|
|
* This program is free software; you can redistribute it and/or
|
|
* modify it under the terms of the GNU General Public License
|
|
* as published by the Free Software Foundation; either version 2
|
|
* of the License, or (at your option) any later version.
|
|
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program; if not, write to the Free Software
|
|
* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
|
|
|
|
* As a special exception to the terms and conditions of version 2.0 of
|
|
* the GPL, you may redistribute this Program in connection with Free/Libre
|
|
* and Open Source Software ("FLOSS") applications as described in Alfresco's
|
|
* FLOSS exception. You should have recieved a copy of the text describing
|
|
* the FLOSS exception, and it is also available here:
|
|
* http://www.alfresco.com/legal/licensing"
|
|
*/
|
|
package org.alfresco.util;
|
|
|
|
import java.io.Serializable;
|
|
import java.util.HashMap;
|
|
|
|
import org.alfresco.model.ContentModel;
|
|
import org.alfresco.repo.security.authentication.AuthenticationComponent;
|
|
import org.alfresco.service.cmr.repository.NodeRef;
|
|
import org.alfresco.service.cmr.repository.NodeService;
|
|
import org.alfresco.service.cmr.security.AuthenticationService;
|
|
import org.alfresco.service.cmr.security.MutableAuthenticationService;
|
|
import org.alfresco.service.namespace.NamespaceService;
|
|
import org.alfresco.service.namespace.QName;
|
|
|
|
/**
|
|
* Utility class containing some useful methods to help when writing tets that require authenticated users
|
|
*
|
|
* @author Roy Wetherall
|
|
*/
|
|
public abstract class TestWithUserUtils
|
|
{
|
|
/**
|
|
* Create a new user, including the corresponding person node.
|
|
*
|
|
* @param userName the user name
|
|
* @param password the password
|
|
* @param rootNodeRef the root node reference
|
|
* @param nodeService the node service
|
|
* @param authenticationService the authentication service
|
|
*/
|
|
public static void createUser(
|
|
String userName,
|
|
String password,
|
|
NodeRef rootNodeRef,
|
|
NodeService nodeService,
|
|
MutableAuthenticationService authenticationService)
|
|
{
|
|
// ignore if the user's authentication already exists
|
|
if (authenticationService.authenticationExists(userName))
|
|
{
|
|
// ignore
|
|
return;
|
|
}
|
|
QName children = ContentModel.ASSOC_CHILDREN;
|
|
QName system = QName.createQName(NamespaceService.SYSTEM_MODEL_1_0_URI, "system");
|
|
QName container = ContentModel.TYPE_CONTAINER;
|
|
QName types = QName.createQName(NamespaceService.SYSTEM_MODEL_1_0_URI, "people");
|
|
|
|
NodeRef systemNodeRef = nodeService.createNode(rootNodeRef, children, system, container).getChildRef();
|
|
NodeRef typesNodeRef = nodeService.createNode(systemNodeRef, children, types, container).getChildRef();
|
|
|
|
HashMap<QName, Serializable> properties = new HashMap<QName, Serializable>();
|
|
properties.put(ContentModel.PROP_USERNAME, userName);
|
|
nodeService.createNode(typesNodeRef, children, QName.createQName(NamespaceService.CONTENT_MODEL_1_0_URI, userName) , container, properties);
|
|
|
|
// Create the users
|
|
|
|
authenticationService.createAuthentication(userName, password.toCharArray());
|
|
}
|
|
|
|
/**
|
|
* Autneticate the user with the specified password
|
|
*
|
|
* @param userName the user name
|
|
* @param password the password
|
|
* @param rootNodeRef the root node reference
|
|
* @param authenticationService the authentication service
|
|
*/
|
|
public static void authenticateUser(
|
|
String userName,
|
|
String password,
|
|
NodeRef rootNodeRef,
|
|
AuthenticationService authenticationService)
|
|
{
|
|
authenticationService.authenticate(userName, password.toCharArray());
|
|
}
|
|
|
|
/**
|
|
* Authenticate as the given user. If the user does not exist, then authenticate as the system user
|
|
* and create the authentication first.
|
|
*/
|
|
public static void authenticateUser(
|
|
String userName,
|
|
String password,
|
|
MutableAuthenticationService authenticationService,
|
|
AuthenticationComponent authenticationComponent)
|
|
{
|
|
// go system
|
|
try
|
|
{
|
|
authenticationComponent.setSystemUserAsCurrentUser();
|
|
if (!authenticationService.authenticationExists(userName))
|
|
{
|
|
authenticationService.createAuthentication(userName, password.toCharArray());
|
|
}
|
|
}
|
|
finally
|
|
{
|
|
authenticationComponent.clearCurrentSecurityContext();
|
|
}
|
|
authenticationService.authenticate(userName, password.toCharArray());
|
|
}
|
|
|
|
/**
|
|
* Get the current user node reference
|
|
*
|
|
* @param authenticationService the authentication service
|
|
* @return the currenlty authenticated user's node reference
|
|
*/
|
|
public static String getCurrentUser(AuthenticationService authenticationService)
|
|
{
|
|
String un = authenticationService.getCurrentUserName();
|
|
if (un != null)
|
|
{
|
|
return un;
|
|
}
|
|
else
|
|
{
|
|
throw new RuntimeException("The current user could not be retrieved.");
|
|
}
|
|
|
|
}
|
|
|
|
public static void deleteUser(String user_name, String pwd, NodeRef ref, NodeService service, MutableAuthenticationService service2)
|
|
{
|
|
service2.deleteAuthentication(user_name);
|
|
}
|
|
|
|
}
|