@Override
public void contextInitialized(ServletContextEvent arg0) {
final String S_ProcName = "contextInitialized";
Properties props = System.getProperties();
if (null == CFBamSchemaPool.getSchemaPool()) {
try {
Context ctx = new InitialContext();
String poolClassName = (String) ctx.lookup("java:comp/env/CFBam24PoolClass");
if ((poolClassName == null) || (poolClassName.length() <= 0)) {
throw CFLib.getDefaultExceptionFactory()
.newNullArgumentException(
getClass(), S_ProcName, 0, "JNDI lookup for CFBam24PoolClass");
}
Class poolClass = Class.forName(poolClassName);
if (poolClass == null) {
throw CFLib.getDefaultExceptionFactory()
.newNullArgumentException(
getClass(),
S_ProcName,
0,
"CFBam24PoolClass \"" + poolClassName + "\" not found.");
}
Object obj = poolClass.newInstance();
if (obj instanceof CFBamSchemaPool) {
CFBamSchemaPool newPool = (CFBamSchemaPool) obj;
newPool.setConfigurationFile(null);
newPool.setJndiName("java:comp/env/CFBam24Connection");
CFBamSchemaPool.setSchemaPool(newPool);
} else {
throw CFLib.getDefaultExceptionFactory()
.newRuntimeException(
getClass(), S_ProcName, "Problems constructing an instance of " + poolClassName);
}
String smtpHost = (String) ctx.lookup("java:comp/env/CFBam24SmtpHost");
if ((smtpHost == null) || (smtpHost.length() <= 0)) {
throw CFLib.getDefaultExceptionFactory()
.newNullArgumentException(
getClass(), S_ProcName, 0, "JNDI lookup for CFBam24SmtpHost");
}
props.setProperty("mail.smtp.host", smtpHost);
String smtpStartTLS = (String) ctx.lookup("java:comp/env/CFBam24SmtpStartTLS");
if ((smtpHost == null) || (smtpHost.length() <= 0)) {
throw CFLib.getDefaultExceptionFactory()
.newNullArgumentException(
getClass(), S_ProcName, 0, "JNDI lookup for CFBam24SmtpStartTLS");
}
props.setProperty("mail.smtp.starttls.enable", smtpStartTLS);
String smtpSocketFactoryClass =
(String) ctx.lookup("java:comp/env/CFBam24SmtpSocketFactoryClass");
if ((smtpSocketFactoryClass == null) || (smtpSocketFactoryClass.length() <= 0)) {
throw CFLib.getDefaultExceptionFactory()
.newNullArgumentException(
getClass(), S_ProcName, 0, "JNDI lookup for CFBam24SmtpSocketFactoryClass");
}
props.setProperty("mail.smtp.socketFactory.class", smtpSocketFactoryClass);
props.setProperty("mail.smtp.socketFactory.fallback", "false");
String smtpPort = (String) ctx.lookup("java:comp/env/CFBam24SmtpPort");
if ((smtpPort == null) || (smtpPort.length() <= 0)) {
throw CFLib.getDefaultExceptionFactory()
.newNullArgumentException(
getClass(), S_ProcName, 0, "JNDI lookup for CFBam24SmtpPort");
}
props.setProperty("mail.smtp.port", smtpPort);
props.setProperty("mail.smtp.socketFactory.port", smtpPort);
props.setProperty("mail.smtps.auth", "true");
props.put("mail.smtps.quitwait", "false");
String smtpEmailFrom = (String) ctx.lookup("java:comp/env/CFBam24SmtpEmailFrom");
if ((smtpEmailFrom == null) || (smtpEmailFrom.length() <= 0)) {
throw CFLib.getDefaultExceptionFactory()
.newNullArgumentException(
getClass(), S_ProcName, 0, "JNDI lookup for CFBam24SmtpEmailFrom");
}
smtpUsername = (String) ctx.lookup("java:comp/env/CFBam24SmtpUsername");
if ((smtpUsername == null) || (smtpUsername.length() <= 0)) {
throw CFLib.getDefaultExceptionFactory()
.newNullArgumentException(
getClass(), S_ProcName, 0, "JNDI lookup for CFBam24SmtpUsername");
}
smtpPassword = (String) ctx.lookup("java:comp/env/CFBam24SmtpPassword");
if ((smtpPassword == null) || (smtpPassword.length() <= 0)) {
throw CFLib.getDefaultExceptionFactory()
.newNullArgumentException(
getClass(), S_ProcName, 0, "JNDI lookup for CFBam24SmtpPassword");
}
String serverKeyStore;
try {
serverKeyStore = (String) ctx.lookup("java:comp/env/CFBam24ServerKeyStore");
} catch (NamingException e) {
serverKeyStore = null;
}
String keyStorePassword;
try {
keyStorePassword = (String) ctx.lookup("java:comp/env/CFBam24KeyStorePassword");
} catch (NamingException e) {
keyStorePassword = null;
}
String keyName;
try {
keyName = (String) ctx.lookup("java:comp/env/CFBam24KeyName");
} catch (NamingException e) {
keyName = null;
}
String keyPassword;
try {
keyPassword = (String) ctx.lookup("java:comp/env/CFBam24KeyPassword");
} catch (NamingException e) {
keyPassword = null;
}
if (((serverKeyStore != null) && (serverKeyStore.length() > 0))
&& (keyStorePassword != null)
&& ((keyName != null) && (keyName.length() > 0))
&& (keyPassword != null)) {
KeyStore keyStore = null;
File keystoreFile = new File(serverKeyStore);
if (!keystoreFile.exists()) {
throw CFLib.getDefaultExceptionFactory()
.newUsageException(
getClass(),
S_ProcName,
"CFBam24ServerKeyStore file \"" + serverKeyStore + "\" does not exist.");
} else if (!keystoreFile.isFile()) {
throw CFLib.getDefaultExceptionFactory()
.newUsageException(
getClass(),
S_ProcName,
"CFBam24ServerKeyStore file \"" + serverKeyStore + "\" is not a file.");
} else if (!keystoreFile.canRead()) {
throw CFLib.getDefaultExceptionFactory()
.newUsageException(
getClass(),
S_ProcName,
"Permission denied attempting to read CFBam24ServerKeyStore file \""
+ serverKeyStore
+ "\".");
}
try {
keyStore = KeyStore.getInstance("jceks");
char[] caPassword = keyStorePassword.toCharArray();
FileInputStream input = new FileInputStream(serverKeyStore);
keyStore.load(input, caPassword);
input.close();
Certificate publicKeyCertificate = keyStore.getCertificate(keyName);
if (publicKeyCertificate == null) {
throw CFLib.getDefaultExceptionFactory()
.newUsageException(
getClass(),
S_ProcName,
"Could not read CFBam24KeyName \""
+ keyName
+ "\" from CFBam24ServerKeyStore file \""
+ serverKeyStore
+ "\".");
}
publicKey = publicKeyCertificate.getPublicKey();
char[] caKeyPassword = keyPassword.toCharArray();
Key key = keyStore.getKey(keyName, caKeyPassword);
if (key instanceof PrivateKey) {
privateKey = (PrivateKey) key;
} else {
throw CFLib.getDefaultExceptionFactory()
.newUnsupportedClassException(getClass(), S_ProcName, "key", key, "PrivateKey");
}
getServerInfo();
} catch (CertificateException x) {
publicKey = null;
privateKey = null;
throw CFLib.getDefaultExceptionFactory()
.newRuntimeException(
getClass(),
S_ProcName,
"Could not open keystore due to CertificateException -- " + x.getMessage(),
x);
} catch (IOException x) {
publicKey = null;
privateKey = null;
throw CFLib.getDefaultExceptionFactory()
.newRuntimeException(
getClass(),
S_ProcName,
"Could not open keystore due to IOException -- " + x.getMessage(),
x);
} catch (KeyStoreException x) {
publicKey = null;
privateKey = null;
throw CFLib.getDefaultExceptionFactory()
.newRuntimeException(
getClass(),
S_ProcName,
"Could not open keystore due to KeyStoreException -- " + x.getMessage(),
x);
} catch (NoSuchAlgorithmException x) {
publicKey = null;
privateKey = null;
throw CFLib.getDefaultExceptionFactory()
.newRuntimeException(
getClass(),
S_ProcName,
"Could not open keystore due to NoSuchAlgorithmException -- " + x.getMessage(),
x);
} catch (UnrecoverableKeyException x) {
publicKey = null;
privateKey = null;
throw CFLib.getDefaultExceptionFactory()
.newRuntimeException(
getClass(),
S_ProcName,
"Could not access key due to UnrecoverableKeyException -- " + x.getMessage(),
x);
} catch (RuntimeException x) {
publicKey = null;
privateKey = null;
throw x;
}
} else if ((serverKeyStore != null)
|| (keyStorePassword != null)
|| (keyName != null)
|| (keyPassword != null)) {
publicKey = null;
privateKey = null;
throw CFLib.getDefaultExceptionFactory()
.newUsageException(
getClass(),
S_ProcName,
"All or none of CFBam24ServerKeyStore, "
+ "CFBam24KeyStorePassword, "
+ "CFBam24KeyName, and "
+ "CFBam24KeyPassword must be configured");
} else {
getServerInfo();
try {
serverInfo.initServerKeys();
} catch (Exception x) {
throw CFLib.getDefaultExceptionFactory()
.newRuntimeException(
getClass(),
S_ProcName,
"Caught "
+ x.getClass().getName()
+ " during initServerKeys() -- "
+ x.getMessage(),
x);
}
}
} catch (ClassNotFoundException e) {
publicKey = null;
privateKey = null;
throw CFLib.getDefaultExceptionFactory()
.newRuntimeException(
getClass(), S_ProcName, "Caught ClassNotFoundException -- " + e.getMessage(), e);
} catch (IllegalAccessException e) {
publicKey = null;
privateKey = null;
throw CFLib.getDefaultExceptionFactory()
.newRuntimeException(
getClass(),
S_ProcName,
"Caught IllegalAccessException trying to construct newInstance() -- "
+ e.getMessage(),
e);
} catch (InstantiationException e) {
publicKey = null;
privateKey = null;
throw CFLib.getDefaultExceptionFactory()
.newRuntimeException(
getClass(),
S_ProcName,
"Caught InstantiationException trying to construct newInstance() -- "
+ e.getMessage(),
e);
} catch (NamingException e) {
publicKey = null;
privateKey = null;
throw CFLib.getDefaultExceptionFactory()
.newRuntimeException(
getClass(), S_ProcName, "Caught NamingException -- " + e.getMessage(), e);
}
}
}
/** @see HttpServlet#doPost(HttpServletRequest request, HttpServletResponse response) */
protected void doPost(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
final String S_ProcName = "doPost";
ICFAsteriskSchemaObj schemaObj;
HttpSession sess = request.getSession(false);
if (sess == null) {
sess = request.getSession(true);
schemaObj = new CFAsteriskSchemaPooledObj();
sess.setAttribute("SchemaObj", schemaObj);
} else {
schemaObj = (ICFAsteriskSchemaObj) sess.getAttribute("SchemaObj");
if (schemaObj == null) {
throw CFLib.getDefaultExceptionFactory()
.newNullArgumentException(getClass(), S_ProcName, 0, "schemaObj");
}
}
ICFAsteriskSchema dbSchema = null;
try {
CFSecurityAuthorization auth = schemaObj.getAuthorization();
if (auth != null) {
response.sendRedirect("CFAsteriskSMWarSecurityMainHtml");
return;
}
dbSchema = (ICFAsteriskSchema) CFAsteriskSchemaPool.getSchemaPool().getInstance();
schemaObj.setBackingStore(dbSchema);
schemaObj.beginTransaction();
ICFSecuritySecUserObj systemUser =
schemaObj.getSecUserTableObj().readSecUserByULoginIdx("system");
String passwordHash = systemUser.getRequiredPasswordHash();
if ((passwordHash == null)
|| (passwordHash.length() <= 0)
|| passwordHash.equals("bootstrap")) {
response.sendRedirect("CFAsteriskSMWarSetSystemPasswordHtml");
}
ICFSecurityClusterObj resolvedCluster;
ICFSecuritySysClusterObj sysCluster =
schemaObj.getSysClusterTableObj().readSysClusterByIdIdx(1, false);
if (sysCluster == null) {
throw CFLib.getDefaultExceptionFactory()
.newNullArgumentException(getClass(), S_ProcName, 0, "sysCluster");
}
resolvedCluster = sysCluster.getRequiredContainerCluster();
if (resolvedCluster == null) {
throw CFLib.getDefaultExceptionFactory()
.newNullArgumentException(getClass(), S_ProcName, "resolvedCluster");
}
String clusterDomainName = resolvedCluster.getRequiredFullDomainName();
String clusterDescription = resolvedCluster.getRequiredDescription();
String loginId = (String) request.getParameter("LoginId");
if ((loginId == null) || (loginId.length() <= 0)) {
response.setContentType("text/html");
PrintWriter out = response.getWriter();
out.println("<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01//EN\">");
out.println("<HTML>");
out.println("<BODY>");
out.println(
"<form method=\"post\" formaction=\"CFAsteriskSMWarRequestResetPasswordHtml\">");
out.println(
"<H1 style=\"text-align:center\">" + clusterDescription + " Security Manager</H1>");
out.println("<H2 style=\"text-align:center\">ERROR</H2>");
out.println("<p style=\"text-align:center\">");
out.println("You must specify a login id to reset.");
out.println("<p style=\"text-align:center\">");
out.println("Enter the login you'd like to request a password reset for.");
out.println("<p>");
out.println("<center>");
out.println("<table style=\"width:60%\">");
out.println(
"<tr><th style=\"text-align:left\">Login Id:</th><td><input type=\"text\" name=\"LoginId\"/></td></tr>");
out.println(
"<tr><td colspan=\"2\" style=\"text-align:center\"><button type=\"submit\" name=\"Ok, Request Password Reset\"\">Ok</button></td></tr>");
out.println(
"<tr><td colSpan=\"2\" style=\"text-align:center\"><A HRef=\"CFAsteriskSMWarLoginHtml\">Back to "
+ clusterDescription
+ " Security Manager Login</A></td></tr>");
out.println("</table>");
out.println("</center>");
out.println("</form>");
out.println("</BODY>");
out.println("</HTML>");
return;
}
ICFSecuritySecUserObj authenticatingUser =
schemaObj.getSecUserTableObj().readSecUserByULoginIdx(loginId, true);
if (authenticatingUser == null) {
response.setContentType("text/html");
PrintWriter out = response.getWriter();
out.println("<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01//EN\">");
out.println("<HTML>");
out.println("<BODY>");
out.println(
"<form method=\"post\" formaction=\"CFAsteriskSMWarRequestResetPasswordHtml\">");
out.println(
"<H1 style=\"text-align:center\">" + clusterDescription + " Security Manager</H1>");
out.println("<H2 style=\"text-align:center\">ERROR</H2>");
out.println("<p style=\"text-align:center\">");
out.println("Login id not found.");
out.println("<p style=\"text-align:center\">");
out.println("Enter the login you'd like to request a password reset for.");
out.println("<p>");
out.println("<center>");
out.println("<table style=\"width:60%\">");
out.println(
"<tr><th style=\"text-align:left\">Login Id:</th><td><input type=\"text\" name=\"LoginId\"/></td></tr>");
out.println(
"<tr><td colspan=\"2\" style=\"text-align:center\"><button type=\"submit\" name=\"Ok, Request Password Reset\"\">Ok</button></td></tr>");
out.println(
"<tr><td colSpan=\"2\" style=\"text-align:center\"><A HRef=\"CFAsteriskSMWarLoginHtml\">Back to "
+ clusterDescription
+ " Security Manager Login</A></td></tr>");
out.println("</table>");
out.println("</center>");
out.println("</form>");
out.println("</BODY>");
out.println("</HTML>");
return;
}
if (null != authenticatingUser.getOptionalPasswordResetUuid()) {
sendPasswordResetEMail(request, authenticatingUser, resolvedCluster);
response.setContentType("text/html");
PrintWriter out = response.getWriter();
out.println("<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01//EN\">");
out.println("<HTML>");
out.println("<BODY>");
out.println(
"<form method=\"post\" formaction=\"CFAsteriskSMWarRequestResetPasswordHtml\">");
out.println(
"<H1 style=\"text-align:center\">" + clusterDescription + " Security Manager</H1>");
out.println("<H2 style=\"text-align:center\">INFO</H2>");
out.println("<p style=\"text-align:center\">");
out.println("Password reset email resent.");
out.println("<center>");
out.println("<table style=\"width:60%\">");
out.println(
"<tr><td colSpan=\"2\" style=\"text-align:center\"><A HRef=\"CFAsteriskSMWarLoginHtml\">Back to "
+ clusterDescription
+ " Security Manager Login</A></td></tr>");
out.println("</table>");
out.println("</center>");
out.println("</form>");
out.println("</BODY>");
out.println("</HTML>");
}
ICFSecurityClusterObj systemCluster =
schemaObj.getClusterTableObj().readClusterByUDomainNameIdx("system");
ICFSecurityTenantObj systemTenant =
schemaObj
.getTenantTableObj()
.readTenantByUNameIdx(systemCluster.getRequiredId(), "system");
ICFSecuritySecSessionObj systemSession = schemaObj.getSecSessionTableObj().newInstance();
ICFSecuritySecSessionEditObj editSystemSession =
(ICFSecuritySecSessionEditObj) systemSession.beginEdit();
editSystemSession.setRequiredContainerSecUser(systemUser);
editSystemSession.setRequiredStart(Calendar.getInstance());
systemSession = editSystemSession.create();
editSystemSession.endEdit();
auth = new CFSecurityAuthorization();
auth.setSecCluster(systemCluster);
auth.setSecTenant(systemTenant);
auth.setSecSession(systemSession);
schemaObj.setAuthorization(auth);
ICFSecuritySecUserEditObj editAuthenticatingUser = authenticatingUser.beginEdit();
editAuthenticatingUser.setOptionalPasswordResetUuid(UUID.randomUUID());
editAuthenticatingUser.update();
editAuthenticatingUser.endEdit();
editSystemSession = (ICFSecuritySecSessionEditObj) systemSession.beginEdit();
editSystemSession.setOptionalFinish(Calendar.getInstance());
editSystemSession.update();
editSystemSession.endEdit();
schemaObj.setAuthorization(null);
schemaObj.commit();
sendPasswordResetEMail(request, authenticatingUser, resolvedCluster);
response.setContentType("text/html");
PrintWriter out = response.getWriter();
out.println("<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01//EN\">");
out.println("<HTML>");
out.println("<BODY>");
out.println("<form method=\"post\" formaction=\"CFAsteriskSMWarRequestResetPasswordHtml\">");
out.println(
"<H1 style=\"text-align:center\">" + clusterDescription + " Security Manager</H1>");
out.println("<H2 style=\"text-align:center\">INFO</H2>");
out.println("<p style=\"text-align:center\">");
out.println(
"Password reset email sent. Please use the links in the email to set a new password or to cancel the request.");
out.println("<center>");
out.println("<table style=\"width:60%\">");
out.println(
"<tr><td colSpan=\"2\" style=\"text-align:center\"><A HRef=\"CFAsteriskSMWarLoginHtml\">Back to "
+ clusterDescription
+ " Security Manager Login</A></td></tr>");
out.println("</table>");
out.println("</center>");
out.println("</form>");
out.println("</BODY>");
out.println("</HTML>");
} catch (MessagingException e) {
throw CFLib.getDefaultExceptionFactory()
.newRuntimeException(
getClass(), S_ProcName, "Caught MessagingException -- " + e.getMessage(), e);
} catch (NamingException e) {
throw CFLib.getDefaultExceptionFactory()
.newRuntimeException(
getClass(), S_ProcName, "Caught NamingException -- " + e.getMessage(), e);
} catch (RuntimeException e) {
throw CFLib.getDefaultExceptionFactory()
.newRuntimeException(
getClass(), S_ProcName, "Caught RuntimeException -- " + e.getMessage(), e);
} finally {
if (dbSchema != null) {
try {
if (schemaObj.isTransactionOpen()) {
schemaObj.rollback();
}
} catch (RuntimeException e) {
}
schemaObj.setBackingStore(null);
CFAsteriskSchemaPool.getSchemaPool().releaseInstance(dbSchema);
}
}
}