コード例 #1
0
  @Override
  protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principals) {

    // Null usernames are invalid.
    //
    if (principals == null) {
      throw new AuthorizationException("PrincipalCollection method argument cannot be null.");
    }

    // Extract username from principal.
    //
    String username = (String) getAvailablePrincipal(principals);

    // Lookup user.
    //
    UtenteService us = ServiceFactory.createUtenteService();
    Utente utente = us.retrieveByUsername(username);
    if (utente == null)
      throw new UnknownAccountException("No account found for user [" + username + "]");

    // Extract roles from tipoAccount field.
    //
    Set<String> roles = new HashSet<String>();
    roles.add(utente.getTipoAccount());

    SimpleAuthorizationInfo info = new SimpleAuthorizationInfo(roles);
    // info.setStringPermissions(permissions);

    return info;
  }
コード例 #2
0
  @Override
  protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken token)
      throws AuthenticationException {

    UsernamePasswordToken upToken = (UsernamePasswordToken) token;
    String username = upToken.getUsername();

    // Null username is invalid.
    //
    if (username == null) {
      throw new AccountException("Null usernames are not allowed by this realm.");
    }

    // Lookup user.
    //
    UtenteService us = ServiceFactory.createUtenteService();
    Utente utente = us.retrieveByUsername(username);
    if (utente == null)
      throw new UnknownAccountException("No account found for user [" + username + "]");

    // Extract digested password informations.
    //
    String digest = utente.getDigest();
    String salt = utente.getSalt();
    Integer iterations = utente.getIterations();

    // Create authentication info.
    //
    String realm = getName();
    SaltedWithIterationAuthenticationInfo info =
        new SaltedWithIterationAuthenticationInfo(username, digest, realm);

    // Set up digest info.
    //
    info.setIterations(iterations);
    info.setSalt(salt);

    // Set up user details as a secondary principal.
    //
    info.addPrincipal(utente, realm);

    // Always clean up cached authorization after a login.
    //
    clearCachedAuthorizationInfo(info.getPrincipals());

    return info;
  }