/**
* delegate to the authentication system for boolean authentication checks, if the result is
* authentic then pull the user object from the user manager and add it to the session. If the
* result is false return the result in an authenticated session and a null user object.
*
* <p>in the event of a successful authentication and a lack of corresponding user in the
* usermanager return a null user as well
*
* <p>//todo should this last case create a user in the usermanager?
*
* @param source
* @return
* @throws AuthenticationException
* @throws UserNotFoundException
* @throws MustChangePasswordException
* @throws AccountLockedException
*/
public SecuritySession authenticate(AuthenticationDataSource source)
throws AuthenticationException, UserNotFoundException, AccountLockedException {
// Perform Authentication.
AuthenticationResult result = authnManager.authenticate(source);
getLogger().debug("authnManager.authenticate() result: " + result);
// Process Results.
if (result.isAuthenticated()) {
getLogger().debug("User '" + result.getPrincipal() + "' authenticated.");
if (userManager.userExists(result.getPrincipal())) {
getLogger().debug("User '" + result.getPrincipal() + "' exists.");
User user = userManager.findUser(result.getPrincipal());
getLogger().debug("User: "******"User '" + result.getPrincipal() + "' DOES NOT exist.");
return new DefaultSecuritySession(result);
}
} else {
getLogger().debug("User '" + result.getPrincipal() + "' IS NOT authenticated.");
return new DefaultSecuritySession(result);
}
}
public void writeReport(OutputStream os) throws ReportException {
UserManager userManager = securitySystem.getUserManager();
List allUsers = userManager.getUsers();
List allRoles;
Map assignmentsMap;
try {
allRoles = rbacManager.getAllRoles();
Collections.sort(allRoles, new RoleSorter());
List allAssignments = rbacManager.getAllUserAssignments();
assignmentsMap = new HashMap();
Iterator it = allAssignments.iterator();
while (it.hasNext()) {
UserAssignment assignment = (UserAssignment) it.next();
assignmentsMap.put(assignment.getPrincipal(), assignment.getRoleNames());
}
} catch (RbacManagerException e) {
throw new ReportException("Unable to obtain list of all roles.", e);
}
Collections.sort(allUsers, new UserComparator("username", true));
PrintWriter out = new PrintWriter(os);
writeCsvHeader(out, allRoles);
Iterator itUsers = allUsers.iterator();
while (itUsers.hasNext()) {
User user = (User) itUsers.next();
writeCsvRow(out, user, assignmentsMap, allRoles);
}
out.flush();
}
public String getUserManagementId() {
if (userManager == null) {
return "<null>";
}
return userManager.getId();
}