unixk5loginprovider.java
来自「基于Jabber协议的即时消息服务器」· Java 代码 · 共 136 行
JAVA
136 行
/** * $RCSfile$ * $Revision: $ * $Date: 2006-04-07 09:28:54 -0500 (Fri, 07 Apr 2006) $ * * Copyright (C) 2004 Jive Software. All rights reserved. * * This software is published under the terms of the GNU Public License (GPL), * a copy of which is included in this distribution. */package org.jivesoftware.wildfire.sasl;import org.jivesoftware.util.JiveGlobals;import java.io.DataInputStream;import java.io.File;import java.io.FileInputStream;import java.io.IOException;import java.util.ArrayList;import java.util.Collection;/** * Provider for authorization. Checks if the authenticated principal is in * the user's .k5login file. A traditional Unix Kerberos methodology. The * location of this file can be configured in the <tt>wildfire.xml</tt> * file. An entry in that file would look like the following: * * <pre> * <unix> * <k5login> /home/{0}/.k5login </k5login> * </unix></pre> * * The string <tt>{0}</tt> will be replaced with the username. * * @author Jay Kline */public class UnixK5LoginProvider extends AbstractAuthorizationProvider implements AuthorizationProvider { /** * Returns true if the principal is explicity authorized to the JID * * @param username The username requested. * @param principal The principal requesting the username. * @return true is the user is authorized to be principal */ public boolean authorize(String username, String principal) { return getAuthorized(username).contains(principal); } /** * Returns a String Collection of principals that are authorized to use * the named user. * * @param username The username. * @return A String Collection of principals that are authorized. */ public Collection<String> getAuthorized(String username) { Collection<String> authorized = new ArrayList<String>(); try { String filename = JiveGlobals.getXMLProperty("unix.k5login","/home/{0}/.k5login"); filename = filename.replace("{0}",username); File k5login = new File(filename); FileInputStream fis = new FileInputStream(k5login); DataInputStream dis = new DataInputStream(fis); String line; while ( (line = dis.readLine() ) != null) { authorized.add(line); } } catch (IOException e) { //?? } return authorized; } /** * Returns false, this implementation is not writeable. * * @return False. */ public boolean isWritable() { return false; } /** * Always throws UnsupportedOperationException. * * @param username The username. * @param principal The principal authorized to use the named user. * @throws UnsupportedOperationException If this AuthorizationProvider cannot be updated. */ public void addAuthorized(String username, String principal) throws UnsupportedOperationException { throw new UnsupportedOperationException(); } /** * Always throws UnsupportedOperationException. * * @param username The username. * @param principals The Collection of principals authorized to use the named user. */ public void addAuthorized(String username, Collection<String> principals) throws UnsupportedOperationException { throw new UnsupportedOperationException(); } /** * Always throws UnsupportedOperationException. * * @param username The username. * @param principals The Collection of principals authorized to use the named user. * @throws UnsupportedOperationException If this AuthorizationProvider cannot be updated. */ public void setAuthorized(String username, Collection<String> principals) throws UnsupportedOperationException { throw new UnsupportedOperationException(); } /** * Returns the short name of the Policy * * @return The short name of the Policy */ public String name() { return "Unix .k5login"; } /** * Returns a description of the Policy * * @return The description of the Policy. */ public String description() { return "Checks if the authenticated principal is in the user's .k5login file. A traditional Unix Kerberos methodology."; }}⌨️ 快捷键说明
复制代码Ctrl + C
搜索代码Ctrl + F
全屏模式F11
增大字号Ctrl + =
减小字号Ctrl + -
显示快捷键?