📄 jaassecurityfilter.java
字号:
/* * $Id: JaasSecurityFilter.java 10662 2008-02-01 13:10:14Z romikk $ * -------------------------------------------------------------------------------------- * Copyright (c) MuleSource, Inc. All rights reserved. http://www.mulesource.com * * The software in this package is published under the terms of the CPAL v1.0 * license, a copy of which has been included with this distribution in the * LICENSE.txt file. */package org.mule.module.jaas.filters;import org.mule.api.MuleEvent;import org.mule.api.lifecycle.InitialisationException;import org.mule.api.security.CredentialsNotSetException;import org.mule.api.security.CryptoFailureException;import org.mule.api.security.EncryptionStrategyNotFoundException;import org.mule.api.security.SecurityException;import org.mule.api.security.SecurityProviderNotFoundException;import org.mule.api.security.Authentication;import org.mule.api.security.Credentials;import org.mule.api.security.SecurityContext;import org.mule.api.security.UnauthorisedException;import org.mule.api.security.UnknownAuthenticationTypeException;import org.mule.config.i18n.CoreMessages;import org.mule.module.jaas.JaasAuthentication;import org.mule.security.AbstractEndpointSecurityFilter;import org.mule.security.MuleCredentials;import org.mule.security.MuleHeaderCredentialsAccessor;public class JaasSecurityFilter extends AbstractEndpointSecurityFilter{ public JaasSecurityFilter() { setCredentialsAccessor(new MuleHeaderCredentialsAccessor()); } protected final void authenticateInbound(MuleEvent event) throws SecurityException, CryptoFailureException, EncryptionStrategyNotFoundException, UnknownAuthenticationTypeException { String userHeader = (String) getCredentialsAccessor().getCredentials(event); if (userHeader == null) { throw new CredentialsNotSetException(event.getMessage(), event.getSession().getSecurityContext(), event.getEndpoint(), this); } Credentials user = new MuleCredentials(userHeader, getSecurityManager()); Authentication authResult; Authentication umoAuthentication = new JaasAuthentication(user); try { authResult = getSecurityManager().authenticate(umoAuthentication); } catch (SecurityException se) { // Security Exception occurred if (logger.isDebugEnabled()) { logger.debug("Security Exception raised. Authentication request for user: " + user.getUsername() + " failed: " + se.toString()); } throw se; } catch (Exception e) { // Authentication failed if (logger.isDebugEnabled()) { logger.debug("Authentication request for user: " + user.getUsername() + " failed: " + e.toString()); } throw new UnauthorisedException(CoreMessages.authFailedForUser(user.getUsername()), event.getMessage(), e); } // Authentication success if (logger.isDebugEnabled()) { logger.debug("Authentication success: " + authResult.toString()); } SecurityContext context = getSecurityManager().createSecurityContext(authResult); context.setAuthentication(authResult); event.getSession().setSecurityContext(context); } protected void authenticateOutbound(MuleEvent event) throws SecurityException, SecurityProviderNotFoundException, CryptoFailureException { if (event.getSession().getSecurityContext() == null) { if (isAuthenticate()) { throw new UnauthorisedException(event.getMessage(), event.getSession().getSecurityContext(), event.getEndpoint(), this); } else { return; } } Authentication auth = event.getSession().getSecurityContext().getAuthentication(); if (isAuthenticate()) { auth = getSecurityManager().authenticate(auth); if (logger.isDebugEnabled()) { logger.debug("Authentication success: " + auth.toString()); } } String token = auth.getCredentials().toString(); getCredentialsAccessor().setCredentials(event, token); } protected void doInitialise() throws InitialisationException { // empty constructor }}⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -