📄 hashuserrealm.java
字号:
// ========================================================================// Copyright 1996-2005 Mort Bay Consulting Pty. Ltd.// ------------------------------------------------------------------------// Licensed under the Apache License, Version 2.0 (the "License");// you may not use this file except in compliance with the License.// You may obtain a copy of the License at // http://www.apache.org/licenses/LICENSE-2.0// Unless required by applicable law or agreed to in writing, software// distributed under the License is distributed on an "AS IS" BASIS,// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.// See the License for the specific language governing permissions and// limitations under the License.// ========================================================================package org.mortbay.jetty.security;import java.io.File;import java.io.FilenameFilter;import java.io.IOException;import java.io.PrintStream;import java.security.Principal;import java.util.ArrayList;import java.util.HashMap;import java.util.HashSet;import java.util.Iterator;import java.util.List;import java.util.Map;import java.util.Properties;import java.util.StringTokenizer;import org.mortbay.component.AbstractLifeCycle;import org.mortbay.jetty.Request;import org.mortbay.jetty.Response;import org.mortbay.log.Log;import org.mortbay.resource.Resource;import org.mortbay.util.Scanner;import org.mortbay.util.Scanner.BulkListener;/* ------------------------------------------------------------ *//** HashMapped User Realm. * * An implementation of UserRealm that stores users and roles in-memory in * HashMaps. * <P> * Typically these maps are populated by calling the load() method or passing * a properties resource to the constructor. The format of the properties * file is: <PRE> * username: password [,rolename ...] * </PRE> * Passwords may be clear text, obfuscated or checksummed. The class * com.mortbay.Util.Password should be used to generate obfuscated * passwords or password checksums. * * If DIGEST Authentication is used, the password must be in a recoverable * format, either plain text or OBF:. * * The HashUserRealm also implements SSORealm but provides no implementation * of SSORealm. Instead setSSORealm may be used to provide a delegate * SSORealm implementation. * * @see Password * @author Greg Wilkins (gregw) */public class HashUserRealm extends AbstractLifeCycle implements UserRealm, SSORealm{ /** HttpContext Attribute to set to activate SSO. */ public static final String __SSO = "org.mortbay.http.SSO"; /* ------------------------------------------------------------ */ private String _realmName; private String _config; private Resource _configResource; protected HashMap _users=new HashMap(); protected HashMap _roles=new HashMap(7); private SSORealm _ssoRealm; private Scanner _scanner; private int _refreshInterval=0;//default is not to reload /* ------------------------------------------------------------ */ /** Constructor. */ public HashUserRealm() {} /* ------------------------------------------------------------ */ /** Constructor. * @param name Realm Name */ public HashUserRealm(String name) { _realmName=name; } /* ------------------------------------------------------------ */ /** Constructor. * @param name Realm name * @param config Filename or url of user properties file. */ public HashUserRealm(String name, String config) throws IOException { _realmName=name; setConfig(config); } public String getConfig() { return _config; } public Resource getConfigResource() { return _configResource; } /* ------------------------------------------------------------ */ /** Load realm users from properties file. * The property file maps usernames to password specs followed by * an optional comma separated list of role names. * * @param config Filename or url of user properties file. * @exception IOException */ public void setConfig(String config) throws IOException { _config=config; _configResource=Resource.newResource(_config); loadConfig(); } public void setRefreshInterval (int msec) { _refreshInterval=msec; } public int getRefreshInterval() { return _refreshInterval; } protected void loadConfig () throws IOException { synchronized (this) { _users.clear(); _roles.clear(); if(Log.isDebugEnabled())Log.debug("Load "+this+" from "+_config); Properties properties = new Properties(); properties.load(_configResource.getInputStream()); Iterator iter = properties.entrySet().iterator(); while(iter.hasNext()) { Map.Entry entry = (Map.Entry)iter.next(); String username=entry.getKey().toString().trim(); String credentials=entry.getValue().toString().trim(); String roles=null; int c=credentials.indexOf(','); if (c>0) { roles=credentials.substring(c+1).trim(); credentials=credentials.substring(0,c).trim(); } if (username!=null && username.length()>0 && credentials!=null && credentials.length()>0) { put(username,credentials); if(roles!=null && roles.length()>0) { StringTokenizer tok = new StringTokenizer(roles,", "); while (tok.hasMoreTokens()) addUserToRole(username,tok.nextToken()); } } } } } /* ------------------------------------------------------------ */ /** * @param name The realm name */ public void setName(String name) { _realmName=name; } /* ------------------------------------------------------------ */ /** * @return The realm name. */ public String getName() { return _realmName; } /* ------------------------------------------------------------ */ public Principal getPrincipal(String username) { return (Principal)_users.get(username); } /* ------------------------------------------------------------ */ public Principal authenticate(String username,Object credentials,Request request) { KnownUser user; synchronized (this) { user = (KnownUser)_users.get(username); } if (user==null) return null; if (user.authenticate(credentials)) return user; return null; } /* ------------------------------------------------------------ */ public void disassociate(Principal user) { } /* ------------------------------------------------------------ */ public Principal pushRole(Principal user, String role) { if (user==null) user=new User(); return new WrappedUser(user,role); } /* ------------------------------------------------------------ */ public Principal popRole(Principal user) { WrappedUser wu = (WrappedUser)user; return wu.getUserPrincipal(); } /* ------------------------------------------------------------ */ /** Put user into realm. * @param name User name * @param credentials String password, Password or UserPrinciple * instance. * @return Old UserPrinciple value or null */ public synchronized Object put(Object name, Object credentials) { if (credentials instanceof Principal) return _users.put(name.toString(),credentials); if (credentials instanceof Password) return _users.put(name,new KnownUser(name.toString(),(Password)credentials)); if (credentials != null) return _users.put(name,new KnownUser(name.toString(),Credential.getCredential(credentials.toString()))); return null; } /* ------------------------------------------------------------ */ /** Add a user to a role.⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -