1 | |
|
2 | |
|
3 | |
|
4 | |
|
5 | |
|
6 | |
|
7 | |
|
8 | |
|
9 | |
|
10 | |
|
11 | |
package org.mule.security; |
12 | |
|
13 | |
import org.mule.api.EncryptionStrategy; |
14 | |
import org.mule.api.lifecycle.Initialisable; |
15 | |
import org.mule.api.lifecycle.InitialisationException; |
16 | |
import org.mule.api.lifecycle.LifecycleTransitionResult; |
17 | |
import org.mule.api.security.Authentication; |
18 | |
import org.mule.api.security.SecurityContext; |
19 | |
import org.mule.api.security.SecurityException; |
20 | |
import org.mule.api.security.SecurityManager; |
21 | |
import org.mule.api.security.SecurityProvider; |
22 | |
import org.mule.api.security.SecurityProviderNotFoundException; |
23 | |
import org.mule.api.security.UnauthorisedException; |
24 | |
import org.mule.api.security.UnknownAuthenticationTypeException; |
25 | |
import org.mule.config.i18n.CoreMessages; |
26 | |
|
27 | |
import java.util.ArrayList; |
28 | |
import java.util.Collection; |
29 | |
import java.util.Collections; |
30 | |
import java.util.Iterator; |
31 | |
import java.util.LinkedList; |
32 | |
import java.util.List; |
33 | |
import java.util.Map; |
34 | |
|
35 | |
import edu.emory.mathcs.backport.java.util.concurrent.ConcurrentHashMap; |
36 | |
|
37 | |
import org.apache.commons.logging.Log; |
38 | |
import org.apache.commons.logging.LogFactory; |
39 | |
|
40 | |
|
41 | |
|
42 | |
|
43 | |
|
44 | |
|
45 | |
public class MuleSecurityManager implements SecurityManager |
46 | |
{ |
47 | |
|
48 | |
|
49 | |
|
50 | 0 | protected static final Log logger = LogFactory.getLog(MuleSecurityManager.class); |
51 | |
|
52 | 0 | @SuppressWarnings("unchecked") |
53 | |
private Map<String, SecurityProvider> providers = new ConcurrentHashMap(); |
54 | |
|
55 | 0 | @SuppressWarnings("unchecked") |
56 | |
private Map<String, EncryptionStrategy> cryptoStrategies = new ConcurrentHashMap(); |
57 | |
|
58 | |
public MuleSecurityManager() |
59 | |
{ |
60 | 0 | super(); |
61 | 0 | } |
62 | |
|
63 | |
public void initialise() throws InitialisationException |
64 | |
{ |
65 | 0 | List<Initialisable> all = new LinkedList<Initialisable>(providers.values()); |
66 | |
|
67 | 0 | all.addAll(cryptoStrategies.values()); |
68 | 0 | LifecycleTransitionResult.initialiseAll(all.iterator()); |
69 | 0 | } |
70 | |
|
71 | |
public Authentication authenticate(Authentication authentication) |
72 | |
throws SecurityException, SecurityProviderNotFoundException |
73 | |
{ |
74 | 0 | Iterator<SecurityProvider> iter = providers.values().iterator(); |
75 | 0 | Class<? extends Authentication> toTest = authentication.getClass(); |
76 | |
|
77 | 0 | while (iter.hasNext()) |
78 | |
{ |
79 | 0 | SecurityProvider provider = iter.next(); |
80 | |
|
81 | 0 | if (provider.supports(toTest)) |
82 | |
{ |
83 | 0 | if (logger.isDebugEnabled()) |
84 | |
{ |
85 | 0 | logger.debug("Authentication attempt using " + provider.getClass().getName()); |
86 | |
} |
87 | |
|
88 | 0 | Authentication result = null; |
89 | |
try |
90 | |
{ |
91 | 0 | result = provider.authenticate(authentication); |
92 | |
} |
93 | 0 | catch (Exception e) |
94 | |
{ |
95 | 0 | if (!iter.hasNext()) |
96 | |
{ |
97 | 0 | throw new UnauthorisedException(CoreMessages.authorizationAttemptFailed(), e); |
98 | |
} |
99 | 0 | } |
100 | |
|
101 | 0 | if (result != null) |
102 | |
{ |
103 | 0 | return result; |
104 | |
} |
105 | |
} |
106 | 0 | } |
107 | |
|
108 | 0 | throw new SecurityProviderNotFoundException(toTest.getName()); |
109 | |
} |
110 | |
|
111 | |
public void addProvider(SecurityProvider provider) |
112 | |
{ |
113 | 0 | if (getProvider(provider.getName()) != null) |
114 | |
{ |
115 | 0 | throw new IllegalArgumentException("Provider already registered: " + provider.getName()); |
116 | |
} |
117 | 0 | providers.put(provider.getName(), provider); |
118 | 0 | } |
119 | |
|
120 | |
public SecurityProvider getProvider(String name) |
121 | |
{ |
122 | 0 | if (name == null) |
123 | |
{ |
124 | 0 | throw new IllegalArgumentException("provider Name cannot be null"); |
125 | |
} |
126 | 0 | return providers.get(name); |
127 | |
} |
128 | |
|
129 | |
public SecurityProvider removeProvider(String name) |
130 | |
{ |
131 | 0 | return providers.remove(name); |
132 | |
} |
133 | |
|
134 | |
public Collection<SecurityProvider> getProviders() |
135 | |
{ |
136 | 0 | ArrayList<SecurityProvider> providersList = new ArrayList<SecurityProvider>(providers.values()); |
137 | 0 | return Collections.unmodifiableCollection(providersList); |
138 | |
} |
139 | |
|
140 | |
public void setProviders(Collection<SecurityProvider> providers) |
141 | |
{ |
142 | 0 | for (SecurityProvider provider : providers) |
143 | |
{ |
144 | 0 | addProvider(provider); |
145 | |
} |
146 | 0 | } |
147 | |
|
148 | |
public SecurityContext createSecurityContext(Authentication authentication) |
149 | |
throws UnknownAuthenticationTypeException |
150 | |
{ |
151 | 0 | Iterator<SecurityProvider> iter = providers.values().iterator(); |
152 | 0 | Class<? extends Authentication> toTest = authentication.getClass(); |
153 | |
|
154 | 0 | while (iter.hasNext()) |
155 | |
{ |
156 | 0 | SecurityProvider provider = iter.next(); |
157 | 0 | if (provider.supports(toTest)) |
158 | |
{ |
159 | 0 | return provider.createSecurityContext(authentication); |
160 | |
} |
161 | 0 | } |
162 | 0 | throw new UnknownAuthenticationTypeException(authentication); |
163 | |
} |
164 | |
|
165 | |
public EncryptionStrategy getEncryptionStrategy(String name) |
166 | |
{ |
167 | 0 | return cryptoStrategies.get(name); |
168 | |
} |
169 | |
|
170 | |
public void addEncryptionStrategy(EncryptionStrategy strategy) |
171 | |
{ |
172 | 0 | cryptoStrategies.put(strategy.getName(), strategy); |
173 | 0 | } |
174 | |
|
175 | |
public EncryptionStrategy removeEncryptionStrategy(String name) |
176 | |
{ |
177 | 0 | return cryptoStrategies.remove(name); |
178 | |
} |
179 | |
|
180 | |
public Collection<EncryptionStrategy> getEncryptionStrategies() |
181 | |
{ |
182 | 0 | List<EncryptionStrategy> allStrategies = new ArrayList<EncryptionStrategy>(cryptoStrategies.values()); |
183 | 0 | return Collections.unmodifiableCollection(allStrategies); |
184 | |
} |
185 | |
|
186 | |
public void setEncryptionStrategies(Collection<EncryptionStrategy> strategies) |
187 | |
{ |
188 | 0 | for (EncryptionStrategy strategy : strategies) |
189 | |
{ |
190 | 0 | addEncryptionStrategy(strategy); |
191 | |
} |
192 | 0 | } |
193 | |
} |