Package org.acegisecurity

Examples of org.acegisecurity.Authentication

114
115
116
117
118
119
120
121
122
123
124
     * Obtain the current active <code>Authentication</code>
     *
     * @return the authentication object or <code>null</code>
     */
    private Authentication getAuthentication() {
        Authentication auth = SecurityContextHolder.getContext()
                                                   .getAuthentication();

        if (!authenticationTrustResolver.isAnonymous(auth)) {
            return auth;
        }
View Full Code Here
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
        return null;
    }

    private boolean isGranted(String role) {
        Authentication auth = getAuthentication();

        if ((auth == null) || (auth.getPrincipal() == null)
            || (auth.getauthorities() == null)) {
            return false;
        }

        for (int i = 0; i < auth.getauthorities().length; i++) {
            if (role.equals(auth.getauthorities()[i].getauthority())) {
                return true;
            }
        }

        return false;
View Full Code Here
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
     */
    public void before(Method method, Object[] args, Object target) throws Throwable {
        SecurityContext ctx = SecurityContextHolder.getContext();

        if (ctx.getAuthentication() != null) {
            Authentication auth = ctx.getAuthentication();
            boolean administrator = false;
            GrantedAuthority[] roles = auth.getauthorities();
            for (int i=0; i < roles.length; i++) {
                if (roles[i].getauthority().equals(Constants.ADMIN_ROLE)) {
                    administrator = true;
                    break;
                }
            }

            User user = (User) args[0];
            String username = user.getUsername();

            String currentUser = null;
            if (auth.getPrincipal() instanceof UserDetails) {
                currentUser = ((UserDetails) auth.getPrincipal()).getUsername();
            } else {
                currentUser = String.valueOf(auth.getPrincipal());
            }

            if (!username.equals(currentUser)) {
                AuthenticationTrustResolver resolver = new AuthenticationTrustResolverImpl();
                // allow new users to signup - this is OK b/c Signup doesn't allow setting of roles
View Full Code Here
119
120
121
122
123
124
125
126
127
128
129
130
131
            }
           
            userCache.removeUserFromCache(user.getUsername());
           
            // reset the authentication object if current user
            Authentication auth = SecurityContextHolder.getContext().getAuthentication();
            if (auth != null && auth.getPrincipal() instanceof UserDetails) {
                User currentUser = (User) auth.getPrincipal();
                if (currentUser.getUsername().equalsIgnoreCase(user.getUsername())) {
                    auth = new UsernamePasswordAuthenticationToken(user, user.getPassword(), user.getauthorities());
                    SecurityContextHolder.getContext().setAuthentication(auth);
                }
            }
View Full Code Here
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
                        "An Authentication object was not found in the SecurityContext"),
                    object, attr);
            }

            // Attempt authentication if not already authenticated, or user always wants reauthentication
            Authentication authenticated;

            if (!SecurityContextHolder.getContext().getAuthentication()
                                      .isAuthenticated()
                || alwaysReauthenticate) {
                try {
                    authenticated = this.authenticationManager.authenticate(SecurityContextHolder.getContext()
                                                                                                 .getAuthentication());
                } catch (AuthenticationException authenticationException) {
                    throw authenticationException;
                }

                // We don't authenticated.setAuthentication(true), because each provider should do that
                if (logger.isDebugEnabled()) {
                    logger.debug("Successfully Authenticated: "
                        + authenticated.toString());
                }

                SecurityContextHolder.getContext()
                                     .setAuthentication(authenticated);
            } else {
                authenticated = SecurityContextHolder.getContext()
                                                     .getAuthentication();

                if (logger.isDebugEnabled()) {
                    logger.debug("Previously Authenticated: "
                        + authenticated.toString());
                }
            }

            // Attempt authorization
            try {
                this.accessDecisionManager.decide(authenticated, object,
                    attr);
            } catch (AccessDeniedException accessDeniedException) {
                AuthorizationFailureEvent event = new AuthorizationFailureEvent(object,
                        attr, authenticated, accessDeniedException);
                this.eventPublisher.publishEvent(event);

                throw accessDeniedException;
            }

            if (logger.isDebugEnabled()) {
                logger.debug("authorization successful");
            }

            AuthorizedEvent event = new AuthorizedEvent(object, attr,
                    authenticated);
            this.eventPublisher.publishEvent(event);

            // Attempt to run as a different user
            Authentication runAs = this.runAsManager.buildRunAs(authenticated,
                    object, attr);

            if (runAs == null) {
                if (logger.isDebugEnabled()) {
                    logger.debug(
                        "RunAsManager did not change Authentication object");
                }

                return new InterceptorStatusToken(authenticated, false,
                    attr, object); // no further work post-invocation
            } else {
                if (logger.isDebugEnabled()) {
                    logger.debug("Switching to RunAs Authentication: "
                        + runAs.toString());
                }

                SecurityContextHolder.getContext().setAuthentication(runAs);

                return new InterceptorStatusToken(authenticated, true,
View Full Code Here
30
31
32
33
34
35
36
37
38
39
40
41
        context.setAuthentication(token);
        SecurityContextHolder.setContext(context);
    }

    public void testAddUserWithoutAdminRole() throws Exception {
        Authentication auth = SecurityContextHolder.getContext().getAuthentication();
        assertTrue(auth.isAuthenticated());
        UserManager userManager = (UserManager) makeInterceptedTarget();
        User user = new User("admin");

        try {
            userManager.saveUser(user);
View Full Code Here
423
424
425
426
427
428
429
430
431
432
433
        SecurityContext context = (SecurityContext) event.getSession().getAttribute(HttpSessionContextIntegrationFilter.ACEGI_SECURITY_CONTEXT_KEY);
        if (context == null) {
            log.debug("The destroyed session has no SecurityContext");
            return;
        }
        Authentication auth = context.getAuthentication();
        if ((auth != null) && (auth instanceof JaasAuthenticationToken)) {
            JaasAuthenticationToken token = (JaasAuthenticationToken) auth;
            try {
                LoginContext loginContext = token.getLoginContext();
                if (loginContext != null) {
View Full Code Here
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
     *         <code>Authentication</code> associated with this request.
     */
    protected Authentication attemptExitUser(HttpServletRequest request)
        throws AuthenticationCredentialsNotFoundException {
        // need to check to see if the current user has a SwitchUserGrantedAuthority
        Authentication current = SecurityContextHolder.getContext()
                                                      .getAuthentication();

        if (null == current) {
            throw new AuthenticationCredentialsNotFoundException(messages
                    .getMessage("SwitchUserProcessingFilter.noCurrentUser",
                        "No current user associated with this request"));
            }

            // check to see if the current user did actual switch to another user
            // if so, get the original source user so we can switch back
            Authentication original = getSourceAuthentication(current);

            if (original == null) {
                logger.error(
                    "Could not find original user Authentication object!");
                throw new AuthenticationCredentialsNotFoundException(messages
                        .getMessage(
                            "SwitchUserProcessingFilter.noOriginalAuthentication",
                            "Could not find original Authentication object"));
                }

                // get the source user details
                UserDetails originalUser = null;
                Object obj = original.getPrincipal();

                if ((obj != null) && obj instanceof UserDetails) {
                    originalUser = (UserDetails) obj;
                }

View Full Code Here
305
306
307
308
309
310
311
312
313
314
315
                        UserDetails targetUser) {
                        UsernamePasswordAuthenticationToken targetUserRequest;

                        // grant an additional authority that contains the original Authentication object
                        // which will be used to 'exit' from the current switched user.
                        Authentication currentAuth = SecurityContextHolder.getContext()
                                                                          .getAuthentication();
                        GrantedAuthority switchauthority = new SwitchUserGrantedAuthority(ROLE_PREVIOUS_ADMINISTRATOR,
                                currentAuth);

                        // get the original authorities
View Full Code Here
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
                        HttpServletResponse httpResponse = (HttpServletResponse) response;

                        // check for switch or exit request
                        if (requiresSwitchUser(httpRequest)) {
                            // if set, attempt switch and store original
                            Authentication targetUser = attemptSwitchUser(httpRequest);

                            // update the current context to the new target user
                            SecurityContextHolder.getContext()
                                                 .setAuthentication(targetUser);

                            // redirect to target url
                            httpResponse.sendRedirect(httpResponse
                                    .encodeRedirectURL(httpRequest
                                            .getContextPath() + targetUrl));

                                    return;
                                } else if (requiresExitUser(httpRequest)) {
                                    // get the original authentication object (if exists)
                                    Authentication originalUser = attemptExitUser(httpRequest);

                                    // update the current context back to the original user
                                    SecurityContextHolder.getContext()
                                                         .setAuthentication(originalUser);
View Full Code Here
TOP

Related Classes of org.acegisecurity.Authentication

  • $.AuthorizeSupport
  • $.HttpSessionContextIntegrationForCacheFilter
  • $.UserAuthenticationProcessingFilter
  • com.cisco.step.jenkins.plugins.jenkow.JenkowWorkflowRepository
  • com.cloudbees.jenkins.GitHubWebHook
  • com.groupon.jenkins.dynamic.organizationcontainer.OrganizationGravatarIcon
  • com.groupon.jenkins.github.services.AuthenticationService
  • com.groupon.jenkins.util.AuthenticationMixin
  • com.san.my.web.action.account.Login
  • com.vst.service.UserSecurityAdvice
    • Copyright © 2018 www.massapicom. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.