Examples of org.acegisecurity.providers.ldap.LdapUserInfo

• org.acegisecurity.providers.ldap.LdapUserInfo
  A user representation which is used internally by the Ldap provider. It contains the user's distinguished name and a set of attributes that have been retrieved from the Ldap server.

  An instance may be created as the result of a search, or when user information is retrieved during authentication.

  An instance of this class will be used by the LdapAuthenticationProvider to construct the final user details object that it returns.

  @author Luke Taylor @version $Id: LdapUserInfo.java,v 1.1 2006/04/01 03:37:46 itnaf Exp $

    //~ Methods ================================================================

    public LdapUserInfo authenticate(String username, String password) {

        // locate the user and check the password
        LdapUserInfo user = null;

        DirContext ctx = getInitialDirContextFactory().newInitialDirContext();
        Iterator dns = getUserDns(username).iterator();

        try {
            while(dns.hasNext() && user == null) {
                String userDn = (String)dns.next();
                String relativeName = LdapUtils.getRelativeName(userDn, ctx);

                user = new LdapUserInfo(userDn,
                        ctx.getAttributes(relativeName, getUserAttributes()));
            }

            if (user == null && getUserSearch() != null) {
                user = getUserSearch().searchForUser(username);
            }

            if (user == null) {
                throw new UsernameNotFoundException(username);
            }

            Attribute passwordAttribute = user.getAttributes().get(passwordAttributeName);

            if(passwordAttribute != null) {
                Object retrievedPassword = passwordAttribute.get();

                if (!(retrievedPassword instanceof String)) {
                    // Assume it's binary
                    retrievedPassword = new String((byte[])retrievedPassword);
                }

                if (!verifyPassword(password, (String)retrievedPassword)) {
                    throw new BadCredentialsException(messages.getMessage(
                            "PasswordComparisonAuthenticator.badCredentials",
                            "Bad credentials"));
                }

            } else {
                if (logger.isDebugEnabled()) {
                    logger.debug("Password attribute " + passwordAttributeName
                            + " wasn't retrieved for user " + username);
                }

                doPasswordCompare(ctx, user.getRelativeName(ctx), password);
            }

            return user;
        } catch(NamingException ne) {
            throw new BadCredentialsException("Authentication failed due to exception ", ne);

          authoritiesPopulator.setGroupRoleAttribute(groupRoleAttribute);

            System.out.println("***********************************");
          LdapAuthenticationProvider ldapAuthenticationProvider =
            new LdapAuthenticationProvider(authenticator, authoritiesPopulator);
          LdapUserInfo user = authenticator.authenticate(userDetails.getUsername(),
              (String)authentication.getCredentials());
          if (user != null) {
              UserDetails u = ldapAuthenticationProvider.retrieveUser(userDetails.getUsername(),
                  authentication);
              System.out.println("user " + u);