/*
* Licensed to the Apache Software Foundation (ASF) under one or more
* contributor license agreements. See the NOTICE file distributed with
* this work for additional information regarding copyright ownership.
* The ASF licenses this file to You under the Apache License, Version 2.0
* (the "License"); you may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*
*/
package org.apache.ivy.util.url;
import java.lang.reflect.Field;
import java.net.Authenticator;
import java.net.PasswordAuthentication;
import org.apache.ivy.util.Credentials;
import org.apache.ivy.util.Message;
/**
*
*/
public final class IvyAuthenticator extends Authenticator {
private Authenticator original;
/**
* Private c'tor to prevent instantiation.
*/
private IvyAuthenticator(Authenticator original) {
this.original = original;
}
/**
* Installs an <tt>IvyAuthenticator</tt> as default <tt>Authenticator</tt>.
* Call this method before opening HTTP(S) connections to enable Ivy
* authentication.
*/
public static void install() {
// We will try to use the original authenticator as backup authenticator.
// Since there is no getter available, so try to use some reflection to
// obtain it. If that doesn't work, assume there is no original authenticator
Authenticator original = null;
try {
Field f = Authenticator.class.getDeclaredField("theAuthenticator");
f.setAccessible(true);
original = (Authenticator) f.get(null);
} catch (Throwable t) {
Message.debug("Error occurred while getting the original authenticator: " + t.getMessage());
}
if (!(original instanceof IvyAuthenticator)) {
Authenticator.setDefault(new IvyAuthenticator(original));
}
}
// API ******************************************************************
// Overriding Authenticator *********************************************
protected PasswordAuthentication getPasswordAuthentication() {
PasswordAuthentication result = null;
String proxyHost = System.getProperty("http.proxyHost");
if (getRequestingHost().equals(proxyHost)) {
String proxyUser = System.getProperty("http.proxyUser");
if ((proxyUser != null) && (proxyUser.trim().length() > 0)) {
String proxyPass = System.getProperty("http.proxyPassword", "");
Message.debug("authenicating to proxy server with username [" + proxyUser + "]");
result = new PasswordAuthentication(proxyUser, proxyPass.toCharArray());
}
} else {
Credentials c = CredentialsStore.INSTANCE.getCredentials(getRequestingPrompt(),
getRequestingHost());
Message.debug("authentication: k='"
+ Credentials.buildKey(getRequestingPrompt(), getRequestingHost()) + "' c='" + c
+ "'");
if (c != null) {
result = new PasswordAuthentication(c.getUserName(), c.getPasswd().toCharArray());
}
}
if ((result == null) && (original != null)) {
Authenticator.setDefault(original);
try {
result = Authenticator.requestPasswordAuthentication(getRequestingHost(),
getRequestingSite(), getRequestingPort(), getRequestingProtocol(),
getRequestingPrompt(), getRequestingScheme());
} finally {
Authenticator.setDefault(this);
}
}
return result;
}
}