Package cu.ftpd.user.userbases.actions

Source Code of cu.ftpd.user.userbases.actions.AddUser

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
/**
* Copyright (c) 2007, Markus Jevring <markus@jevring.net>
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* are met:
* 1. Redistributions of source code must retain the above copyright
*    notice, this list of conditions and the following disclaimer.
* 2. Redistributions in binary form must reproduce the above copyright
*    notice, this list of conditions and the following disclaimer in the
*    documentation and/or other materials provided with the distribution.
* 3. The names of the contributors may not be used to endorse or promote
*    products derived from this software without specific prior written
*    permission.
*
* THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
* ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
* SUCH DAMAGE.
*
*/

package cu.ftpd.user.userbases.actions;

import cu.ftpd.Connection;
import cu.ftpd.Server;
import cu.ftpd.ServiceManager;
import cu.ftpd.filesystem.FileSystem;
import cu.ftpd.user.User;
import cu.ftpd.user.UserPermission;
import cu.ftpd.user.userbases.UserExistsException;
import cu.ftpd.user.userbases.NoSuchUserException;

/**
* @author Markus Jevring <markus@jevring.net>
* @since 2007-okt-26 : 23:40:32
* @version $Id: AddUser.java 258 2008-10-26 12:47:23Z jevring $
*/
public class AddUser extends UserbaseAction {
    public AddUser() {
        super("adduser");
    }

    public void execute(String[] parameterList, Connection connection, User user, FileSystem fs) {
        //      0       1        2        3++
        // site adduser username password ident@ip
        if (parameterList[1] == null || "".equals(parameterList[1])) {
            connection.respond("500 Must provide a username");
        } else if (parameterList[2] == null || "".equals(parameterList[2])) {
            connection.respond("500 Must provide a password");
        } else if (!parameterList[1].matches("[\\w-]+")) {
            connection.respond("500 Username contains illegal characters.");
        } else {
            if (user.hasPermission(UserPermission.ADDUSER)) {
                try {
                    // NOTE: this needs to be the cleartext password. we leave it up to the userbase in question how to deal with it.
                    // this is ok because we are either doing it in memory (LocalUserbase) or over an encrypted socket (RemoteUserbase).

                    User newuser = ServiceManager.getServices().getUserbase().addUser(parameterList[1], parameterList[2]);
                    // add ips if there are any. A user with no ip cannot log in
                    if (newuser != null) {
                        String wrongIps = "";
                        for (int i = 3; i < parameterList.length; i++) {
                            if (ip.matcher(parameterList[i]).matches()) {
                                newuser.addIp(parameterList[i]);
                            } else {
                                wrongIps += parameterList[i] + ' ';
                            }
                        }
                        connection.respond("200 User " + parameterList[1] + " successfully added." + (wrongIps.length() > 0 ? " The following ips were wrong: " + wrongIps : ""));
                    } else {
                        connection.respond("500 User exists");
                    }
               } catch (IllegalArgumentException e) {
                    // password != null || ""
                    connection.respond("500 " + e.getMessage());
                } catch (UserExistsException e ) {
                    connection.respond("500 " + e.getMessage());
                }
            } else {
                connection.respond("531 Permission denied.");
            }
        }
    }

    protected boolean currentUserIsGadminForUser(String username, User user) {
        try {
            User u = ServiceManager.getServices().getUserbase().getUser(username);
            //current user is gadmin for any of the groups the specified user is a member of
            for (String gadminGroup : user.getGadminGroups()) { // this is generally a smaller set, so it makes sense to go over that first, since we abort early
                if (u.isMemberOfGroup(gadminGroup)) {
                    return true;
                }
            }
        } catch (NoSuchUserException e) {
            // you can't be the gadmin of a user that doesn't exist
        }
        return false;
    }
}
TOP

Related Classes of cu.ftpd.user.userbases.actions.AddUser

  • cu.ftpd.user.User
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.