[jboss-cvs] JBossAS SVN: r65933 - in projects/security/security-jboss-sx/trunk/src/main/org/jboss/security/mapping/providers: principal and 1 other directory.

jboss-cvs-commits at lists.jboss.org jboss-cvs-commits at lists.jboss.org
Mon Oct 8 15:56:55 EDT 2007 

Author: anil.saldhana at jboss.com
Date: 2007-10-08 15:56:54 -0400 (Mon, 08 Oct 2007)
New Revision: 65933

Added:
   projects/security/security-jboss-sx/trunk/src/main/org/jboss/security/mapping/providers/principal/
   projects/security/security-jboss-sx/trunk/src/main/org/jboss/security/mapping/providers/principal/SubjectCNMapper.java
   projects/security/security-jboss-sx/trunk/src/main/org/jboss/security/mapping/providers/principal/SubjectDNMapper.java
Log:
SECURITY-79: principal mapping providers

Added: projects/security/security-jboss-sx/trunk/src/main/org/jboss/security/mapping/providers/principal/SubjectCNMapper.java
===================================================================
--- projects/security/security-jboss-sx/trunk/src/main/org/jboss/security/mapping/providers/principal/SubjectCNMapper.java	                        (rev 0)
+++ projects/security/security-jboss-sx/trunk/src/main/org/jboss/security/mapping/providers/principal/SubjectCNMapper.java	2007-10-08 19:56:54 UTC (rev 65933)
@@ -0,0 +1,81 @@
+/*
+  * JBoss, Home of Professional Open Source
+  * Copyright 2007, JBoss Inc., and individual contributors as indicated
+  * by the @authors tag. See the copyright.txt in the distribution for a
+  * full listing of individual contributors.
+  *
+  * This is free software; you can redistribute it and/or modify it
+  * under the terms of the GNU Lesser General Public License as
+  * published by the Free Software Foundation; either version 2.1 of
+  * the License, or (at your option) any later version.
+  *
+  * This software is distributed in the hope that it will be useful,
+  * but WITHOUT ANY WARRANTY; without even the implied warranty of
+  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+  * Lesser General Public License for more details.
+  *
+  * You should have received a copy of the GNU Lesser General Public
+  * License along with this software; if not, write to the Free
+  * Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
+  * 02110-1301 USA, or see the FSF site: http://www.fsf.org.
+  */
+package org.jboss.security.mapping.providers.principal;
+
+import java.security.Principal;
+import java.security.acl.Group;
+import java.security.cert.X509Certificate;
+import java.util.Map;
+
+import javax.security.auth.x500.X500Principal;
+
+import org.jboss.logging.Logger;
+import org.jboss.security.auth.certs.SubjectCNMapping;
+import org.jboss.security.mapping.MappingProvider;
+import org.jboss.security.mapping.MappingResult;
+
+//$Id$
+
+/**
+ *  A X500 Principal Mapper from a X509 Certificate that uses the client cert
+ *  SubjectDN CN='...' element as the principal.
+ *  
+ *  @see org.jboss.security.auth.certs.SubjectCNMapping
+ *  @author Anil.Saldhana at redhat.com
+ *  @since  Oct 5, 2007 
+ *  @version $Revision$
+ */
+public class SubjectCNMapper implements MappingProvider<Principal>
+{ 
+   private static final Logger log = Logger.getLogger(SubjectCNMapper.class);
+   private Map options = null;
+   private MappingResult<Principal> result;
+
+   public void init(Map opt)
+   {
+      this.options = opt; 
+   }
+
+   public void setMappingResult(MappingResult res)
+   { 
+      result = res;
+   }
+   
+   public void performMapping(Map contextMap, Principal principal)
+   {
+      if(principal instanceof X500Principal == false)
+         return;
+      if(contextMap == null)
+         throw new IllegalArgumentException("ContextMap is null");
+      
+      X509Certificate[] certs = (X509Certificate[]) contextMap.get("X509");
+      if(certs != null)
+      {
+        SubjectCNMapping sdn = new SubjectCNMapping();
+        principal = sdn.toPrinicipal(certs);
+        if(log.isTraceEnabled())
+           log.trace("Mapped to Principal:"+principal);
+      }
+      
+      result.setMappedObject(principal);
+   } 
+}
\ No newline at end of file

Added: projects/security/security-jboss-sx/trunk/src/main/org/jboss/security/mapping/providers/principal/SubjectDNMapper.java
===================================================================
--- projects/security/security-jboss-sx/trunk/src/main/org/jboss/security/mapping/providers/principal/SubjectDNMapper.java	                        (rev 0)
+++ projects/security/security-jboss-sx/trunk/src/main/org/jboss/security/mapping/providers/principal/SubjectDNMapper.java	2007-10-08 19:56:54 UTC (rev 65933)
@@ -0,0 +1,78 @@
+/*
+  * JBoss, Home of Professional Open Source
+  * Copyright 2007, JBoss Inc., and individual contributors as indicated
+  * by the @authors tag. See the copyright.txt in the distribution for a
+  * full listing of individual contributors.
+  *
+  * This is free software; you can redistribute it and/or modify it
+  * under the terms of the GNU Lesser General Public License as
+  * published by the Free Software Foundation; either version 2.1 of
+  * the License, or (at your option) any later version.
+  *
+  * This software is distributed in the hope that it will be useful,
+  * but WITHOUT ANY WARRANTY; without even the implied warranty of
+  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+  * Lesser General Public License for more details.
+  *
+  * You should have received a copy of the GNU Lesser General Public
+  * License along with this software; if not, write to the Free
+  * Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
+  * 02110-1301 USA, or see the FSF site: http://www.fsf.org.
+  */
+package org.jboss.security.mapping.providers.principal;
+
+import java.security.Principal;
+import java.util.Map;
+
+import javax.security.auth.x500.X500Principal;
+import java.security.cert.X509Certificate;
+
+import org.jboss.logging.Logger;
+import org.jboss.security.auth.certs.SubjectDNMapping;
+import org.jboss.security.mapping.MappingProvider;
+import org.jboss.security.mapping.MappingResult;
+
+//$Id$
+
+/**
+ *  A X500 Principal Mapper from a X509 Certificate
+ *  that considers SubjectDN of the Client certificate
+ *  
+ *  @see org.jboss.security.auth.certs.SubjectDNMapping
+ *  @author Anil.Saldhana at redhat.com
+ *  @since  Oct 5, 2007 
+ *  @version $Revision$
+ */
+public class SubjectDNMapper implements MappingProvider<Principal>
+{ 
+   private static final Logger log = Logger.getLogger(SubjectDNMapper.class);
+   private Map options = null;
+   private MappingResult<Principal> result;
+
+   public void init(Map opt)
+   {
+      this.options = opt; 
+   }
+
+   public void setMappingResult(MappingResult res)
+   { 
+      result = res;
+   }
+   
+   public void performMapping(Map contextMap, Principal principal)
+   {
+      if(contextMap == null)
+         throw new IllegalArgumentException("ContextMap is null");
+      
+      X509Certificate[] certs = (X509Certificate[]) contextMap.get("X509");
+      if(certs != null)
+      {
+        SubjectDNMapping sdn = new SubjectDNMapping();
+        principal = sdn.toPrinicipal(certs);
+        if(log.isTraceEnabled())
+           log.trace("Mapped to Principal:"+principal);
+      } 
+
+      result.setMappedObject(principal);
+   } 
+}

More information about the jboss-cvs-commits mailing list