[jboss-cvs] Picketlink SVN: r870 - federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat.

jboss-cvs-commits at lists.jboss.org jboss-cvs-commits at lists.jboss.org
Mon Apr 11 10:23:40 EDT 2011 

Author: anil.saldhana at jboss.com
Date: 2011-04-11 10:23:40 -0400 (Mon, 11 Apr 2011)
New Revision: 870

Added:
   federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/PicketLinkAuthenticator.java
Log:
PLFED-169: a tomcat authenticator that delegates to the realm

Added: federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/PicketLinkAuthenticator.java
===================================================================
--- federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/PicketLinkAuthenticator.java	                        (rev 0)
+++ federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/PicketLinkAuthenticator.java	2011-04-11 14:23:40 UTC (rev 870)
@@ -0,0 +1,113 @@
+/*
+ * JBoss, Home of Professional Open Source.
+ * Copyright 2008, Red Hat Middleware LLC, and individual contributors
+ * as indicated by the @author tags. See the copyright.txt file in the
+ * distribution for a full listing of individual contributors. 
+ *
+ * This is free software; you can redistribute it and/or modify it
+ * under the terms of the GNU Lesser General Public License as
+ * published by the Free Software Foundation; either version 2.1 of
+ * the License, or (at your option) any later version.
+ *
+ * This software is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+ * Lesser General Public License for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public
+ * License along with this software; if not, write to the Free
+ * Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
+ * 02110-1301 USA, or see the FSF site: http://www.fsf.org.
+ */
+package org.picketlink.identity.federation.bindings.tomcat;
+
+import java.io.IOException;
+import java.security.Principal;
+
+import org.apache.catalina.Realm;
+import org.apache.catalina.authenticator.AuthenticatorBase;
+import org.apache.catalina.connector.Request;
+import org.apache.catalina.connector.Response;
+import org.apache.catalina.deploy.LoginConfig;
+import org.apache.log4j.Logger;
+
+/**
+ * An authenticator that delegates actual authentication to a realm, and in turn to a security
+ * manager, by presenting a "conventional" identity. The security manager must accept the
+ * conventional identity and generate the real identity for the authenticated principal.
+ * 
+ * @author <a href="mailto:ovidiu at novaordis.com">Ovidiu Feodorov</a>
+ * @author Anil.Saldhana at redhat.com
+ * @since Apr 11, 2011
+ */
+public class PicketLinkAuthenticator extends AuthenticatorBase
+{
+   protected static Logger log = Logger.getLogger(PicketLinkAuthenticator.class);
+
+   protected boolean trace = log.isTraceEnabled();
+
+   /**
+    * The {@link Realm} requires an user name
+    */
+   protected String userName = "custom-authenticator-user";
+
+   /**
+    * The {@link Realm} requires a password
+    */
+   protected String password = "custom-authenticator-password";
+
+   /**
+    * This is the auth method used in the register method
+    */
+   protected String authMethod = "SECURITY_DOMAIN";
+
+   public PicketLinkAuthenticator()
+   {
+      if (trace)
+      {
+         log.trace("PicketLinkAuthenticator Created");
+      }
+   }
+
+   /**
+    * Set the user name via WEB-INF/context.xml (JBoss AS)
+    * @param defaultUserName
+    */
+   public void setUserName(String defaultUserName)
+   {
+      this.userName = defaultUserName;
+   }
+
+   /**
+    * Set the password via WEB-INF/context.xml (JBoss AS)
+    * @param defaultPassword
+    */
+   public void setPassword(String defaultPassword)
+   {
+      this.password = defaultPassword;
+   }
+
+   /**
+    * Set the auth method via WEB-INF/context.xml (JBoss AS)
+    * @param authMethod
+    */
+   public void setAuthMethod(String authMethod)
+   {
+      this.authMethod = authMethod;
+   }
+
+   @Override
+   protected boolean authenticate(Request request, Response response, LoginConfig loginConfig) throws IOException
+   {
+      Realm realm = context.getRealm();
+
+      Principal principal = realm.authenticate(this.userName, this.password);
+
+      if (principal != null)
+      {
+         register(request, response, principal, this.authMethod, null, null);
+      }
+
+      return true;
+   }
+}
\ No newline at end of file

More information about the jboss-cvs-commits mailing list