[jboss-cvs] Picketbox SVN: r230 - trunk/security-jboss-sx/jbosssx/src/main/java/org/jboss/security/auth/spi.
jboss-cvs-commits at lists.jboss.org
jboss-cvs-commits at lists.jboss.org
Tue Jun 21 10:56:02 EDT 2011
Author: mmoyses
Date: 2011-06-21 10:56:02 -0400 (Tue, 21 Jun 2011)
New Revision: 230
Added:
trunk/security-jboss-sx/jbosssx/src/main/java/org/jboss/security/auth/spi/DisabledLoginModule.java
Log:
SECURITY-602: creating LM to fail authentication
Added: trunk/security-jboss-sx/jbosssx/src/main/java/org/jboss/security/auth/spi/DisabledLoginModule.java
===================================================================
--- trunk/security-jboss-sx/jbosssx/src/main/java/org/jboss/security/auth/spi/DisabledLoginModule.java (rev 0)
+++ trunk/security-jboss-sx/jbosssx/src/main/java/org/jboss/security/auth/spi/DisabledLoginModule.java 2011-06-21 14:56:02 UTC (rev 230)
@@ -0,0 +1,91 @@
+/*
+ * JBoss, Home of Professional Open Source.
+ * Copyright 2011, Red Hat Middleware LLC, and individual contributors
+ * as indicated by the @author tags. See the copyright.txt file in the
+ * distribution for a full listing of individual contributors.
+ *
+ * This is free software; you can redistribute it and/or modify it
+ * under the terms of the GNU Lesser General Public License as
+ * published by the Free Software Foundation; either version 2.1 of
+ * the License, or (at your option) any later version.
+ *
+ * This software is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+ * Lesser General Public License for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public
+ * License along with this software; if not, write to the Free
+ * Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
+ * 02110-1301 USA, or see the FSF site: http://www.fsf.org.
+ */
+package org.jboss.security.auth.spi;
+
+import java.util.Map;
+
+import javax.security.auth.Subject;
+import javax.security.auth.callback.CallbackHandler;
+import javax.security.auth.login.LoginException;
+import javax.security.auth.spi.LoginModule;
+
+import org.jboss.logging.Logger;
+import org.jboss.security.SecurityConstants;
+
+/**
+ * A login module that always fails authentication.
+ * It is to be used for a security domain that needs to be disabled, for instance when we don't want JAAS to fallback to
+ * using the 'other' security domain.
+ *
+ * @author <a href="mmoyses at redhat.com">Marcus Moyses</a>
+ */
+public class DisabledLoginModule implements LoginModule
+{
+
+ private static Logger log = Logger.getLogger(DisabledLoginModule.class);
+
+ protected String securityDomain;
+
+ @Override
+ public void initialize(Subject subject, CallbackHandler callbackHandler, Map<String, ?> sharedState,
+ Map<String, ?> options)
+ {
+ securityDomain = (String) options.get(SecurityConstants.SECURITY_DOMAIN_OPTION);
+ }
+
+ @Override
+ public boolean login() throws LoginException
+ {
+ StringBuffer sb = new StringBuffer();
+ if (securityDomain != null)
+ {
+ sb.append("The security domain ");
+ sb.append(securityDomain);
+ }
+ else
+ {
+ sb.append("This security domain");
+ }
+ sb.append(" has been disabled. All authentication will fail. Please check your configuration to make sure this is expected");
+ log.error(sb.toString());
+ return false;
+ }
+
+ @Override
+ public boolean commit() throws LoginException
+ {
+ return false;
+ }
+
+ @Override
+ public boolean abort() throws LoginException
+ {
+ return false;
+ }
+
+ @Override
+ public boolean logout() throws LoginException
+ {
+ return false;
+ }
+
+}
More information about the jboss-cvs-commits
mailing list