Coverage Report

Coverage Report - org.acegisecurity.providers.rememberme.RememberMeAuthenticationProvider

Classes in this File

Line Coverage

Branch Coverage

Complexity

RememberMeAuthenticationProvider

88%

100%

1.667

 /* Copyright 2004, 2005, 2006 Acegi Technology Pty Limited
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
  * You may obtain a copy of the License at
  *
  *     http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
 
 package org.acegisecurity.providers.rememberme;
 
 import org.acegisecurity.AcegiMessageSource;
 import org.acegisecurity.Authentication;
 import org.acegisecurity.AuthenticationException;
 import org.acegisecurity.BadCredentialsException;
 
 import org.acegisecurity.providers.AuthenticationProvider;
 
 import org.apache.commons.logging.Log;
 import org.apache.commons.logging.LogFactory;
 
 import org.springframework.beans.factory.InitializingBean;
 
 import org.springframework.context.MessageSource;
 import org.springframework.context.MessageSourceAware;
 import org.springframework.context.support.MessageSourceAccessor;
 
 import org.springframework.util.Assert;
 
 
 /**
  * An {@link AuthenticationProvider} implementation that validates {@link
  * org.acegisecurity.providers.rememberme.RememberMeAuthenticationToken}s.<p>To be successfully validated, the
  * {@link org.acegisecurity.providers.rememberme.RememberMeAuthenticationToken#getKeyHash()} must match this class'
  * {@link #getKey()}.</p>
  */
 public class RememberMeAuthenticationProvider implements AuthenticationProvider, InitializingBean, MessageSourceAware {
     //~ Static fields/initializers =====================================================================================
 
     private static final Log logger = LogFactory.getLog(RememberMeAuthenticationProvider.class);
 
     //~ Instance fields ================================================================================================
 
     protected MessageSourceAccessor messages = AcegiMessageSource.getAccessor();
     private String key;
 
     //~ Methods ========================================================================================================
 
         public void afterPropertiesSet() throws Exception {
         Assert.hasLength(key);
         Assert.notNull(this.messages, "A message source must be set");
     }
 
     public Authentication authenticate(Authentication authentication)
         throws AuthenticationException {
         if (!supports(authentication.getClass())) {
             return null;
         }
 
         if (this.key.hashCode() != ((RememberMeAuthenticationToken) authentication).getKeyHash()) {
             throw new BadCredentialsException(messages.getMessage("RememberMeAuthenticationProvider.incorrectKey",
                     "The presented RememberMeAuthenticationToken does not contain the expected key"));
         }
 
         return authentication;
     }
 
     public String getKey() {
         return key;
     }
 
     public void setKey(String key) {
         this.key = key;
     }
 
     public void setMessageSource(MessageSource messageSource) {
         this.messages = new MessageSourceAccessor(messageSource);
     }
 
     public boolean supports(Class authentication) {
         return (RememberMeAuthenticationToken.class.isAssignableFrom(authentication));
     }
 }

1		/* Copyright 2004, 2005, 2006 Acegi Technology Pty Limited
2		*
3		* Licensed under the Apache License, Version 2.0 (the "License");
4		* you may not use this file except in compliance with the License.
5		* You may obtain a copy of the License at
6		*
7		* http://www.apache.org/licenses/LICENSE-2.0
8		*
9		* Unless required by applicable law or agreed to in writing, software
10		* distributed under the License is distributed on an "AS IS" BASIS,
11		* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12		* See the License for the specific language governing permissions and
13		* limitations under the License.
14		*/
15
16		package org.acegisecurity.providers.rememberme;
17
18		import org.acegisecurity.AcegiMessageSource;
19		import org.acegisecurity.Authentication;
20		import org.acegisecurity.AuthenticationException;
21		import org.acegisecurity.BadCredentialsException;
22
23		import org.acegisecurity.providers.AuthenticationProvider;
24
25		import org.apache.commons.logging.Log;
26		import org.apache.commons.logging.LogFactory;
27
28		import org.springframework.beans.factory.InitializingBean;
29
30		import org.springframework.context.MessageSource;
31		import org.springframework.context.MessageSourceAware;
32		import org.springframework.context.support.MessageSourceAccessor;
33
34		import org.springframework.util.Assert;
35
36
37		/**
38		* An {@link AuthenticationProvider} implementation that validates {@link
39		* org.acegisecurity.providers.rememberme.RememberMeAuthenticationToken}s.<p>To be successfully validated, the
40		* {@link org.acegisecurity.providers.rememberme.RememberMeAuthenticationToken#getKeyHash()} must match this class'
41		* {@link #getKey()}.</p>
42		*/
43	6	public class RememberMeAuthenticationProvider implements AuthenticationProvider, InitializingBean, MessageSourceAware {
44		//~ Static fields/initializers =====================================================================================
45
46	3	private static final Log logger = LogFactory.getLog(RememberMeAuthenticationProvider.class);
47
48		//~ Instance fields ================================================================================================
49
50	6	protected MessageSourceAccessor messages = AcegiMessageSource.getAccessor();
51		private String key;
52
53		//~ Methods ========================================================================================================
54
55		public void afterPropertiesSet() throws Exception {
56	2	Assert.hasLength(key);
57	1	Assert.notNull(this.messages, "A message source must be set");
58	1	}
59
60		public Authentication authenticate(Authentication authentication)
61		throws AuthenticationException {
62	3	if (!supports(authentication.getClass())) {
63	1	return null;
64		}
65
66	2	if (this.key.hashCode() != ((RememberMeAuthenticationToken) authentication).getKeyHash()) {
67	1	throw new BadCredentialsException(messages.getMessage("RememberMeAuthenticationProvider.incorrectKey",
68		"The presented RememberMeAuthenticationToken does not contain the expected key"));
69		}
70
71	1	return authentication;
72		}
73
74		public String getKey() {
75	1	return key;
76		}
77
78		public void setKey(String key) {
79	4	this.key = key;
80	4	}
81
82		public void setMessageSource(MessageSource messageSource) {
83	0	this.messages = new MessageSourceAccessor(messageSource);
84	0	}
85
86		public boolean supports(Class authentication) {
87	6	return (RememberMeAuthenticationToken.class.isAssignableFrom(authentication));
88		}
89		}