Coverage Report

Coverage Report - org.acegisecurity.runas.RunAsImplAuthenticationProvider

Classes in this File

Line Coverage

Branch Coverage

Complexity

RunAsImplAuthenticationProvider

88%

100%

1.833

 /* Copyright 2004, 2005, 2006 Acegi Technology Pty Limited
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
  * You may obtain a copy of the License at
  *
  *     http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
 
 package org.acegisecurity.runas;
 
 import org.acegisecurity.AcegiMessageSource;
 import org.acegisecurity.Authentication;
 import org.acegisecurity.AuthenticationException;
 import org.acegisecurity.BadCredentialsException;
 
 import org.acegisecurity.providers.AuthenticationProvider;
 
 import org.springframework.beans.factory.InitializingBean;
 
 import org.springframework.context.MessageSource;
 import org.springframework.context.MessageSourceAware;
 import org.springframework.context.support.MessageSourceAccessor;
 
 import org.springframework.util.Assert;
 
 
 /**
  * An {@link AuthenticationProvider} implementation that can authenticate a {@link RunAsUserToken}.<P>Configured in
  * the bean context with a key that should match the key used by adapters to generate the <code>RunAsUserToken</code>.
  * It treats as valid any <code>RunAsUserToken</code> instance presenting a hash code that matches the
  * <code>RunAsImplAuthenticationProvider</code>-configured key.</p>
  *  <P>If the key does not match, a <code>BadCredentialsException</code> is thrown.</p>
  */
 public class RunAsImplAuthenticationProvider implements InitializingBean, AuthenticationProvider, MessageSourceAware {
     //~ Instance fields ================================================================================================
 
     protected MessageSourceAccessor messages = AcegiMessageSource.getAccessor();
     private String key;
 
     //~ Methods ========================================================================================================
 
         public void afterPropertiesSet() throws Exception {
         Assert.notNull(key, "A Key is required and should match that configured for the RunAsManagerImpl");
     }
 
     public Authentication authenticate(Authentication authentication)
         throws AuthenticationException {
         RunAsUserToken token = (RunAsUserToken) authentication;
 
         if (token.getKeyHash() == key.hashCode()) {
             return authentication;
         } else {
             throw new BadCredentialsException(messages.getMessage("RunAsImplAuthenticationProvider.incorrectKey",
                     "The presented RunAsUserToken does not contain the expected key"));
         }
     }
 
     public String getKey() {
         return key;
     }
 
     public void setKey(String key) {
         this.key = key;
     }
 
     public void setMessageSource(MessageSource messageSource) {
         this.messages = new MessageSourceAccessor(messageSource);
     }
 
     public boolean supports(Class authentication) {
         if (RunAsUserToken.class.isAssignableFrom(authentication)) {
             return true;
         } else {
             return false;
         }
     }
 }

1		/* Copyright 2004, 2005, 2006 Acegi Technology Pty Limited
2		*
3		* Licensed under the Apache License, Version 2.0 (the "License");
4		* you may not use this file except in compliance with the License.
5		* You may obtain a copy of the License at
6		*
7		* http://www.apache.org/licenses/LICENSE-2.0
8		*
9		* Unless required by applicable law or agreed to in writing, software
10		* distributed under the License is distributed on an "AS IS" BASIS,
11		* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12		* See the License for the specific language governing permissions and
13		* limitations under the License.
14		*/
15
16		package org.acegisecurity.runas;
17
18		import org.acegisecurity.AcegiMessageSource;
19		import org.acegisecurity.Authentication;
20		import org.acegisecurity.AuthenticationException;
21		import org.acegisecurity.BadCredentialsException;
22
23		import org.acegisecurity.providers.AuthenticationProvider;
24
25		import org.springframework.beans.factory.InitializingBean;
26
27		import org.springframework.context.MessageSource;
28		import org.springframework.context.MessageSourceAware;
29		import org.springframework.context.support.MessageSourceAccessor;
30
31		import org.springframework.util.Assert;
32
33
34		/**
35		* An {@link AuthenticationProvider} implementation that can authenticate a {@link RunAsUserToken}.<P>Configured in
36		* the bean context with a key that should match the key used by adapters to generate the <code>RunAsUserToken</code>.
37		* It treats as valid any <code>RunAsUserToken</code> instance presenting a hash code that matches the
38		* <code>RunAsImplAuthenticationProvider</code>-configured key.</p>
39		* <P>If the key does not match, a <code>BadCredentialsException</code> is thrown.</p>
40		*/
41	5	public class RunAsImplAuthenticationProvider implements InitializingBean, AuthenticationProvider, MessageSourceAware {
42		//~ Instance fields ================================================================================================
43
44	5	protected MessageSourceAccessor messages = AcegiMessageSource.getAccessor();
45		private String key;
46
47		//~ Methods ========================================================================================================
48
49		public void afterPropertiesSet() throws Exception {
50	2	Assert.notNull(key, "A Key is required and should match that configured for the RunAsManagerImpl");
51	1	}
52
53		public Authentication authenticate(Authentication authentication)
54		throws AuthenticationException {
55	2	RunAsUserToken token = (RunAsUserToken) authentication;
56
57	2	if (token.getKeyHash() == key.hashCode()) {
58	1	return authentication;
59		} else {
60	1	throw new BadCredentialsException(messages.getMessage("RunAsImplAuthenticationProvider.incorrectKey",
61		"The presented RunAsUserToken does not contain the expected key"));
62		}
63		}
64
65		public String getKey() {
66	1	return key;
67		}
68
69		public void setKey(String key) {
70	3	this.key = key;
71	3	}
72
73		public void setMessageSource(MessageSource messageSource) {
74	0	this.messages = new MessageSourceAccessor(messageSource);
75	0	}
76
77		public boolean supports(Class authentication) {
78	3	if (RunAsUserToken.class.isAssignableFrom(authentication)) {
79	1	return true;
80		} else {
81	1	return false;
82		}
83		}
84		}