Revision 19c39bf4
Added by Cherian Mathew over 8 years ago
| eu.etaxonomy.taxeditor.store/src/main/java/eu/etaxonomy/taxeditor/store/LoginManager.java | ||
|---|---|---|
| 58 | 58 |
*/ |
| 59 | 59 |
public boolean authenticate(String username, String password){
|
| 60 | 60 |
|
| 61 |
// close all open editors |
|
| 62 |
if(!AbstractUtility.closeAll()){
|
|
| 63 |
return false; |
|
| 64 |
} |
|
| 61 |
// close all open editors |
|
| 62 |
if(!AbstractUtility.closeAll()){
|
|
| 63 |
return false; |
|
| 64 |
} |
|
| 65 |
|
|
| 66 |
|
|
| 67 |
try{
|
|
| 68 |
doAuthenticate(username, password); |
|
| 69 |
} catch (CdmAuthenticationException e) {
|
|
| 70 |
MessagingUtils.warningDialog("Could not authenticate", this, e.getMessage());
|
|
| 71 |
} |
|
| 72 |
return false; |
|
| 73 |
} |
|
| 65 | 74 |
|
| 75 |
public void doAuthenticate(String username, String password) throws CdmAuthenticationException {
|
|
| 76 |
try {
|
|
| 77 |
SecurityContextHolder.clearContext(); |
|
| 78 |
Authentication lastAuthentication = CdmStore.getCurrentAuthentiation(); |
|
| 79 |
|
|
| 80 |
UsernamePasswordAuthenticationToken token = new UsernamePasswordAuthenticationToken(username, password); |
|
| 81 |
Authentication authentication = CdmStore.getAuthenticationManager().authenticate(token); |
|
| 82 |
|
|
| 83 |
User user = (User) authentication.getPrincipal(); |
|
| 84 |
/* circumventing problem with hibernate not refreshing the transient collection authorities in this case, |
|
| 85 |
* see http://dev.e-taxonomy.eu/trac/ticket/4053 */ |
|
| 86 |
user.initAuthorities(); |
|
| 87 |
|
|
| 88 |
if(logger.isDebugEnabled()){
|
|
| 89 |
StringBuilder gaText = new StringBuilder(); |
|
| 90 |
String indent = " "; |
|
| 91 |
Set<GrantedAuthority> gaSet = user.getGrantedAuthorities(); |
|
| 92 |
_logGrantedAuthotities(gaText, indent, gaSet); |
|
| 93 |
for(Group gr : user.getGroups()){
|
|
| 94 |
gaText.append(indent).append("gr[").append(gr.hashCode()).append("] \"").append(gr.getName()).append("\" ").append(gr.toString()).append("\n");
|
|
| 95 |
_logGrantedAuthotities(gaText, indent + indent, gr.getGrantedAuthorities()); |
|
| 96 |
} |
|
| 97 |
logger.debug("User authenticated: " + user.getUsername() + "\n" + gaText.toString());
|
|
| 98 |
} |
|
| 99 |
|
|
| 100 |
authentication = new UsernamePasswordAuthenticationToken(user,password, authentication.getAuthorities()); |
|
| 101 |
SecurityContextHolder.getContext().setAuthentication(authentication); |
|
| 102 |
CdmApplicationState.setCurrentSecurityContext(SecurityContextHolder.getContext()); |
|
| 103 |
|
|
| 104 |
if(!authentication.equals(lastAuthentication)){
|
|
| 105 |
this.setChanged(); |
|
| 106 |
this.notifyObservers(); |
|
| 107 |
} |
|
| 108 |
} catch(BadCredentialsException e){
|
|
| 109 |
throw new CdmAuthenticationException("Login and/or Password incorrect", e);
|
|
| 110 |
} catch(LockedException e){
|
|
| 111 |
throw new CdmAuthenticationException("Account is locked", e);
|
|
| 112 |
} catch(IllegalArgumentException e){
|
|
| 113 |
throw new CdmAuthenticationException("Login and/or Password empty", e);
|
|
| 114 |
} |
|
| 66 | 115 |
|
| 67 |
try{
|
|
| 68 |
SecurityContextHolder.clearContext(); |
|
| 69 |
Authentication lastAuthentication = CdmStore.getCurrentAuthentiation(); |
|
| 70 |
|
|
| 71 |
UsernamePasswordAuthenticationToken token = new UsernamePasswordAuthenticationToken(username, password); |
|
| 72 |
Authentication authentication = CdmStore.getAuthenticationManager().authenticate(token); |
|
| 73 |
|
|
| 74 |
User user = (User) authentication.getPrincipal(); |
|
| 75 |
/* circumventing problem with hibernate not refreshing the transient collection authorities in this case, |
|
| 76 |
* see http://dev.e-taxonomy.eu/trac/ticket/4053 */ |
|
| 77 |
user.initAuthorities(); |
|
| 78 |
|
|
| 79 |
if(logger.isDebugEnabled()){
|
|
| 80 |
StringBuilder gaText = new StringBuilder(); |
|
| 81 |
String indent = " "; |
|
| 82 |
Set<GrantedAuthority> gaSet = user.getGrantedAuthorities(); |
|
| 83 |
_logGrantedAuthotities(gaText, indent, gaSet); |
|
| 84 |
for(Group gr : user.getGroups()){
|
|
| 85 |
gaText.append(indent).append("gr[").append(gr.hashCode()).append("] \"").append(gr.getName()).append("\" ").append(gr.toString()).append("\n");
|
|
| 86 |
_logGrantedAuthotities(gaText, indent + indent, gr.getGrantedAuthorities()); |
|
| 87 |
} |
|
| 88 |
logger.debug("User authenticated: " + user.getUsername() + "\n" + gaText.toString());
|
|
| 89 |
} |
|
| 90 |
|
|
| 91 |
authentication = new UsernamePasswordAuthenticationToken(user,password, authentication.getAuthorities()); |
|
| 92 |
SecurityContextHolder.getContext().setAuthentication(authentication); |
|
| 93 |
CdmApplicationState.setCurrentSecurityContext(SecurityContextHolder.getContext()); |
|
| 94 |
|
|
| 95 |
if(!authentication.equals(lastAuthentication)){
|
|
| 96 |
this.setChanged(); |
|
| 97 |
this.notifyObservers(); |
|
| 98 |
} |
|
| 99 |
return true; |
|
| 100 |
} |
|
| 101 |
catch(BadCredentialsException e){
|
|
| 102 |
MessagingUtils.warningDialog("Could not authenticate", this, "Could not authenticate. Reason: Bad Credentials.");
|
|
| 103 |
} |
|
| 104 |
catch(LockedException e){
|
|
| 105 |
MessagingUtils.warningDialog("Could not authenticate", this, "Could not authenticate. Reason: Account is locked.");
|
|
| 106 |
} |
|
| 107 |
catch(IllegalArgumentException e){
|
|
| 108 |
MessagingUtils.warningDialog("Could not authenticate", this, "Could not authenticate. Reason: Username and/or Password empty.");
|
|
| 109 |
} |
|
| 110 |
return false; |
|
| 111 | 116 |
} |
| 112 | 117 |
|
| 113 | 118 |
private void _logGrantedAuthotities(StringBuilder gaText, String indent, |
Also available in: Unified diff
#5029 Implement oneclick login for remoting