Refactor the way the authentication by security tokens is performed. Rewrite the access control management for the WebDAV access of documents

Author: mmoqui

src/main/java/org/silverpeas/jcr/auth/AbstractAuthentication.java

@@ -0,0 +1,91 @@
+/*
+ * Copyright (C) 2000 - 2015 Silverpeas
+ *
+ * This program is free software: you can redistribute it and/or modify it under the terms of the
+ * GNU Affero General Public License as published by the Free Software Foundation, either version 3
+ * of the License, or (at your option) any later version.
+ *
+ * As a special exception to the terms and conditions of version 3.0 of the GPL, you may
+ * redistribute this Program in connection with Free/Libre Open Source Software ("FLOSS")
+ * applications as described in Silverpeas's FLOSS exception. You should have received a copy of the
+ * text describing the FLOSS exception, and it is also available here:
+ * "http://www.silverpeas.org/docs/core/legal/floss_exception.html"
+ *
+ * This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without
+ * even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+ * Affero General Public License for more details.
+ *
+ * You should have received a copy of the GNU Affero General Public License along with this program.
+ * If not, see <http://www.gnu.org/licenses/>.
+ */
+
+package org.silverpeas.jcr.auth;
+
+import org.silverpeas.jcr.jaas.SilverpeasJcrSystemPrincipal;
+import org.silverpeas.jcr.jaas.SilverpeasUserPrincipal;
+import org.silverpeas.jcr.jaas.SilverpeasUserProfile;
+
+import javax.naming.InitialContext;
+import javax.naming.NamingException;
+import javax.sql.DataSource;
+import java.security.Principal;
+import java.sql.Connection;
+import java.sql.PreparedStatement;
+import java.sql.ResultSet;
+import java.sql.SQLException;
+import java.text.MessageFormat;
+import java.util.logging.Level;
+import java.util.logging.Logger;
+
+/**
+ * This class defines common operations authentication mechanisms can require in order to perform
+ * their authentication.
+ * @author mmoquillon
+ */
+public abstract class AbstractAuthentication implements Authentication {
+
+  private static final String SELECT_USER_ROLES =
+      "select r.rolename, r.instanceid, c.componentname from st_userrole_user_rel u join " +
+          "st_userrole r on u.userroleid = r.id join st_component c on c.id = r.instanceid where " +
+          "u.userid = ?";
+
+  protected Principal getSilverpeasUserPrincipal(final SilverpeasUser user) {
+    Principal principal;
+    if (user.isJcrSystemUser()) {
+      principal = new SilverpeasJcrSystemPrincipal();
+    } else {
+      try (Connection connection = openConnectionToDataSource();
+           PreparedStatement statement = connection.prepareStatement(SELECT_USER_ROLES)) {
+        statement.setInt(1, Integer.parseInt(user.getId()));
+        try (ResultSet resultSet = statement.executeQuery()) {
+          principal = new SilverpeasUserPrincipal(user.getId(), "A".equals(user.getAccessLevel()));
+          while (resultSet.next()) {
+            String componentInstanceId = resultSet.getString("instanceid");
+            String componentName = resultSet.getString("componentname");
+            String roleName = resultSet.getString("rolename");
+            SilverpeasUserProfile profile =
+                new SilverpeasUserProfile(componentName + componentInstanceId, roleName);
+            ((SilverpeasUserPrincipal) principal).addUserProfile(profile);
+          }
+        }
+      } catch (SQLException e) {
+        principal = null;
+        Logger.getLogger(getClass().getSimpleName()).log(Level.SEVERE, e.getMessage(), e);
+      }
+    }
+    return principal;
+  }
+
+  protected String[] fetchUserIdParts(String userId) {
+    return userId.split("@domain");
+  }
+
+  protected Connection openConnectionToDataSource() throws SQLException {
+    try {
+      DataSource dataSource = InitialContext.doLookup("java:/datasources/silverpeas");
+      return dataSource.getConnection();
+    } catch (NamingException e) {
+      throw new SQLException(e);
+    }
+  }
+}

src/main/java/org/silverpeas/jcr/auth/Authentication.java

@@ -34,7 +34,8 @@ public interface Authentication {
   /**
    * Authenticates a user by its credentials.
    * @param credentials the credentials of a user.
-   * @return the principal of the authenticated user.
+   * @return the principal of the authenticated user or null if the specified credentials aren't
+   * supported by this authentication.
    * @throws AuthenticationException if the authentication fails.
    */
   public Principal authenticate(final Credentials credentials) throws AuthenticationException;

src/main/java/org/silverpeas/jcr/auth/AuthenticationProvider.java

@@ -1,14 +1,22 @@
 package org.silverpeas.jcr.auth;
 
 /**
- * A provider of an implementation of the {@code org.silverpeas.jcr.auth.Authentication} interface.
+ * A provider authentication mechanisms, each of them implementing the
+ * {@code org.silverpeas.jcr.auth.Authentication} interface.
  * @author mmoquillon
  */
 public class AuthenticationProvider {
 
-  private static Authentication authentication = new SilverpeasAuthentication();
+  private static Authentication[] authentications =
+      new Authentication[]{
+          new SQLSimpleAuthentication(),
+          new TokenAuthentication()};
 
-  public static Authentication getAuthentication() {
-    return authentication;
+  /**
+   * Gets all the authentication mechanisms supported by the access controller.
+   * @return an array of Authentication objects.
+   */
+  public static Authentication[] getAuthentications() {
+    return authentications;
   }
 }

src/main/java/org/silverpeas/jcr/auth/SQLSimpleAuthentication.java

@@ -0,0 +1,169 @@
+/*
+ * Copyright (C) 2000 - 2015 Silverpeas
+ *
+ * This program is free software: you can redistribute it and/or modify it under the terms of the
+ * GNU Affero General Public License as published by the Free Software Foundation, either version 3
+ * of the License, or (at your option) any later version.
+ *
+ * As a special exception to the terms and conditions of version 3.0 of the GPL, you may
+ * redistribute this Program in connection with Free/Libre Open Source Software ("FLOSS")
+ * applications as described in Silverpeas's FLOSS exception. You should have received a copy of the
+ * text describing the FLOSS exception, and it is also available here:
+ * "http://www.silverpeas.org/docs/core/legal/floss_exception.html"
+ *
+ * This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without
+ * even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+ * Affero General Public License for more details.
+ *
+ * You should have received a copy of the GNU Affero General Public License along with this program.
+ * If not, see <http://www.gnu.org/licenses/>.
+ */
+
+package org.silverpeas.jcr.auth;
+
+import org.silverpeas.jcr.auth.encryption.PasswordEncryption;
+import org.silverpeas.jcr.auth.encryption.PasswordEncryptionFactory;
+
+import javax.jcr.Credentials;
+import javax.jcr.SimpleCredentials;
+import java.security.Principal;
+import java.sql.Connection;
+import java.sql.PreparedStatement;
+import java.sql.ResultSet;
+import java.sql.SQLException;
+import java.text.MessageFormat;
+import java.util.logging.Level;
+import java.util.logging.Logger;
+
+/**
+ * A simple authentication by login/password. It accesses the Silverpeas database to fetch the
+ * encrypted password of the user in order to validate the one passing in the credentials. For
+ * doing, the domain to which the user belongs has to be backed into a the Silverpeas database and
+ * then it doesn't support domains backed by a LDAP directory or any data sources other than
+ * the Silverpeas database.
+ * This mechanism is mainly used to access JCR outside the context of Silverpeas; for example by
+ * using an external service (like Crash). For a better authentication mechanism, we strongly
+ * recommend to use the one based upon the volatile security tokens.
+ * @author mmoquillon
+ */
+public class SQLSimpleAuthentication extends AbstractAuthentication {
+
+  private static final String SELECT_DOMAIN_TABLE =
+      "select propfilename, classname from st_domain where id = ?";
+
+  private static final String SELECT_USER_DATA =
+      "select du.id, du.password, u.accesslevel from {0}_user du left join st_user u on du.id = " +
+          "u.id where du.login = ? and u.state = 'VALID'";
+
+  /**
+   * Authenticates a user by its credentials.
+   * @param credentials the simple credentials of a user. If the credentials aren't with the
+   * expected type, then null is returned.
+   * @return the principal of the authenticated user or null if the credentials are not supported
+   * by this authentication mechanism.
+   * @throws AuthenticationException if the authentication fails.
+   */
+  @Override
+  public Principal authenticate(final Credentials credentials) throws AuthenticationException {
+    Principal principal = null;
+    if (credentials instanceof SimpleCredentials) {
+      principal = authenticate((SimpleCredentials) credentials);
+    }
+    return principal;
+  }
+
+  /**
+   * Authenticates a user with the specified simple credentials.
+   * <p>
+   * The authentication mechanism expects the user identifier in the credentials is in the form of
+   * USER_LOGIN'@'SILVERPEAS_DOMAIN where USER_LOGIN is the login of the user to sign in Silverpeas
+   * and the SILVERPEAS_DOMAIN is the identifier of the domain in Silverpeas to which the user
+   * belongs.
+   * </p>
+   * @param credentials the simple credentials of a user.
+   * @return the principal of the user or null if either the credentials of the user aren't taken
+   * into account by this authentication mechanism or the credentials of the user aren't full
+   * stored
+   * into the data source of Silverpeas.
+   * @throws AuthenticationException if the authentication fails (the pair identifier/password
+   * isn't valid or no user matches the login and the domain specified in the credentials).
+   */
+  public Principal authenticate(SimpleCredentials credentials) throws AuthenticationException {
+    Principal principal = null;
+    String[] userIdParts = fetchUserIdParts(credentials.getUserID());
+    if (userIdParts != null && userIdParts.length == 2) {
+      String login = userIdParts[0];
+      String domainId = userIdParts[1];
+      SilverpeasUser user = getSilverpeasUserByDomain(login, domainId);
+      if (user != null) {
+        if (user.mustBeAuthenticated()) {
+          PasswordEncryption encryption = PasswordEncryptionFactory.getFactory()
+              .getPasswordEncryption(user.getEncryptedPassword());
+          try {
+            encryption.check(new String(credentials.getPassword()), user.getEncryptedPassword());
+          } catch (AssertionError error) {
+            throw new AuthenticationException(error.getMessage());
+          }
+        }
+        principal = getSilverpeasUserPrincipal(user);
+      } else {
+        throw new AuthenticationException("No user matching the login " + login +
+            " and the domain identifier " + domainId);
+      }
+    }
+    return principal;
+  }
+
+  /**
+   * Gets information about the user matching the specified login for the specified domain
+   * identifier. The domain should be backed by a database as the user is first identified within
+   * its domain before getting any information about him. Among the information, there is the
+   * encrypted password with which the authentication can be performed.
+   * @param login the user login.
+   * @param domainId the unique identifier of the domain to which the user belongs.
+   * @return the user matching the specified login and domain or null.
+   */
+  private SilverpeasUser getSilverpeasUserByDomain(final String login, final String domainId) {
+    SilverpeasUser user = SilverpeasUser.asJcrSystemUser();
+    if (!user.getLogin().equals(login) || !user.getDomainId().equals(domainId)) {
+      user = null;
+      try (Connection connection = openConnectionToDataSource();
+           PreparedStatement domainStatement = connection.prepareStatement(SELECT_DOMAIN_TABLE)) {
+        domainStatement.setInt(1, Integer.parseInt(domainId));
+        try (ResultSet domainResultSet = domainStatement.executeQuery()) {
+          if (domainResultSet.next()) {
+            String className = domainResultSet.getString("classname");
+            if (className != null && (className.toLowerCase().endsWith("sqldriver") ||
+                className.toLowerCase().endsWith("silverpeasdomaindriver"))) {
+              String domainName = fetchDomainNameFrom(domainResultSet.getString("propfilename"));
+              String sqlUserData = computeUserDataSQLQueryFor(domainName);
+              try (PreparedStatement userStatement = connection.prepareStatement(sqlUserData)) {
+                userStatement.setString(1, login);
+                try (ResultSet userResultSet = userStatement.executeQuery()) {
+                  if (userResultSet.next()) {
+                    user = new SilverpeasUser().withId(userResultSet.getString("id"))
+                        .withDomainId(domainId)
+                        .withAccessLevel(userResultSet.getString("accesslevel"))
+                        .withEncryptedPassword(userResultSet.getString("password"));
+                  }
+                }
+              }
+            }
+          }
+        }
+      } catch (SQLException e) {
+        Logger.getLogger(getClass().getSimpleName()).log(Level.SEVERE, e.getMessage(), e);
+      }
+    }
+    return user;
+  }
+
+  private String fetchDomainNameFrom(String propFileName) {
+    int lastSepIndex = propFileName.lastIndexOf(".");
+    return (lastSepIndex > 0 ? propFileName.substring(lastSepIndex + 1).toLowerCase() : null);
+  }
+
+  private String computeUserDataSQLQueryFor(String tableName) {
+    return MessageFormat.format(SELECT_USER_DATA, tableName);
+  }
+}