-
Notifications
You must be signed in to change notification settings - Fork 162
/
UniTimeAuthenticationUserDetailsService.java
100 lines (94 loc) · 4.12 KB
/
UniTimeAuthenticationUserDetailsService.java
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
/*
* Licensed to The Apereo Foundation under one or more contributor license
* agreements. See the NOTICE file distributed with this work for
* additional information regarding copyright ownership.
*
* The Apereo Foundation licenses this file to you under the Apache License,
* Version 2.0 (the "License"); you may not use this file except in
* compliance with the License. You may obtain a copy of the License at:
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
*
* See the License for the specific language governing permissions and
* limitations under the License.
*
*/
package org.unitime.timetable.spring.security;
import java.util.List;
import java.util.Map;
import org.jasig.cas.client.validation.Assertion;
import org.springframework.security.cas.authentication.CasAssertionAuthenticationToken;
import org.springframework.security.core.userdetails.AuthenticationUserDetailsService;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.security.core.userdetails.UsernameNotFoundException;
import org.springframework.stereotype.Service;
import org.unitime.commons.Debug;
import org.unitime.timetable.defaults.ApplicationProperty;
import org.unitime.timetable.interfaces.ExternalUidTranslation;
import org.unitime.timetable.interfaces.ExternalUidTranslation.Source;
import org.unitime.timetable.security.context.UniTimeUserContext;
@Service("unitimeAuthenticationUserDetailsService")
public class UniTimeAuthenticationUserDetailsService implements AuthenticationUserDetailsService<CasAssertionAuthenticationToken> {
private ExternalUidTranslation iTranslation = null;
public UniTimeAuthenticationUserDetailsService() {
if (ApplicationProperty.ExternalUserIdTranslation.value()!=null) {
try {
iTranslation = (ExternalUidTranslation)Class.forName(ApplicationProperty.ExternalUserIdTranslation.value()).getConstructor().newInstance();
} catch (Exception e) { Debug.error("Unable to instantiate external uid translation class, "+e.getMessage()); }
}
}
@Override
public UserDetails loadUserDetails(CasAssertionAuthenticationToken token) throws UsernameNotFoundException {
Assertion assertion = token.getAssertion();
Map attributes = assertion.getPrincipal().getAttributes();
String userId = token.getName();
if (ApplicationProperty.AuthenticationCasIdAttribute.value() != null) {
String[] keys = ApplicationProperty.AuthenticationCasIdAttribute.value().split(",");
String[] translate = ApplicationProperty.AuthenticationCasIdAlwaysTranslate.value().split(",");
boolean found = false;
for (int i = 0; i < keys.length; i++) {
String key = keys[i];
String tr = translate[i < translate.length ? i : translate.length - 1];
Object value = attributes.get(key);
if (value != null) {
if (value instanceof List) {
for (Object o: ((List)value)) {
userId = o.toString(); break;
}
} else {
userId = value.toString();
}
if ("true".equalsIgnoreCase(tr) && iTranslation != null)
userId = iTranslation.translate(userId, Source.LDAP, Source.User);
found = true;
break;
}
}
if (!found && iTranslation != null)
userId = iTranslation.translate(userId, Source.LDAP, Source.User);
} else if (iTranslation != null) {
userId = iTranslation.translate(userId, Source.LDAP, Source.User);
}
String name = null;
if (ApplicationProperty.AuthenticationCasNameAttribute.value() != null) {
Object value = attributes.get(ApplicationProperty.AuthenticationCasNameAttribute.value());
if (value != null) {
if (value instanceof List) {
for (Object o: ((List)value)) {
name = o.toString(); break;
}
} else {
name = value.toString();
}
}
}
if (ApplicationProperty.AuthenticationCasIdTrimLeadingZerosFrom.isTrue()) {
while (userId.startsWith("0")) userId = userId.substring(1);
}
return new UniTimeUserContext(userId, token.getName(), name, null);
}
}