|
|
|
|
@ -1,4 +1,4 @@
@@ -1,4 +1,4 @@
|
|
|
|
|
/* Copyright 2004, 2005 Acegi Technology Pty Limited |
|
|
|
|
/* Copyright 2004, 2005, 2006 Acegi Technology Pty Limited |
|
|
|
|
* |
|
|
|
|
* Licensed under the Apache License, Version 2.0 (the "License"); |
|
|
|
|
* you may not use this file except in compliance with the License. |
|
|
|
|
@ -18,13 +18,17 @@ package org.acegisecurity.providers.dao;
@@ -18,13 +18,17 @@ package org.acegisecurity.providers.dao;
|
|
|
|
|
import org.acegisecurity.AuthenticationException; |
|
|
|
|
import org.acegisecurity.AuthenticationServiceException; |
|
|
|
|
import org.acegisecurity.BadCredentialsException; |
|
|
|
|
|
|
|
|
|
import org.acegisecurity.providers.AuthenticationProvider; |
|
|
|
|
import org.acegisecurity.providers.UsernamePasswordAuthenticationToken; |
|
|
|
|
import org.acegisecurity.providers.encoding.PasswordEncoder; |
|
|
|
|
import org.acegisecurity.providers.encoding.PlaintextPasswordEncoder; |
|
|
|
|
|
|
|
|
|
import org.acegisecurity.userdetails.UserDetails; |
|
|
|
|
import org.acegisecurity.userdetails.UserDetailsService; |
|
|
|
|
|
|
|
|
|
import org.springframework.dao.DataAccessException; |
|
|
|
|
|
|
|
|
|
import org.springframework.util.Assert; |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@ -39,9 +43,9 @@ public class DaoAuthenticationProvider
@@ -39,9 +43,9 @@ public class DaoAuthenticationProvider
|
|
|
|
|
extends AbstractUserDetailsAuthenticationProvider { |
|
|
|
|
//~ Instance fields ========================================================
|
|
|
|
|
|
|
|
|
|
private UserDetailsService userDetailsService; |
|
|
|
|
private PasswordEncoder passwordEncoder = new PlaintextPasswordEncoder(); |
|
|
|
|
private SaltSource saltSource; |
|
|
|
|
private UserDetailsService userDetailsService; |
|
|
|
|
|
|
|
|
|
//~ Methods ================================================================
|
|
|
|
|
|
|
|
|
|
@ -67,10 +71,6 @@ public class DaoAuthenticationProvider
@@ -67,10 +71,6 @@ public class DaoAuthenticationProvider
|
|
|
|
|
"An Authentication DAO must be set"); |
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
public UserDetailsService getUserDetailsService() { |
|
|
|
|
return userDetailsService; |
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
public PasswordEncoder getPasswordEncoder() { |
|
|
|
|
return passwordEncoder; |
|
|
|
|
} |
|
|
|
|
@ -79,34 +79,35 @@ public class DaoAuthenticationProvider
@@ -79,34 +79,35 @@ public class DaoAuthenticationProvider
|
|
|
|
|
return saltSource; |
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
public UserDetailsService getUserDetailsService() { |
|
|
|
|
return userDetailsService; |
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
protected final UserDetails retrieveUser(String username, |
|
|
|
|
UsernamePasswordAuthenticationToken authentication) |
|
|
|
|
UsernamePasswordAuthenticationToken authentication) |
|
|
|
|
throws AuthenticationException { |
|
|
|
|
UserDetails loadedUser; |
|
|
|
|
|
|
|
|
|
try { |
|
|
|
|
loadedUser = this.userDetailsService.loadUserByUsername(username); |
|
|
|
|
loadedUser = this.getUserDetailsService() |
|
|
|
|
.loadUserByUsername(username); |
|
|
|
|
} catch (DataAccessException repositoryProblem) { |
|
|
|
|
throw new AuthenticationServiceException( |
|
|
|
|
repositoryProblem.getMessage(), repositoryProblem ); |
|
|
|
|
throw new AuthenticationServiceException(repositoryProblem |
|
|
|
|
.getMessage(), repositoryProblem); |
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
if (loadedUser == null) { |
|
|
|
|
throw new AuthenticationServiceException( |
|
|
|
|
"AuthenticationDao returned null, which is an interface contract violation"); |
|
|
|
|
"AuthenticationDao returned null, which is an interface contract violation"); |
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
return loadedUser; |
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
public void setUserDetailsService(UserDetailsService authenticationDao) { |
|
|
|
|
this.userDetailsService = authenticationDao; |
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
/** |
|
|
|
|
* Sets the PasswordEncoder instance to be used to encode and validate |
|
|
|
|
* passwords. If not set, {@link PlaintextPasswordEncoder} will be |
|
|
|
|
* used by default. |
|
|
|
|
* passwords. If not set, {@link PlaintextPasswordEncoder} will be used by |
|
|
|
|
* default. |
|
|
|
|
* |
|
|
|
|
* @param passwordEncoder The passwordEncoder to use |
|
|
|
|
*/ |
|
|
|
|
@ -115,10 +116,9 @@ public class DaoAuthenticationProvider
@@ -115,10 +116,9 @@ public class DaoAuthenticationProvider
|
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
/** |
|
|
|
|
* The source of salts to use when decoding passwords. |
|
|
|
|
* <code>null</code> is a valid value, meaning the |
|
|
|
|
* <code>DaoAuthenticationProvider</code> will present |
|
|
|
|
* <code>null</code> to the relevant <code>PasswordEncoder</code>. |
|
|
|
|
* The source of salts to use when decoding passwords. <code>null</code> is |
|
|
|
|
* a valid value, meaning the <code>DaoAuthenticationProvider</code> will |
|
|
|
|
* present <code>null</code> to the relevant <code>PasswordEncoder</code>. |
|
|
|
|
* |
|
|
|
|
* @param saltSource to use when attempting to decode passwords via the |
|
|
|
|
* <code>PasswordEncoder</code> |
|
|
|
|
@ -126,4 +126,8 @@ public class DaoAuthenticationProvider
@@ -126,4 +126,8 @@ public class DaoAuthenticationProvider
|
|
|
|
|
public void setSaltSource(SaltSource saltSource) { |
|
|
|
|
this.saltSource = saltSource; |
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
public void setUserDetailsService(UserDetailsService authenticationDao) { |
|
|
|
|
this.userDetailsService = authenticationDao; |
|
|
|
|
} |
|
|
|
|
} |
|
|
|
|
|
Ben Alex
20 years ago