001: /*
002: * JOSSO: Java Open Single Sign-On
003: *
004: * Copyright 2004-2008, Atricore, Inc.
005: *
006: * This is free software; you can redistribute it and/or modify it
007: * under the terms of the GNU Lesser General Public License as
008: * published by the Free Software Foundation; either version 2.1 of
009: * the License, or (at your option) any later version.
010: *
011: * This software is distributed in the hope that it will be useful,
012: * but WITHOUT ANY WARRANTY; without even the implied warranty of
013: * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
014: * Lesser General Public License for more details.
015: *
016: * You should have received a copy of the GNU Lesser General Public
017: * License along with this software; if not, write to the Free
018: * Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
019: * 02110-1301 USA, or see the FSF site: http://www.fsf.org.
020: */
021:
022: package org.josso.spring.acegi;
023:
024: import org.acegisecurity.userdetails.UserDetailsService;
025: import org.acegisecurity.userdetails.UserDetails;
026: import org.acegisecurity.userdetails.UsernameNotFoundException;
027: import org.acegisecurity.userdetails.User;
028: import org.acegisecurity.GrantedAuthority;
029: import org.acegisecurity.GrantedAuthorityImpl;
030:
031: import org.josso.gateway.GatewayServiceLocator;
032: import org.josso.gateway.identity.service.SSOIdentityManager;
033: import org.josso.gateway.identity.SSOUser;
034: import org.josso.gateway.identity.SSORole;
035: import org.josso.gateway.identity.exceptions.NoSuchUserException;
036: import org.josso.gateway.identity.exceptions.SSOIdentityException;
037: import org.apache.commons.logging.Log;
038: import org.apache.commons.logging.LogFactory;
039:
040: /**
041: * Date: Sep 28, 2007
042: * Time: 10:23:22 AM
043: *
044: * @author <a href="mailto:sgonzalez@josso.org">Gianluca Brigandi</a>
045: */
046: public class JOSSOUserDetailsService implements UserDetailsService {
047:
048: private static final Log logger = LogFactory
049: .getLog(JOSSOUserDetailsService.class);
050:
051: private GatewayServiceLocator _gsl;
052:
053: private SSOIdentityManager _im;
054:
055: /**
056: * This implementation will retrieve user details from JOSSO services.
057: */
058: public UserDetails loadUserByUsername(String username)
059: throws UsernameNotFoundException,
060: org.springframework.dao.DataAccessException {
061: try {
062: SSOUser user = getIdentityManager().findUser(username);
063: SSORole[] roles = _im.findRolesByUsername(username);
064: return toUserDetails(user, roles);
065: } catch (NoSuchUserException e) {
066: logger.error(e.getMessage(), e);
067: throw new UsernameNotFoundException(e.getMessage(), e);
068: } catch (SSOIdentityException e) {
069: logger.error(e.getMessage(), e);
070: throw new UsernameNotFoundException(e.getMessage(), e);
071: }
072: }
073:
074: /**
075: * This addapts JOSSO user informatio to ACEGI user details.
076: *
077: * Some SSO properties retrieved by JOSSO could be mapped to specific user detail information
078: * like account disabled, by subclasses.
079: *
080: */
081: protected UserDetails toUserDetails(SSOUser user, SSORole[] roles) {
082: GrantedAuthority[] authorities = new GrantedAuthority[roles.length];
083: for (int i = 0; i < roles.length; i++) {
084: SSORole role = roles[i];
085: authorities[i] = new GrantedAuthorityImpl(role.getName());
086: }
087:
088: UserDetails ud = new User(user.getName(),
089: "NOT AVAILABLE UNDER JOSSO", true, true, true, true,
090: authorities);
091:
092: return ud;
093: }
094:
095: public GatewayServiceLocator getGatewayServiceLocator() {
096: return _gsl;
097: }
098:
099: public void setGatewayServiceLocator(GatewayServiceLocator gsl) {
100: this ._gsl = gsl;
101: }
102:
103: public SSOIdentityManager getIdentityManager() {
104: if (_im == null) {
105: try {
106: _im = _gsl.getSSOIdentityManager();
107: } catch (Exception e) {
108: logger.error(e.getMessage(), e);
109: }
110: }
111:
112: return _im;
113: }
114:
115: }
|