01: /*
02: * Copyright (c) 1998-2008 Caucho Technology -- all rights reserved
03: *
04: * This file is part of Resin(R) Open Source
05: *
06: * Each copy or derived work must preserve the copyright notice and this
07: * notice unmodified.
08: *
09: * Resin Open Source is free software; you can redistribute it and/or modify
10: * it under the terms of the GNU General Public License as published by
11: * the Free Software Foundation; either version 2 of the License, or
12: * (at your option) any later version.
13: *
14: * Resin Open Source is distributed in the hope that it will be useful,
15: * but WITHOUT ANY WARRANTY; without even the implied warranty of
16: * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE, or any warranty
17: * of NON-INFRINGEMENT. See the GNU General Public License for more
18: * details.
19: *
20: * You should have received a copy of the GNU General Public License
21: * along with Resin Open Source; if not, write to the
22: * Free Software Foundation, Inc.
23: * 59 Temple Place, Suite 330
24: * Boston, MA 02111-1307 USA
25: *
26: * @author Scott Ferguson
27: */
28:
29: package com.caucho.server.security;
30:
31: import java.security.*;
32: import javax.servlet.*;
33: import javax.servlet.http.*;
34:
35: import com.caucho.security.*;
36:
37: /**
38: * The anonymous authenticator always succeeds
39: *
40: * <code><pre>
41: * <authenticator url="anonymous:"/>
42: * </pre></code>
43: */
44: public class AnonymousAuthenticator extends AbstractAuthenticator {
45: private Principal _user = new BasicPrincipal("anonymous");
46:
47: /**
48: * Authenticate (login) the user.
49: */
50: protected Principal loginImpl(HttpServletRequest request,
51: HttpServletResponse response, ServletContext application,
52: String user, String password) throws ServletException {
53: return _user;
54: }
55:
56: /**
57: * The anonymous user is in the "user" role
58: *
59: * @param request the servlet request
60: * @param user the user to test
61: * @param role the role to test
62: */
63: public boolean isUserInRole(HttpServletRequest request,
64: HttpServletResponse response, ServletContext application,
65: Principal user, String role) throws ServletException {
66: return user == _user && "user".equals(role);
67: }
68: }
|