Refine search
@Override public boolean verifyEvidence(Evidence evidence) throws RealmUnavailableException { if (domainContext == null || domainContext.getAuthenticationManager() == null) { throw new RealmUnavailableException(); } else { final Subject jaasSubject = new Subject(); Object jaasCredential = evidence; if (evidence instanceof PasswordGuessEvidence) { jaasCredential = ((PasswordGuessEvidence) evidence).getGuess(); } final boolean isValid = domainContext.getAuthenticationManager().isValid(principal, jaasCredential, jaasSubject); if (isValid) { // set the authenticated subject when the authentication succeeds. this.authenticatedSubject = jaasSubject; } return isValid; } }
private void clearAccount(Account account) { Principal principal = (account instanceof AccountImpl) ? ((AccountImpl) account).getOriginalPrincipal() : account.getPrincipal(); if (principal != null) { // perform the logout of the principal using the subject currently set in the security context. Subject subject = SecurityActions.getSubject(); this.manager.logout(principal, subject); } } }
SubjectInfo subjectInfo = getSubjectInfo(context); if (subject == null) { subject = new Subject(); subjectInfo.addIdentity(unauthenticatedIdentity); auditPrincipal = unauthenticatedIdentity.asPrincipal(); subject.getPrincipals().add(auditPrincipal); authenticated = true; } else { subject.getPrincipals().add(principal); authenticated = authenticationManager.isValid(principal, credential, subject);
@Override public boolean isValid(Principal principal, Object credential, Subject activeSubject) { return context.getAuthenticationManager().isValid(principal, credential, activeSubject); }
@Override public String getSecurityDomain() { return context.getAuthenticationManager().getSecurityDomain(); }
SubjectInfo subjectInfo = getSubjectInfo(context); if (subject == null) { subject = new Subject(); subjectInfo.addIdentity(unauthenticatedIdentity); auditPrincipal = unauthenticatedIdentity.asPrincipal(); subject.getPrincipals().add(auditPrincipal); authenticated = true; } else { subject.getPrincipals().add(principal); authenticated = authenticationManager.isValid(principal, credential, subject);
@Override public boolean isValid(Principal principal, Object credential, Subject activeSubject) { return context.getAuthenticationManager().isValid(principal, credential, activeSubject); }
@Override public String getSecurityDomain() { return context.getAuthenticationManager().getSecurityDomain(); }
private Account verifyCredential(final AccountImpl account, final Object credential) { final AuthenticationManager authenticationManager = securityDomainContext.getAuthenticationManager(); final AuthorizationManager authorizationManager = securityDomainContext.getAuthorizationManager(); final SecurityContext sc = SecurityActions.getSecurityContext(); Principal incomingPrincipal = account.getOriginalPrincipal(); Subject subject = new Subject(); try { boolean isValid = authenticationManager.isValid(incomingPrincipal, credential, subject); if (isValid) { UndertowLogger.ROOT_LOGGER.tracef("User: %s is authenticated", incomingPrincipal); if (sc == null) { throw UndertowLogger.ROOT_LOGGER.noSecurityContext(); } Principal userPrincipal = getPrincipal(subject); sc.getUtil().createSubjectInfo(incomingPrincipal, credential, subject); SecurityContextCallbackHandler scb = new SecurityContextCallbackHandler(sc); RoleGroup roles = authorizationManager.getSubjectRoles(subject, scb); Set<String> roleSet = new HashSet<>(); for (Role role : roles.getRoles()) { roleSet.add(role.getRoleName()); } return new AccountImpl(userPrincipal, roleSet, credential, account.getOriginalPrincipal()); } } catch (Exception e) { throw new RuntimeException(e); } return null; }
SubjectInfo subjectInfo = context.getSubjectInfo(); if (subject == null) { subject = new Subject(); subjectInfo.addIdentity(unauthenticatedIdentity); auditPrincipal = unauthenticatedIdentity.asPrincipal(); subject.getPrincipals().add(auditPrincipal); authenticated = true; authenticated = authenticationManager.isValid(principal, credential, subject);
@Override public boolean isValid(Principal principal, Object credential, Subject activeSubject) { return context.getAuthenticationManager().isValid(principal, credential, activeSubject); }
@Override public String getSecurityDomain() { return context.getAuthenticationManager().getSecurityDomain(); }
@Override public void handleNotification(SecurityNotification notification) { if (notification.getEventType() == SecurityNotification.EventType.LOGGED_OUT) { Account account = notification.getAccount(); Principal principal = (account instanceof AccountImpl) ? ((AccountImpl) account).getOriginalPrincipal() : account.getPrincipal(); if (principal != null) { // perform the logout of the principal using the subject currently set in the security context. Subject subject = SecurityActions.getSubject(); this.manager.logout(principal, subject); } // Clear old context SecurityActions.clearSecurityContext(); SecurityActions.setSecurityRoles(null); // Set a new one in case re-authentication is done within the same thread org.jboss.security.SecurityContext securityContext = SecurityActions.createSecurityContext(securityDomain); notification.getExchange().putAttachment(UndertowSecurityAttachments.SECURITY_CONTEXT_ATTACHMENT, securityContext); SecurityActions.setSecurityContextOnAssociation(securityContext); } } }
public boolean validateUser(final String user, final String password) { SimplePrincipal principal = new SimplePrincipal(user); char[] passwordChars = null; if (password != null) { passwordChars = password.toCharArray(); } Subject subject = new Subject(); return authenticationManager.isValid(principal, passwordChars, subject); }
SubjectInfo subjectInfo = context.getSubjectInfo(); if (subject == null) { subject = new Subject(); subjectInfo.addIdentity(unauthenticatedIdentity); auditPrincipal = unauthenticatedIdentity.asPrincipal(); subject.getPrincipals().add(auditPrincipal); authenticated = true; authenticated = authenticationManager.isValid(principal, credential, subject);
public Boolean run() { SecurityContext sc = SecurityContextAssociation.getSecurityContext(); Principal principal = sc.getUtil().getUserPrincipal(); char[] passwordChars = (char[])sc.getUtil().getCredential(); Subject subject = sc.getSubjectInfo().getAuthenticatedSubject(); boolean authenticated = authenticationManager.isValid(principal, passwordChars, subject); if (authenticated) { Set<Principal> rolePrincipals = getRolePrincipals(checkType, roles); authenticated = realmMapping.doesUserHaveRole(principal, rolePrincipals); if (trace) { ActiveMQJBossLogger.LOGGER.trace("user " + principal.getName() + (authenticated ? " is " : " is NOT ") + "authorized"); } } return authenticated; }
@Override public void setContainer(Container container) { super.setContainer(container); if (container != null) { AuthenticationManager am = container.getSecurityManager(); if(am != null) { securityDomain = am.getSecurityDomain(); } } try { timedObjectMethod = TimedObject.class.getMethod("ejbTimeout", new Class[]{Timer.class}) .getName(); } catch (Exception e) { if (log.isTraceEnabled()) { log.trace("Exception in creating TimedObject method:",e); } } }
private void clearAccount(Account account) { Principal principal = (account instanceof AccountImpl) ? ((AccountImpl) account).getOriginalPrincipal() : account.getPrincipal(); if (principal != null) { // perform the logout of the principal using the subject currently set in the security context. Subject subject = SecurityActions.getSubject(); this.manager.logout(principal, subject); } } }
public boolean validateUser(final String user, final String password) { SimplePrincipal principal = new SimplePrincipal(user); char[] passwordChars = null; if (password != null) { passwordChars = password.toCharArray(); } Subject subject = new Subject(); return authenticationManager.isValid(principal, passwordChars, subject); }
public Boolean run() { SecurityContext sc = SecurityContextAssociation.getSecurityContext(); Principal principal = sc.getUtil().getUserPrincipal(); char[] passwordChars = (char[])sc.getUtil().getCredential(); Subject subject = sc.getSubjectInfo().getAuthenticatedSubject(); boolean authenticated = authenticationManager.isValid(principal, passwordChars, subject); if (authenticated) { Set<Principal> rolePrincipals = getRolePrincipals(checkType, roles); authenticated = realmMapping.doesUserHaveRole(principal, rolePrincipals); if (trace) { HornetQJBossLogger.LOGGER.trace("user " + principal.getName() + (authenticated ? " is " : " is NOT ") + "authorized"); } } return authenticated; }