@Override public boolean checkUserCredentialsWithPasswordHash(final String username, final String passwordHash) { final UserImpl user = getDbSession().findUserByUsername(username); if (user != null) { final String dbPassword = user.getPassword(); if (passwordHash == null && (dbPassword == null || dbPassword.equals(Misc.hash(""))) || (passwordHash != null && passwordHash.equals(dbPassword))) { return true; } } return false; }
@Override public boolean checkUserCredentials(final String username, final String password) { final String passwordHash = Misc.hash(password); final UserImpl user = getDbSession().findUserByUsername(username); if (user != null) { //BUG 11848 on SQL Server if (!username.equals(user.getUsername())) { return false; } final String dbPassword = user.getPassword(); if (passwordHash == null && (dbPassword == null || dbPassword.equals(Misc.hash(""))) || (passwordHash != null && passwordHash.equals(dbPassword))) { return true; } } return false; }
@Override public boolean isUserAdmin(final String username) { try { final UserImpl user = getDbSession().findUserByUsername(username); if (user == null) { throw new UserNotFoundException("bsi_DBA_1", username); } final Set<Membership> userMemberships = user.getMemberships(); for (final Membership membership : userMemberships) { if (IdentityAPI.ADMIN_ROLE_NAME.equals(membership.getRole().getName()) && IdentityAPI.DEFAULT_GROUP_NAME.equals(membership.getGroup().getName())) { return true; } } return false; } catch (final UserNotFoundException e) { LOG.log(Level.SEVERE, e.getMessage(), e.getCause()); return false; } }