if (credentialStorage != null && CredentialUtils.isCredentialExpired(credentialStorage)) { credentials.setStatus(Status.EXPIRED); } else if (Status.IN_PROGRESS.equals(credentials.getStatus())) { credentials.setStatus(Status.VALID); if (Status.VALID.equals(credentials.getStatus())) { credentials.setValidatedAccount(account); } else if (Status.IN_PROGRESS.equals(credentials.getStatus())) { credentials.setStatus(Status.INVALID);
getIdentityManager().validateCredentials(passwordCredential); boolean validation = passwordCredential.getStatus().equals(Status.VALID);
if (credentialStorage != null && CredentialUtils.isCredentialExpired(credentialStorage)) { credentials.setStatus(Status.EXPIRED); } else if (Status.IN_PROGRESS.equals(credentials.getStatus())) { credentials.setStatus(Status.VALID); if (Status.VALID.equals(credentials.getStatus())) { credentials.setValidatedAccount(account); } else if (Status.IN_PROGRESS.equals(credentials.getStatus())) { credentials.setStatus(Status.INVALID);
getIdentityManager().validateCredentials(digCredential); if (digCredential.getStatus().equals(Status.VALID)) { return new PicketBoxPrincipal(digest.getUsername());
if (Credentials.Status.VALID.equals(creds.getStatus())) { setStatus(AuthenticationStatus.SUCCESS); setAccount(creds.getValidatedAccount()); } else if (Credentials.Status.ACCOUNT_DISABLED.equals(creds.getStatus())) { throw new LockedAccountException("Account [" + this.credentials.getUserId() + "] is disabled."); } else if (Credentials.Status.EXPIRED.equals(creds.getStatus())) { throw new CredentialExpiredException("Credential is expired for Account [" + this.credentials.getUserId() + "].");
if (Credentials.Status.VALID.equals(creds.getStatus())) { setStatus(AuthenticationStatus.SUCCESS); setAccount(creds.getValidatedAccount()); } else if (Credentials.Status.ACCOUNT_DISABLED.equals(creds.getStatus())) { throw new LockedAccountException("Account [" + this.credentials.getUserId() + "] is disabled."); } else if (Credentials.Status.EXPIRED.equals(creds.getStatus())) { throw new CredentialExpiredException("Credential is expired for Account [" + this.credentials.getUserId() + "].");
@Override protected Principal doHTTPAuthentication(HttpServletCredential credential) { HTTPClientCertCredential certCredential = (HTTPClientCertCredential) credential; if (certCredential.getCredential() != null) { X509CertificateCredentials x509Credential = (X509CertificateCredentials) certCredential.getCredential(); X509Certificate clientCertificate = x509Credential.getCertificate().getValue(); String username = getCertificatePrincipal(clientCertificate).getName(); if (isUseCNAsPrincipal()) { Properties prop = new Properties(); try { prop.load(new StringReader(username.replaceAll(",", "\n"))); } catch (IOException e) { e.printStackTrace(); } username = prop.getProperty("CN"); } User user = getIdentityManager().getUser(username); if (user != null) { if (isUseCertificateValidation()) { getIdentityManager().validateCredentials(x509Credential); if (!x509Credential.getStatus().equals(Status.VALID)) { return null; } } return new PicketBoxPrincipal(username); } } return null; }
if (Credentials.Status.VALID.equals(creds.getStatus())) { setStatus(AuthenticationStatus.SUCCESS); setAccount(creds.getValidatedAccount()); } else if (Credentials.Status.ACCOUNT_DISABLED.equals(creds.getStatus())) { throw new LockedAccountException("Account [" + this.credentials.getUserId() + "] is disabled."); } else if (Credentials.Status.EXPIRED.equals(creds.getStatus())) { throw new CredentialExpiredException("Credential is expired for Account [" + this.credentials.getUserId() + "].");
@Override protected Principal doAuthenticate(UserCredential credential, AuthenticationResult result) throws AuthenticationException { CertificateCredential certCredential = (CertificateCredential) credential; X509CertificateCredentials x509Credential = (X509CertificateCredentials) certCredential.getCredential(); X509Certificate clientCertificate = x509Credential.getCertificate().getValue(); String username = getUserName(clientCertificate); Principal principal = null; if (isUseCertificateValidation()) { getIdentityManager().validateCredentials(x509Credential); if (x509Credential.getStatus().equals(Status.VALID)) { principal = new PicketBoxPrincipal(username); } } else if (getIdentityManager().getUser(username) != null) { principal = new PicketBoxPrincipal(username); } if (principal == null) { invalidCredentials(result); } return principal; }
@Override protected Principal doHTTPAuthentication(HttpServletCredential credential) { HTTPFormCredential formCredential = (HTTPFormCredential) credential; if (formCredential.getCredential() != null) { User user = getIdentityManager().getUser(formCredential.getUserName()); Credentials passwordCredential = formCredential.getCredential(); getIdentityManager().validateCredentials(passwordCredential); if (user != null && passwordCredential.getStatus().equals(Status.VALID)) { return new PicketBoxPrincipal(formCredential.getUserName()); } } return null; }
@Override protected Principal doAuthenticate(UserCredential credential, AuthenticationResult result) throws AuthenticationException { UsernamePasswordCredential userCredential = (UsernamePasswordCredential) credential; // try to retrieve the user from the configured identity store User user = getIdentityManager().getUser(userCredential.getUserName()); Credentials passwordCredential = userCredential.getCredential(); getIdentityManager().validateCredentials(passwordCredential); if (user != null && passwordCredential.getStatus().equals(Status.VALID)) { return new PicketBoxPrincipal(userCredential.getUserName()); } return null; } }
@Override protected PicketBoxPrincipal doHTTPAuthentication(HttpServletCredential credential) { HTTPBasicCredential basicCredential = (HTTPBasicCredential) credential; if (basicCredential.getCredential() != null) { String username = basicCredential.getUserName(); User user = getIdentityManager().getUser(username); Credentials userCredential = basicCredential.getCredential(); getIdentityManager().validateCredentials(userCredential); if (user != null && userCredential.getStatus().equals(Status.VALID)) { return new PicketBoxPrincipal(username); } } return null; }
@Override public void validate(final IdentityContext context, final TOTPCredentials credentials, final CredentialStore<?> store) { super.validate(context, credentials, store); if (Status.VALID.equals(credentials.getStatus()) || Status.EXPIRED.equals(credentials.getStatus())) { if (!isValid(context, credentials, store)) { credentials.setStatus(Status.INVALID); credentials.setValidatedAccount(null); } } }
/** * Check if the credential has already expired * * @return boolean */ public boolean hasExpired() { return credential.getStatus().equals(Credentials.Status.EXPIRED); }
/** * Check if the credential is valid * * @return boolean */ public boolean isValid() { return credential.getStatus().equals(Credentials.Status.VALID); }
@Override public void validate(final IdentityContext context, final TOTPCredentials credentials, final CredentialStore<?> store) { super.validate(context, credentials, store); if (Status.VALID.equals(credentials.getStatus()) || Status.EXPIRED.equals(credentials.getStatus())) { if (!isValid(context, credentials, store)) { credentials.setStatus(Status.INVALID); credentials.setValidatedAccount(null); } } }