private AuthenticationStatus authenticate() { ILogger logger = clientEngine.getLogger(getClass()); AuthenticationStatus status; if (credentials == null) { status = AuthenticationStatus.CREDENTIALS_FAILED; logger.severe("Could not retrieve Credentials object!"); } else if (clientEngine.getSecurityContext() != null) { status = authenticate(clientEngine.getSecurityContext()); } else if (credentials instanceof UsernamePasswordCredentials) { UsernamePasswordCredentials usernamePasswordCredentials = (UsernamePasswordCredentials) credentials; status = authenticate(usernamePasswordCredentials); } else { status = AuthenticationStatus.CREDENTIALS_FAILED; logger.severe("Hazelcast security is disabled.\nUsernamePasswordCredentials or cluster " + "group-name and group-password should be used for authentication!\n" + "Current credentials type is: " + credentials.getClass().getName()); } return status; }
private void checkPermissions(ClientEndpoint endpoint) { SecurityContext securityContext = clientEngine.getSecurityContext(); if (securityContext != null) { Permission permission = getRequiredPermission(); if (permission != null) { securityContext.checkPermission(endpoint.getSubject(), permission); } } }
private void checkPermissions(ClientEndpoint endpoint) { SecurityContext securityContext = clientEngine.getSecurityContext(); if (securityContext != null) { Permission permission = getRequiredPermission(); if (permission != null) { securityContext.checkPermission(endpoint.getSubject(), permission); } } }
private void interceptAfter(Credentials credentials) { final SecurityContext securityContext = clientEngine.getSecurityContext(); final String methodName = getMethodName(); if (securityContext != null && methodName != null) { final String objectType = getDistributedObjectType(); final String objectName = getDistributedObjectName(); securityContext.interceptAfter(credentials, objectType, objectName, methodName); } }
private void interceptAfter(Credentials credentials) { final SecurityContext securityContext = clientEngine.getSecurityContext(); final String methodName = getMethodName(); if (securityContext != null && methodName != null) { final String objectType = getDistributedObjectType(); final String objectName = getDistributedObjectName(); securityContext.interceptAfter(credentials, objectType, objectName, methodName); } }
private AuthenticationStatus authenticate() { if (clientSerializationVersion != serializationService.getVersion()) { return SERIALIZATION_VERSION_MISMATCH; } if (!isOwnerConnection() && !isMember(principal)) { logger.warning("Member having UUID " + principal.getOwnerUuid() + " is not part of the cluster. Client Authentication rejected."); return CREDENTIALS_FAILED; } else if (credentials == null) { logger.severe("Could not retrieve Credentials object!"); return CREDENTIALS_FAILED; } else if (clientEngine.getSecurityContext() != null) { return authenticate(clientEngine.getSecurityContext()); } else if (credentials instanceof UsernamePasswordCredentials) { UsernamePasswordCredentials usernamePasswordCredentials = (UsernamePasswordCredentials) credentials; return authenticate(usernamePasswordCredentials); } else { logger.severe("Hazelcast security is disabled.\nUsernamePasswordCredentials or cluster " + "group-name and group-password should be used for authentication!\n" + "Current credentials type is: " + credentials.getClass().getName()); return CREDENTIALS_FAILED; } }
@Override protected Operation prepareOperation() { SecurityContext securityContext = clientEngine.getSecurityContext(); Data callableData = parameters.callable; if (securityContext != null) { Subject subject = endpoint.getSubject(); Callable callable = serializationService.toObject(parameters.callable); callable = securityContext.createSecureCallable(subject, callable); callableData = serializationService.toData(callable); } return new TaskOperation(parameters.name, callableData); }
@Override protected Operation prepareOperation() { SecurityContext securityContext = clientEngine.getSecurityContext(); Data callableData = parameters.callable; if (securityContext != null) { Subject subject = endpoint.getSubject(); Callable callable = serializationService.toObject(parameters.callable); callable = securityContext.createSecureCallable(subject, callable); callableData = serializationService.toData(callable); } return new TaskOperation(parameters.name, callableData); }
private void interceptBefore(Credentials credentials) { final SecurityContext securityContext = clientEngine.getSecurityContext(); final String methodName = getMethodName(); if (securityContext != null && methodName != null) { final String objectType = getDistributedObjectType(); final String objectName = getDistributedObjectName(); securityContext.interceptBefore(credentials, objectType, objectName, methodName, getParameters()); } }
private void interceptBefore(Credentials credentials) { final SecurityContext securityContext = clientEngine.getSecurityContext(); final String methodName = getMethodName(); if (securityContext != null && methodName != null) { final String objectType = getDistributedObjectType(); final String objectName = getDistributedObjectName(); securityContext.interceptBefore(credentials, objectType, objectName, methodName, getParameters()); } }
@Override protected Operation prepareOperation() { SecurityContext securityContext = clientEngine.getSecurityContext(); Data callableData = parameters.callable; if (securityContext != null) { Subject subject = endpoint.getSubject(); Callable callable = serializationService.toObject(parameters.callable); callable = securityContext.createSecureCallable(subject, callable); callableData = serializationService.toData(callable); } return new CallableTaskOperation(parameters.name, parameters.uuid, callableData); }
@Override protected Operation prepareOperation() { SecurityContext securityContext = clientEngine.getSecurityContext(); Data callableData = parameters.callable; if (securityContext != null) { Subject subject = endpoint.getSubject(); Callable callable = serializationService.toObject(parameters.callable); callable = securityContext.createSecureCallable(subject, callable); callableData = serializationService.toData(callable); } return new CallableTaskOperation(parameters.name, parameters.uuid, callableData); }
@Override protected Operation prepareOperation() { SecurityContext securityContext = clientEngine.getSecurityContext(); Data callableData = parameters.callable; if (securityContext != null) { Callable callable = serializationService.toObject(parameters.callable); Subject subject = endpoint.getSubject(); callable = securityContext.createSecureCallable(subject, callable); callableData = serializationService.toData(callable); } MemberCallableTaskOperation op = new MemberCallableTaskOperation(parameters.name, parameters.uuid, callableData); op.setCallerUuid(endpoint.getUuid()); return op; }
@Override protected Operation prepareOperation() { SecurityContext securityContext = clientEngine.getSecurityContext(); Data callableData = parameters.callable; if (securityContext != null) { Callable callable = serializationService.toObject(parameters.callable); Subject subject = endpoint.getSubject(); callable = securityContext.createSecureCallable(subject, callable); callableData = serializationService.toData(callable); } MemberCallableTaskOperation op = new MemberCallableTaskOperation(parameters.name, parameters.uuid, callableData); op.setCallerUuid(endpoint.getUuid()); return op; }