archiva-modules/archiva-web/archiva-webdav/src/main/java/org/apache/maven/archiva/webdav/ArchivaDavSessionProvider.java - archiva - Git at Google

 package org.apache.maven.archiva.webdav;

 /*
  * Licensed to the Apache Software Foundation (ASF) under one
  * or more contributor license agreements.  See the NOTICE file
  * distributed with this work for additional information
  * regarding copyright ownership.  The ASF licenses this file
  * to you under the Apache License, Version 2.0 (the
  * "License"); you may not use this file except in compliance
  * with the License.  You may obtain a copy of the License at
  *
  *  http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing,
  * software distributed under the License is distributed on an
  * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
  * KIND, either express or implied.  See the License for the
  * specific language governing permissions and limitations
  * under the License.
  */

 import org.apache.jackrabbit.webdav.DavSessionProvider;
 import org.apache.jackrabbit.webdav.WebdavRequest;
 import org.apache.jackrabbit.webdav.DavException;
 import org.apache.jackrabbit.webdav.DavServletRequest;
 import org.apache.maven.archiva.webdav.util.RepositoryPathUtil;
 import org.apache.maven.archiva.webdav.util.WebdavMethodUtil;
 import org.apache.maven.archiva.security.ArchivaXworkUser;
 import org.apache.maven.archiva.security.ServletAuthenticator;
 import org.codehaus.plexus.redback.authentication.AuthenticationException;
 import org.codehaus.plexus.redback.authentication.AuthenticationResult;
 import org.codehaus.plexus.redback.authorization.UnauthorizedException;
 import org.codehaus.plexus.redback.policy.MustChangePasswordException;
 import org.codehaus.plexus.redback.policy.AccountLockedException;
 import org.codehaus.plexus.redback.struts2.filter.authentication.HttpAuthenticator;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;

 /**
  * @author <a href="mailto:james@atlassian.com">James William Dumay</a>
  */
 public class ArchivaDavSessionProvider
     implements DavSessionProvider
 {
     private Logger log = LoggerFactory.getLogger( ArchivaDavSessionProvider.class );

     private ServletAuthenticator servletAuth;

     private HttpAuthenticator httpAuth;

     private ArchivaXworkUser archivaXworkUser;

     public ArchivaDavSessionProvider( ServletAuthenticator servletAuth, HttpAuthenticator httpAuth, ArchivaXworkUser archivaXworkUser )
     {
         this.servletAuth = servletAuth;
         this.httpAuth = httpAuth;
         this.archivaXworkUser = archivaXworkUser;
     }

     public boolean attachSession( WebdavRequest request )
         throws DavException
     {
         final String repositoryId = RepositoryPathUtil.getRepositoryName( removeContextPath( request ) );

         try
         {
             AuthenticationResult result = httpAuth.getAuthenticationResult( request, null );

             //Create a dav session
             request.setDavSession(new ArchivaDavSession());

             return servletAuth.isAuthenticated( request, result );
         }
         catch ( AuthenticationException e )
         {
             boolean isPut = WebdavMethodUtil.isWriteMethod( request.getMethod() );

             // safety check for MRM-911
             String guest = archivaXworkUser.getGuest();
             try
             {
                 if( servletAuth.isAuthorized( guest,
                       ( ( ArchivaDavResourceLocator ) request.getRequestLocator() ).getRepositoryId(), isPut ) )
                 {
                     request.setDavSession(new ArchivaDavSession());
                     return true;
                 }
             }
             catch ( UnauthorizedException ae )
             {
                 throw new UnauthorizedDavException( repositoryId,
                     "You are not authenticated and authorized to access any repository." );
             }

             throw new UnauthorizedDavException( repositoryId, "You are not authenticated." );
         }
         catch ( MustChangePasswordException e )
         {
             throw new UnauthorizedDavException( repositoryId, "You must change your password." );
         }
         catch ( AccountLockedException e )
         {
             throw new UnauthorizedDavException( repositoryId, "User account is locked." );
         }
     }

     public void releaseSession( WebdavRequest request )
     {
         request.setDavSession(null);
     }

     private String removeContextPath( final DavServletRequest request )
     {
         String path = request.getRequestURI();
         String ctx = request.getContextPath();
         if ( path.startsWith( ctx ) )
         {
             path = path.substring( ctx.length() );
         }
         return path;
     }
 }
	package org.apache.maven.archiva.webdav;

	/*
	* Licensed to the Apache Software Foundation (ASF) under one
	* or more contributor license agreements. See the NOTICE file
	* distributed with this work for additional information
	* regarding copyright ownership. The ASF licenses this file
	* to you under the Apache License, Version 2.0 (the
	* "License"); you may not use this file except in compliance
	* with the License. You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing,
	* software distributed under the License is distributed on an
	* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
	* KIND, either express or implied. See the License for the
	* specific language governing permissions and limitations
	* under the License.
	*/

	import org.apache.jackrabbit.webdav.DavSessionProvider;
	import org.apache.jackrabbit.webdav.WebdavRequest;
	import org.apache.jackrabbit.webdav.DavException;
	import org.apache.jackrabbit.webdav.DavServletRequest;
	import org.apache.maven.archiva.webdav.util.RepositoryPathUtil;
	import org.apache.maven.archiva.webdav.util.WebdavMethodUtil;
	import org.apache.maven.archiva.security.ArchivaXworkUser;
	import org.apache.maven.archiva.security.ServletAuthenticator;
	import org.codehaus.plexus.redback.authentication.AuthenticationException;
	import org.codehaus.plexus.redback.authentication.AuthenticationResult;
	import org.codehaus.plexus.redback.authorization.UnauthorizedException;
	import org.codehaus.plexus.redback.policy.MustChangePasswordException;
	import org.codehaus.plexus.redback.policy.AccountLockedException;
	import org.codehaus.plexus.redback.struts2.filter.authentication.HttpAuthenticator;
	import org.slf4j.Logger;
	import org.slf4j.LoggerFactory;

	/**
	* @author <a href="mailto:james@atlassian.com">James William Dumay</a>
	*/
	public class ArchivaDavSessionProvider
	implements DavSessionProvider
	{
	private Logger log = LoggerFactory.getLogger( ArchivaDavSessionProvider.class );

	private ServletAuthenticator servletAuth;

	private HttpAuthenticator httpAuth;

	private ArchivaXworkUser archivaXworkUser;

	public ArchivaDavSessionProvider( ServletAuthenticator servletAuth, HttpAuthenticator httpAuth, ArchivaXworkUser archivaXworkUser )
	{
	this.servletAuth = servletAuth;
	this.httpAuth = httpAuth;
	this.archivaXworkUser = archivaXworkUser;
	}

	public boolean attachSession( WebdavRequest request )
	throws DavException
	{
	final String repositoryId = RepositoryPathUtil.getRepositoryName( removeContextPath( request ) );

	try
	{
	AuthenticationResult result = httpAuth.getAuthenticationResult( request, null );

	//Create a dav session
	request.setDavSession(new ArchivaDavSession());

	return servletAuth.isAuthenticated( request, result );
	}
	catch ( AuthenticationException e )
	{
	boolean isPut = WebdavMethodUtil.isWriteMethod( request.getMethod() );

	// safety check for MRM-911
	String guest = archivaXworkUser.getGuest();
	try
	{
	if( servletAuth.isAuthorized( guest,
	( ( ArchivaDavResourceLocator ) request.getRequestLocator() ).getRepositoryId(), isPut ) )
	{
	request.setDavSession(new ArchivaDavSession());
	return true;
	}
	}
	catch ( UnauthorizedException ae )
	{
	throw new UnauthorizedDavException( repositoryId,
	"You are not authenticated and authorized to access any repository." );
	}

	throw new UnauthorizedDavException( repositoryId, "You are not authenticated." );
	}
	catch ( MustChangePasswordException e )
	{
	throw new UnauthorizedDavException( repositoryId, "You must change your password." );
	}
	catch ( AccountLockedException e )
	{
	throw new UnauthorizedDavException( repositoryId, "User account is locked." );
	}
	}

	public void releaseSession( WebdavRequest request )
	{
	request.setDavSession(null);
	}

	private String removeContextPath( final DavServletRequest request )
	{
	String path = request.getRequestURI();
	String ctx = request.getContextPath();
	if ( path.startsWith( ctx ) )
	{
	path = path.substring( ctx.length() );
	}
	return path;
	}
	}