plugins/user-authenticators/plain-text/src/main/java/org/apache/cloudstack/auth/PlainTextUserAuthenticator.java - cloudstack - Git at Google

 // Licensed to the Apache Software Foundation (ASF) under one or more
 // contributor license agreements.  See the NOTICE file distributed with
 // this work for additional information regarding copyright ownership.
 // The ASF licenses this file to You under the Apache License, Version 2.0
 // (the "License"); you may not use this file except in compliance with
 // the License.  You may obtain a copy of the License at
 //
 //    http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.

 package org.apache.cloudstack.auth;

 import java.util.Map;

 import javax.inject.Inject;

 import org.apache.commons.lang3.StringUtils;
 import org.apache.log4j.Logger;

 import com.cloud.user.UserAccount;
 import com.cloud.user.dao.UserAccountDao;
 import com.cloud.utils.Pair;
 import com.cloud.utils.component.AdapterBase;

 public class PlainTextUserAuthenticator extends AdapterBase implements UserAuthenticator {
     public static final Logger s_logger = Logger.getLogger(PlainTextUserAuthenticator.class);

     @Inject
     private UserAccountDao _userAccountDao;

     @Override
     public Pair<Boolean, ActionOnFailedAuthentication> authenticate(String username, String password, Long domainId, Map<String, Object[]> requestParameters) {
         if (s_logger.isDebugEnabled()) {
             s_logger.debug("Retrieving user: " + username);
         }

         if (StringUtils.isAnyEmpty(username, password)) {
             s_logger.debug("Username or Password cannot be empty");
             return new Pair<>(false, null);
         }

         UserAccount user = _userAccountDao.getUserAccount(username, domainId);
         if (user == null) {
             s_logger.debug("Unable to find user with " + username + " in domain " + domainId);
             return new Pair<>(false, null);
         }

         if (!user.getPassword().equals(password)) {
             s_logger.debug("Password does not match");
             return new Pair<>(false, ActionOnFailedAuthentication.INCREMENT_INCORRECT_LOGIN_ATTEMPT_COUNT);
         }
         return new Pair<>(true, null);
     }

     @Override
     public String encode(String password) {
         // Plaintext so no encoding at all
         return password;
     }
 }
	// Licensed to the Apache Software Foundation (ASF) under one or more
	// contributor license agreements. See the NOTICE file distributed with
	// this work for additional information regarding copyright ownership.
	// The ASF licenses this file to You under the Apache License, Version 2.0
	// (the "License"); you may not use this file except in compliance with
	// the License. You may obtain a copy of the License at
	//
	// http://www.apache.org/licenses/LICENSE-2.0
	//
	// Unless required by applicable law or agreed to in writing, software
	// distributed under the License is distributed on an "AS IS" BASIS,
	// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	// See the License for the specific language governing permissions and
	// limitations under the License.

	package org.apache.cloudstack.auth;

	import java.util.Map;

	import javax.inject.Inject;

	import org.apache.commons.lang3.StringUtils;
	import org.apache.log4j.Logger;

	import com.cloud.user.UserAccount;
	import com.cloud.user.dao.UserAccountDao;
	import com.cloud.utils.Pair;
	import com.cloud.utils.component.AdapterBase;

	public class PlainTextUserAuthenticator extends AdapterBase implements UserAuthenticator {
	public static final Logger s_logger = Logger.getLogger(PlainTextUserAuthenticator.class);

	@Inject
	private UserAccountDao _userAccountDao;

	@Override
	public Pair<Boolean, ActionOnFailedAuthentication> authenticate(String username, String password, Long domainId, Map<String, Object[]> requestParameters) {
	if (s_logger.isDebugEnabled()) {
	s_logger.debug("Retrieving user: " + username);
	}

	if (StringUtils.isAnyEmpty(username, password)) {
	s_logger.debug("Username or Password cannot be empty");
	return new Pair<>(false, null);
	}

	UserAccount user = _userAccountDao.getUserAccount(username, domainId);
	if (user == null) {
	s_logger.debug("Unable to find user with " + username + " in domain " + domainId);
	return new Pair<>(false, null);
	}

	if (!user.getPassword().equals(password)) {
	s_logger.debug("Password does not match");
	return new Pair<>(false, ActionOnFailedAuthentication.INCREMENT_INCORRECT_LOGIN_ATTEMPT_COUNT);
	}
	return new Pair<>(true, null);
	}

	@Override
	public String encode(String password) {
	// Plaintext so no encoding at all
	return password;
	}
	}