tests/javaobject/SimpleSecurityManager.java - geode-native - Git at Google

 /*
  * Licensed to the Apache Software Foundation (ASF) under one or more
  * contributor license agreements.  See the NOTICE file distributed with
  * this work for additional information regarding copyright ownership.
  * The ASF licenses this file to You under the Apache License, Version 2.0
  * (the "License"); you may not use this file except in compliance with
  * the License.  You may obtain a copy of the License at
  *
  *      http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
 /*=========================================================================
 * This implementation is provided on an "AS IS" BASIS,  WITHOUT WARRANTIES
 * OR CONDITIONS OF ANY KIND, either express or implied."
 *==========================================================================
 */

 package javaobject;

 import java.util.HashMap;
 import java.util.Properties;

 import org.apache.geode.management.internal.security.ResourceConstants;
 import org.apache.geode.security.AuthenticationFailedException;
 import org.apache.geode.security.ResourcePermission;
 import org.apache.geode.security.SecurityManager;

 public class SimpleSecurityManager implements SecurityManager {
   @Override
   public Object authenticate(Properties credentials) throws AuthenticationFailedException {
     String user = credentials.getProperty(ResourceConstants.USER_NAME);
     String password = credentials.getProperty(ResourceConstants.PASSWORD);

     if (getUserCredentials().containsKey(user) && getUserCredentials().get(user).equals(password)) {
         return user;
     }
     throw new AuthenticationFailedException("Non-authenticated user: " + user);
   }

   @Override
   public boolean authorize(Object principal, ResourcePermission permission) {
     String username = principal.toString();

     if (permission.getOperation() == ResourcePermission.Operation.MANAGE) {
         return username.equals("root");
     }

     if (permission.getOperation() == ResourcePermission.Operation.READ) {
         return username.contains("read") || username.equals("root");
     }

     if (permission.getOperation() == ResourcePermission.Operation.WRITE) {
         return username.contains("write") || username.equals("root");
     }

     return false;
   }

   private HashMap<String, String> getUserCredentials() {
     HashMap<String, String> userCredentials = new HashMap<String, String>();
     userCredentials.put("root", "root-password");
     userCredentials.put("reader", "reader-password");
     userCredentials.put("writer", "writer-password");
     return userCredentials;
   }
 }
	/*
	* Licensed to the Apache Software Foundation (ASF) under one or more
	* contributor license agreements. See the NOTICE file distributed with
	* this work for additional information regarding copyright ownership.
	* The ASF licenses this file to You under the Apache License, Version 2.0
	* (the "License"); you may not use this file except in compliance with
	* the License. You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/
	/*=========================================================================
	* This implementation is provided on an "AS IS" BASIS, WITHOUT WARRANTIES
	* OR CONDITIONS OF ANY KIND, either express or implied."
	*==========================================================================
	*/

	package javaobject;

	import java.util.HashMap;
	import java.util.Properties;

	import org.apache.geode.management.internal.security.ResourceConstants;
	import org.apache.geode.security.AuthenticationFailedException;
	import org.apache.geode.security.ResourcePermission;
	import org.apache.geode.security.SecurityManager;

	public class SimpleSecurityManager implements SecurityManager {
	@Override
	public Object authenticate(Properties credentials) throws AuthenticationFailedException {
	String user = credentials.getProperty(ResourceConstants.USER_NAME);
	String password = credentials.getProperty(ResourceConstants.PASSWORD);

	if (getUserCredentials().containsKey(user) && getUserCredentials().get(user).equals(password)) {
	return user;
	}
	throw new AuthenticationFailedException("Non-authenticated user: " + user);
	}

	@Override
	public boolean authorize(Object principal, ResourcePermission permission) {
	String username = principal.toString();

	if (permission.getOperation() == ResourcePermission.Operation.MANAGE) {
	return username.equals("root");
	}

	if (permission.getOperation() == ResourcePermission.Operation.READ) {
	return username.contains("read") \|\| username.equals("root");
	}

	if (permission.getOperation() == ResourcePermission.Operation.WRITE) {
	return username.contains("write") \|\| username.equals("root");
	}

	return false;
	}

	private HashMap<String, String> getUserCredentials() {
	HashMap<String, String> userCredentials = new HashMap<String, String>();
	userCredentials.put("root", "root-password");
	userCredentials.put("reader", "reader-password");
	userCredentials.put("writer", "writer-password");
	return userCredentials;
	}
	}