webapp/src/main/java/org/apache/atlas/web/dao/UserDao.java - incubator-atlas - Git at Google

 /*
  * Licensed to the Apache Software Foundation (ASF) under one or more
  * contributor license agreements.  See the NOTICE file distributed with
  * this work for additional information regarding copyright ownership.
  * The ASF licenses this file to You under the Apache License, Version 2.0
  * (the "License"); you may not use this file except in compliance with
  * the License.  You may obtain a copy of the License at
  *
  *     http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */

 package org.apache.atlas.web.dao;

 import com.google.common.annotations.VisibleForTesting;
 import java.io.FileInputStream;
 import java.io.InputStream;
 import java.io.IOException;
 import java.util.ArrayList;
 import java.util.Properties;
 import java.util.List;
 import javax.annotation.PostConstruct;
 import org.apache.atlas.web.security.AtlasAuthenticationException;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 import org.springframework.stereotype.Repository;
 import org.apache.atlas.ApplicationProperties;
 import org.apache.atlas.AtlasException;
 import org.apache.atlas.web.model.User;
 import org.apache.commons.configuration.Configuration;
 import org.springframework.security.core.GrantedAuthority;
 import org.springframework.security.core.authority.SimpleGrantedAuthority;
 import org.springframework.security.core.userdetails.UsernameNotFoundException;
 import java.security.MessageDigest;
 import org.springframework.security.core.AuthenticationException;
 import org.springframework.util.StringUtils;


 @Repository
 public class UserDao {

     private static final Logger LOG = LoggerFactory.getLogger(UserDao.class);

     private Properties userLogins;

     @PostConstruct
     public void init() {
         loadFileLoginsDetails();
     }

     void loadFileLoginsDetails() {
         String PROPERTY_FILE_PATH = null;
         InputStream inStr = null;

         try {

             Configuration configuration = ApplicationProperties.get();
             PROPERTY_FILE_PATH = configuration
                     .getString("atlas.authentication.method.file.filename");
             if (PROPERTY_FILE_PATH != null && !"".equals(PROPERTY_FILE_PATH)) {
                 userLogins = new Properties();
                 inStr = new FileInputStream(PROPERTY_FILE_PATH);
                 userLogins.load(inStr);
             }else {
                 LOG.error("Error while reading user.properties file, filepath="
                         + PROPERTY_FILE_PATH);
             }

         } catch (IOException | AtlasException e) {
             LOG.error("Error while reading user.properties file, filepath=" + PROPERTY_FILE_PATH, e);
             throw new RuntimeException(e);
         } finally {
             if(inStr != null) {
                 try {
                     inStr.close();
                 } catch(Exception excp) {
                     // ignore
                 }
             }
         }
     }

     public User loadUserByUsername(final String username)
             throws AuthenticationException {
         String userdetailsStr = userLogins.getProperty(username);
         if (userdetailsStr == null || userdetailsStr.isEmpty()) {
             throw new UsernameNotFoundException("Username not found."
                     + username);
         }
         String password = "";
         String role = "";
         String dataArr[] = userdetailsStr.split("::");
         if (dataArr != null && dataArr.length == 2) {
             role = dataArr[0];
             password = dataArr[1];
         } else {
             LOG.error("User role credentials is not set properly for " + username);
             throw new AtlasAuthenticationException("User role credentials is not set properly for " + username );
         }

         List<GrantedAuthority> grantedAuths = new ArrayList<GrantedAuthority>();
         if (StringUtils.hasText(role)) {
             grantedAuths.add(new SimpleGrantedAuthority(role));
         } else {
             LOG.error("User role credentials is not set properly for " + username);
             throw new AtlasAuthenticationException("User role credentials is not set properly for " + username );
         }

         User userDetails = new User(username, password, grantedAuths);

         return userDetails;
     }


     @VisibleForTesting
     public void setUserLogins(Properties userLogins) {
         this.userLogins = userLogins;
     }


     public static String getSha256Hash(String base) throws AtlasAuthenticationException {
         try {
             MessageDigest digest = MessageDigest.getInstance("SHA-256");
             byte[] hash = digest.digest(base.getBytes("UTF-8"));
             StringBuffer hexString = new StringBuffer();

             for (int i = 0; i < hash.length; i++) {
                 String hex = Integer.toHexString(0xff & hash[i]);
                 if (hex.length() == 1) hexString.append('0');
                 hexString.append(hex);
             }
             return hexString.toString();

         } catch (Exception ex) {
             throw new AtlasAuthenticationException("Exception while encoding password.", ex);
         }
     }

 }
	/*
	* Licensed to the Apache Software Foundation (ASF) under one or more
	* contributor license agreements. See the NOTICE file distributed with
	* this work for additional information regarding copyright ownership.
	* The ASF licenses this file to You under the Apache License, Version 2.0
	* (the "License"); you may not use this file except in compliance with
	* the License. You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/

	package org.apache.atlas.web.dao;

	import com.google.common.annotations.VisibleForTesting;
	import java.io.FileInputStream;
	import java.io.InputStream;
	import java.io.IOException;
	import java.util.ArrayList;
	import java.util.Properties;
	import java.util.List;
	import javax.annotation.PostConstruct;
	import org.apache.atlas.web.security.AtlasAuthenticationException;
	import org.slf4j.Logger;
	import org.slf4j.LoggerFactory;
	import org.springframework.stereotype.Repository;
	import org.apache.atlas.ApplicationProperties;
	import org.apache.atlas.AtlasException;
	import org.apache.atlas.web.model.User;
	import org.apache.commons.configuration.Configuration;
	import org.springframework.security.core.GrantedAuthority;
	import org.springframework.security.core.authority.SimpleGrantedAuthority;
	import org.springframework.security.core.userdetails.UsernameNotFoundException;
	import java.security.MessageDigest;
	import org.springframework.security.core.AuthenticationException;
	import org.springframework.util.StringUtils;


	@Repository
	public class UserDao {

	private static final Logger LOG = LoggerFactory.getLogger(UserDao.class);

	private Properties userLogins;

	@PostConstruct
	public void init() {
	loadFileLoginsDetails();
	}

	void loadFileLoginsDetails() {
	String PROPERTY_FILE_PATH = null;
	InputStream inStr = null;

	try {

	Configuration configuration = ApplicationProperties.get();
	PROPERTY_FILE_PATH = configuration
	.getString("atlas.authentication.method.file.filename");
	if (PROPERTY_FILE_PATH != null && !"".equals(PROPERTY_FILE_PATH)) {
	userLogins = new Properties();
	inStr = new FileInputStream(PROPERTY_FILE_PATH);
	userLogins.load(inStr);
	}else {
	LOG.error("Error while reading user.properties file, filepath="
	+ PROPERTY_FILE_PATH);
	}

	} catch (IOException \| AtlasException e) {
	LOG.error("Error while reading user.properties file, filepath=" + PROPERTY_FILE_PATH, e);
	throw new RuntimeException(e);
	} finally {
	if(inStr != null) {
	try {
	inStr.close();
	} catch(Exception excp) {
	// ignore
	}
	}
	}
	}

	public User loadUserByUsername(final String username)
	throws AuthenticationException {
	String userdetailsStr = userLogins.getProperty(username);
	if (userdetailsStr == null \|\| userdetailsStr.isEmpty()) {
	throw new UsernameNotFoundException("Username not found."
	+ username);
	}
	String password = "";
	String role = "";
	String dataArr[] = userdetailsStr.split("::");
	if (dataArr != null && dataArr.length == 2) {
	role = dataArr[0];
	password = dataArr[1];
	} else {
	LOG.error("User role credentials is not set properly for " + username);
	throw new AtlasAuthenticationException("User role credentials is not set properly for " + username );
	}

	List<GrantedAuthority> grantedAuths = new ArrayList<GrantedAuthority>();
	if (StringUtils.hasText(role)) {
	grantedAuths.add(new SimpleGrantedAuthority(role));
	} else {
	LOG.error("User role credentials is not set properly for " + username);
	throw new AtlasAuthenticationException("User role credentials is not set properly for " + username );
	}

	User userDetails = new User(username, password, grantedAuths);

	return userDetails;
	}


	@VisibleForTesting
	public void setUserLogins(Properties userLogins) {
	this.userLogins = userLogins;
	}


	public static String getSha256Hash(String base) throws AtlasAuthenticationException {
	try {
	MessageDigest digest = MessageDigest.getInstance("SHA-256");
	byte[] hash = digest.digest(base.getBytes("UTF-8"));
	StringBuffer hexString = new StringBuffer();

	for (int i = 0; i < hash.length; i++) {
	String hex = Integer.toHexString(0xff & hash[i]);
	if (hex.length() == 1) hexString.append('0');
	hexString.append(hex);
	}
	return hexString.toString();

	} catch (Exception ex) {
	throw new AtlasAuthenticationException("Exception while encoding password.", ex);
	}
	}

	}