| /* |
| * Licensed to the Apache Software Foundation (ASF) under one |
| * or more contributor license agreements. See the NOTICE file |
| * distributed with this work for additional information |
| * regarding copyright ownership. The ASF licenses this file |
| * to you under the Apache License, Version 2.0 (the |
| * "License"); you may not use this file except in compliance |
| * with the License. You may obtain a copy of the License at |
| * |
| * http://www.apache.org/licenses/LICENSE-2.0 |
| * |
| * Unless required by applicable law or agreed to in writing, |
| * software distributed under the License is distributed on an |
| * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY |
| * KIND, either express or implied. See the License for the |
| * specific language governing permissions and limitations |
| * under the License. |
| */ |
| |
| package org.apache.ftpserver.command.impl; |
| |
| import java.io.IOException; |
| import java.net.InetAddress; |
| import java.net.InetSocketAddress; |
| |
| import org.apache.ftpserver.command.AbstractCommand; |
| import org.apache.ftpserver.ftplet.FtpException; |
| import org.apache.ftpserver.ftplet.FtpReply; |
| import org.apache.ftpserver.ftplet.FtpRequest; |
| import org.apache.ftpserver.ftplet.User; |
| import org.apache.ftpserver.impl.FtpIoSession; |
| import org.apache.ftpserver.impl.FtpServerContext; |
| import org.apache.ftpserver.impl.LocalizedFtpReply; |
| import org.apache.ftpserver.impl.ServerFtpStatistics; |
| import org.apache.ftpserver.usermanager.impl.ConcurrentLoginRequest; |
| import org.apache.mina.filter.logging.MdcInjectionFilter; |
| import org.slf4j.Logger; |
| import org.slf4j.LoggerFactory; |
| |
| /** |
| * <strong>Internal class, do not use directly.</strong> |
| * |
| * <code>USER <SP> <username> <CRLF></code><br> |
| * |
| * The argument field is a Telnet string identifying the user. The user |
| * identification is that which is required by the server for access to its file |
| * system. This command will normally be the first command transmitted by the |
| * user after the control connections are made. |
| * |
| * @author <a href="http://mina.apache.org">Apache MINA Project</a> |
| */ |
| public class USER extends AbstractCommand { |
| |
| private final Logger LOG = LoggerFactory.getLogger(USER.class); |
| |
| /** |
| * Execute command. |
| */ |
| public void execute(final FtpIoSession session, |
| final FtpServerContext context, final FtpRequest request) |
| throws IOException, FtpException { |
| |
| boolean success = false; |
| ServerFtpStatistics stat = (ServerFtpStatistics) context |
| .getFtpStatistics(); |
| try { |
| |
| // reset state variables |
| session.resetState(); |
| |
| // argument check |
| String userName = request.getArgument(); |
| if (userName == null) { |
| session |
| .write(LocalizedFtpReply |
| .translate( |
| session, |
| request, |
| context, |
| FtpReply.REPLY_501_SYNTAX_ERROR_IN_PARAMETERS_OR_ARGUMENTS, |
| "USER", null)); |
| return; |
| } |
| |
| // Add to the MDC logging |
| MdcInjectionFilter.setProperty(session, "userName", userName); |
| |
| // already logged-in |
| User user = session.getUser(); |
| if (session.isLoggedIn()) { |
| if (userName.equals(user.getName())) { |
| session.write(LocalizedFtpReply.translate(session, request, |
| context, FtpReply.REPLY_230_USER_LOGGED_IN, "USER", |
| null)); |
| success = true; |
| } else { |
| session.write(LocalizedFtpReply.translate(session, request, |
| context, 530, "USER.invalid", null)); |
| } |
| return; |
| } |
| |
| // anonymous login is not enabled |
| boolean anonymous = userName.equals("anonymous"); |
| if (anonymous |
| && (!context.getConnectionConfig() |
| .isAnonymousLoginEnabled())) { |
| session.write(LocalizedFtpReply.translate(session, request, context, |
| FtpReply.REPLY_530_NOT_LOGGED_IN, "USER.anonymous", |
| null)); |
| return; |
| } |
| |
| // anonymous login limit check |
| int currAnonLogin = stat.getCurrentAnonymousLoginNumber(); |
| int maxAnonLogin = context.getConnectionConfig() |
| .getMaxAnonymousLogins(); |
| if(maxAnonLogin == 0) { |
| LOG.debug("Currently {} anonymous users logged in, unlimited allowed", currAnonLogin); |
| } else { |
| LOG.debug("Currently {} out of {} anonymous users logged in", currAnonLogin, maxAnonLogin); |
| } |
| if (anonymous && (currAnonLogin >= maxAnonLogin)) { |
| LOG.debug("Too many anonymous users logged in, user will be disconnected"); |
| |
| session |
| .write(LocalizedFtpReply |
| .translate( |
| session, |
| request, |
| context, |
| FtpReply.REPLY_421_SERVICE_NOT_AVAILABLE_CLOSING_CONTROL_CONNECTION, |
| "USER.anonymous", null)); |
| return; |
| } |
| |
| // login limit check |
| int currLogin = stat.getCurrentLoginNumber(); |
| int maxLogin = context.getConnectionConfig().getMaxLogins(); |
| |
| if(maxLogin == 0) { |
| LOG.debug("Currently {} users logged in, unlimited allowed", currLogin); |
| } else { |
| LOG.debug("Currently {} out of {} users logged in", currLogin, maxLogin); |
| } |
| |
| if (maxLogin != 0 && currLogin >= maxLogin) { |
| LOG.debug("Too many users logged in, user will be disconnected"); |
| |
| session |
| .write(LocalizedFtpReply |
| .translate( |
| session, |
| request, |
| context, |
| FtpReply.REPLY_421_SERVICE_NOT_AVAILABLE_CLOSING_CONTROL_CONNECTION, |
| "USER.login", null)); |
| return; |
| } |
| |
| User configUser = context.getUserManager().getUserByName(userName); |
| if (configUser != null) { |
| // user login limit check |
| |
| InetAddress address = null; |
| if (session.getRemoteAddress() instanceof InetSocketAddress) { |
| address = ((InetSocketAddress) session.getRemoteAddress()) |
| .getAddress(); |
| } |
| |
| ConcurrentLoginRequest loginRequest = new ConcurrentLoginRequest( |
| stat.getCurrentUserLoginNumber(configUser) + 1, |
| stat.getCurrentUserLoginNumber(configUser, address) + 1); |
| |
| if (configUser.authorize(loginRequest) == null) { |
| LOG.debug("User logged in too many sessions, user will be disconnected"); |
| session |
| .write(LocalizedFtpReply |
| .translate( |
| session, |
| request, |
| context, |
| FtpReply.REPLY_421_SERVICE_NOT_AVAILABLE_CLOSING_CONTROL_CONNECTION, |
| "USER.login", null)); |
| return; |
| } |
| } |
| |
| // finally set the user name |
| success = true; |
| session.setUserArgument(userName); |
| if (anonymous) { |
| session.write(LocalizedFtpReply.translate(session, request, context, |
| FtpReply.REPLY_331_USER_NAME_OKAY_NEED_PASSWORD, |
| "USER.anonymous", userName)); |
| } else { |
| session.write(LocalizedFtpReply.translate(session, request, context, |
| FtpReply.REPLY_331_USER_NAME_OKAY_NEED_PASSWORD, |
| "USER", userName)); |
| } |
| } finally { |
| |
| // if not ok - close connection |
| if (!success) { |
| LOG.debug("User failed to login, session will be closed"); |
| session.close(false).awaitUninterruptibly(10000); |
| } |
| } |
| } |
| } |