Gitiles
Code Review Sign In
korap.ids-mannheim.de / KorAP / Kustvakt / 49cb68819a93e5ffabb1856c33a29fe92267caa1 / . / full / src / main / java / de / ids_mannheim / korap / authentication / BasicAuthentication.java
blob: e272a3424dd0b1743bfe28e77f832f82c91034b1 [file] [log] [blame]
margaretha139d0f72017-11-14 18:56:22 +0100[diff] [blame]1package de.ids_mannheim.korap.authentication;
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]2
margarethaa2ce63d2018-06-28 10:11:43 +0200[diff] [blame]3import java.time.ZoneId;
4import java.time.ZonedDateTime;
margarethad4796662017-11-09 16:11:40 +0100[diff] [blame]5import java.util.Map;
6
margarethad4796662017-11-09 16:11:40 +0100[diff] [blame]7import org.springframework.beans.factory.annotation.Autowired;
8
margaretha56e8e552017-12-05 16:31:21 +0100[diff] [blame]9import de.ids_mannheim.korap.authentication.http.HttpAuthorizationHandler;
10import de.ids_mannheim.korap.authentication.http.TransferEncoding;
margarethad4796662017-11-09 16:11:40 +0100[diff] [blame]11import de.ids_mannheim.korap.config.Attributes;
margaretha6b3ecdd2018-03-01 18:23:56 +0100[diff] [blame]12import de.ids_mannheim.korap.config.FullConfiguration;
Michael Hanl19390652016-01-16 11:01:24 +0100[diff] [blame]13import de.ids_mannheim.korap.config.Scopes;
margaretha0e8f4e72018-04-05 14:11:52 +0200[diff] [blame]14import de.ids_mannheim.korap.constant.TokenType;
margaretha58dbcfb2017-11-15 23:00:23 +0100[diff] [blame]15import de.ids_mannheim.korap.dao.UserDao;
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]16import de.ids_mannheim.korap.exceptions.KustvaktException;
Michael Hanlf1e85e72016-01-21 16:55:45 +0100[diff] [blame]17import de.ids_mannheim.korap.exceptions.StatusCodes;
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]18import de.ids_mannheim.korap.interfaces.AuthenticationIface;
margaretha0e8f4e72018-04-05 14:11:52 +0200[diff] [blame]19import de.ids_mannheim.korap.security.context.TokenContext;
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]20import de.ids_mannheim.korap.user.User;
Michael Hanlcb2d3f92016-06-02 17:34:06 +0200[diff] [blame]21import de.ids_mannheim.korap.utils.StringUtils;
Michael Hanlc0ed00f2016-06-23 14:33:10 +0200[diff] [blame]22import de.ids_mannheim.korap.utils.TimeUtils;
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]23
margarethaa2ce63d2018-06-28 10:11:43 +0200[diff] [blame]24/**
25 * Implementation of encoding and decoding access token is moved to
26 * {@link TransferEncoding}. Moreover, implementation of HTTP
27 * Authentication framework, i.e. creation of authorization header,
28 * is defined in {@link HttpAuthorizationHandler}.
margaretha4de41192017-11-15 11:47:11 +0100[diff] [blame]29 *
margarethaa2ce63d2018-06-28 10:11:43 +0200[diff] [blame]30 * Basic authentication is intended to be used with a database. It is
31 * currently only used for testing using a dummy DAO (@see
32 * {@link UserDao})
margaretha2afb97d2017-12-07 19:18:44 +0100[diff] [blame]33 * without passwords.
margaretha6b3ecdd2018-03-01 18:23:56 +0100[diff] [blame]34 *
35 * <br /><br />
36 * Latest changes:
37 * <ul>
38 * <li>Added userdao check
39 * </li>
40 * </ul>
41 *
margaretha58dbcfb2017-11-15 23:00:23 +0100[diff] [blame]42 *
43 * @author margaretha
margaretha6b3ecdd2018-03-01 18:23:56 +0100[diff] [blame]44 * @date 01/03/2018
margaretha139d0f72017-11-14 18:56:22 +0100[diff] [blame]45 *
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]46 * @author hanl
47 * @date 28/04/2015
48 */
margaretha58dbcfb2017-11-15 23:00:23 +0100[diff] [blame]49public class BasicAuthentication implements AuthenticationIface {
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]50
margarethad4796662017-11-09 16:11:40 +0100[diff] [blame]51 @Autowired
margaretha58dbcfb2017-11-15 23:00:23 +0100[diff] [blame]52 private TransferEncoding transferEncoding;
53 @Autowired
margaretha6b3ecdd2018-03-01 18:23:56 +0100[diff] [blame]54 private FullConfiguration config;
margarethaa2ce63d2018-06-28 10:11:43 +0200[diff] [blame]55 // @Autowired
56 // private EncryptionIface crypto;
margarethad4796662017-11-09 16:11:40 +0100[diff] [blame]57 @Autowired
margaretha58dbcfb2017-11-15 23:00:23 +0100[diff] [blame]58 private UserDao dao;
Michael Hanlc0ed00f2016-06-23 14:33:10 +0200[diff] [blame]59
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]60 @Override
margaretha58dbcfb2017-11-15 23:00:23 +0100[diff] [blame]61 public TokenContext getTokenContext (String authToken)
Michael Hanl19390652016-01-16 11:01:24 +0100[diff] [blame]62 throws KustvaktException {
margaretha58dbcfb2017-11-15 23:00:23 +0100[diff] [blame]63 String[] values = transferEncoding.decodeBase64(authToken);
margaretha6b3ecdd2018-03-01 18:23:56 +0100[diff] [blame]64 User user = dao.getAccount(values[0]);
margarethaa2ce63d2018-06-28 10:11:43 +0200[diff] [blame]65 ZonedDateTime authenticationTime =
66 ZonedDateTime.now(ZoneId.of(Attributes.DEFAULT_TIME_ZONE));
margaretha6b3ecdd2018-03-01 18:23:56 +0100[diff] [blame]67
68 if (user != null) {
Michael Hanl7368aa42016-02-05 18:15:47 +0100[diff] [blame]69 TokenContext c = new TokenContext();
Michael Hanle25dea22015-09-24 19:37:56 +0200[diff] [blame]70 c.setUsername(values[0]);
margarethaa2ce63d2018-06-28 10:11:43 +0200[diff] [blame]71 c.setAuthenticationTime(authenticationTime);
margaretha58dbcfb2017-11-15 23:00:23 +0100[diff] [blame]72 c.setExpirationTime(TimeUtils.plusSeconds(this.config.getTokenTTL())
73 .getMillis());
margaretha2afb97d2017-12-07 19:18:44 +0100[diff] [blame]74 c.setTokenType(getTokenType());
Michael Hanl19390652016-01-16 11:01:24 +0100[diff] [blame]75 // todo: for production mode, set true
76 c.setSecureRequired(false);
margaretha58dbcfb2017-11-15 23:00:23 +0100[diff] [blame]77 // EM: is this secure?
Michael Hanlcb2d3f92016-06-02 17:34:06 +0200[diff] [blame]78 c.setToken(StringUtils.stripTokenType(authToken));
margarethaa2ce63d2018-06-28 10:11:43 +0200[diff] [blame]79 // fixme: you can make queries, but user sensitive data is
80 // off limits?!
Michael Hanl19390652016-01-16 11:01:24 +0100[diff] [blame]81 c.addContextParameter(Attributes.SCOPES,
82 Scopes.Scope.search.toString());
Michael Hanl7368aa42016-02-05 18:15:47 +0100[diff] [blame]83 return c;
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]84 }
Michael Hanl7368aa42016-02-05 18:15:47 +0100[diff] [blame]85 return null;
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]86 }
87
Michael Hanl8abaf9e2016-05-23 16:46:35 +0200[diff] [blame]88
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]89 // not supported!
90 @Override
margaretha58dbcfb2017-11-15 23:00:23 +0100[diff] [blame]91 public TokenContext createTokenContext (User user, Map<String, Object> attr)
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]92 throws KustvaktException {
93 return null;
94 }
95
Michael Hanl8abaf9e2016-05-23 16:46:35 +0200[diff] [blame]96
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]97 @Override
Michael Hanl8abaf9e2016-05-23 16:46:35 +0200[diff] [blame]98 public void removeUserSession (String token) throws KustvaktException {
Michael Hanlf1e85e72016-01-21 16:55:45 +0100[diff] [blame]99 throw new KustvaktException(StatusCodes.NOT_SUPPORTED);
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]100 }
101
Michael Hanl8abaf9e2016-05-23 16:46:35 +0200[diff] [blame]102
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]103 @Override
margaretha58dbcfb2017-11-15 23:00:23 +0100[diff] [blame]104 public TokenContext refresh (TokenContext context)
105 throws KustvaktException {
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]106 return null;
107 }
108
Michael Hanl8abaf9e2016-05-23 16:46:35 +0200[diff] [blame]109
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]110 @Override
margaretha2afb97d2017-12-07 19:18:44 +0100[diff] [blame]111 public TokenType getTokenType () {
112 return TokenType.BASIC;
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]113 }
114}