[archiva.git] /

package org.apache.archiva.web.security;
/*
 * Licensed to the Apache Software Foundation (ASF) under one
 * or more contributor license agreements.  See the NOTICE file
 * distributed with this work for additional information
 * regarding copyright ownership.  The ASF licenses this file
 * to you under the Apache License, Version 2.0 (the
 * "License"); you may not use this file except in compliance
 * with the License.  You may obtain a copy of the License at
 *
 * http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing,
 * software distributed under the License is distributed on an
 * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
 * KIND, either express or implied.  See the License for the
 * specific language governing permissions and limitations
 * under the License.
 */

import org.apache.archiva.admin.model.RepositoryAdminException;
import org.apache.archiva.admin.model.beans.RedbackRuntimeConfiguration;
import org.apache.archiva.admin.model.runtime.RedbackRuntimeConfigurationAdmin;
import org.apache.archiva.redback.authorization.AuthorizationDataSource;
import org.apache.archiva.redback.authorization.AuthorizationException;
import org.apache.archiva.redback.authorization.AuthorizationResult;
import org.apache.archiva.redback.authorization.Authorizer;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.context.ApplicationContext;
import org.springframework.stereotype.Service;

import javax.inject.Inject;
import javax.inject.Named;

/**
 * @author Olivier Lamy
 * @since 1.4-M4
 */
@Service( "authorizer#archiva" )
public class ArchivaAuthorizer
    implements Authorizer
{
    private Logger log = LoggerFactory.getLogger( getClass() );

    @Inject
    private ApplicationContext applicationContext;

    @Inject
    private RedbackRuntimeConfigurationAdmin redbackRuntimeConfigurationAdmin;

    public String getId()
    {
        return "archiva";
    }

    public AuthorizationResult isAuthorized( AuthorizationDataSource source )
        throws AuthorizationException
    {
        log.debug( "isAuthorized source: {}", source );

        try
        {
            RedbackRuntimeConfiguration redbackRuntimeConfiguration =
                redbackRuntimeConfigurationAdmin.getRedbackRuntimeConfiguration();

            AuthorizationException authorizationException = null;

            AuthorizationResult lastResult = null;

            for ( String id : redbackRuntimeConfiguration.getAuthorizerImpls() )
            {
                Authorizer authorizer = getAuthorizer( id );

                AuthorizationResult result = null;
                try
                {
                    result = authorizer.isAuthorized( source );
                    log.debug( "AuthorizationResult {} with id '{}", result, id );
                }
                catch ( AuthorizationException e )
                {
                    log.debug( "AuthorizationException {} with id '{}", e.getMessage(), id );
                    authorizationException = e;
                }

                if ( result.isAuthorized() )
                {
                    return result;
                }

                lastResult = result;
            }
            if ( authorizationException != null )
            {
                throw authorizationException;
            }
            return lastResult;
        }
        catch ( RepositoryAdminException e )
        {
            throw new AuthorizationException( e.getMessage(), e );
        }

    }

    private Authorizer getAuthorizer( String id )
    {
        return applicationContext.getBean( "authorizer#" + id, Authorizer.class );
    }

    public boolean isFinalImplementation()
    {
        return false;
    }

    public String getDescriptionKey()
    {
        return "archiva.redback.authorizer.archiva";
    }
}