123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113 |
- package org.apache.maven.archiva.webdav;
-
- /*
- * Licensed to the Apache Software Foundation (ASF) under one
- * or more contributor license agreements. See the NOTICE file
- * distributed with this work for additional information
- * regarding copyright ownership. The ASF licenses this file
- * to you under the Apache License, Version 2.0 (the
- * "License"); you may not use this file except in compliance
- * with the License. You may obtain a copy of the License at
- *
- * http://www.apache.org/licenses/LICENSE-2.0
- *
- * Unless required by applicable law or agreed to in writing,
- * software distributed under the License is distributed on an
- * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
- * KIND, either express or implied. See the License for the
- * specific language governing permissions and limitations
- * under the License.
- */
-
- import org.apache.jackrabbit.webdav.DavException;
- import org.apache.jackrabbit.webdav.DavServletRequest;
- import org.apache.jackrabbit.webdav.DavSessionProvider;
- import org.apache.jackrabbit.webdav.WebdavRequest;
- import org.apache.maven.archiva.security.ServletAuthenticator;
- import org.apache.maven.archiva.webdav.util.RepositoryPathUtil;
- import org.apache.maven.archiva.webdav.util.WebdavMethodUtil;
- import org.codehaus.plexus.redback.authentication.AuthenticationException;
- import org.codehaus.plexus.redback.authentication.AuthenticationResult;
- import org.codehaus.plexus.redback.authorization.UnauthorizedException;
- import org.codehaus.plexus.redback.policy.AccountLockedException;
- import org.codehaus.plexus.redback.policy.MustChangePasswordException;
- import org.codehaus.plexus.redback.users.UserManager;
- import org.codehaus.redback.integration.filter.authentication.HttpAuthenticator;
-
- /**
- */
- public class ArchivaDavSessionProvider
- implements DavSessionProvider
- {
- private ServletAuthenticator servletAuth;
-
- private HttpAuthenticator httpAuth;
-
- public ArchivaDavSessionProvider( ServletAuthenticator servletAuth, HttpAuthenticator httpAuth )
- {
- this.servletAuth = servletAuth;
- this.httpAuth = httpAuth;
- }
-
- public boolean attachSession( WebdavRequest request )
- throws DavException
- {
- final String repositoryId = RepositoryPathUtil.getRepositoryName( removeContextPath( request ) );
-
- try
- {
- AuthenticationResult result = httpAuth.getAuthenticationResult( request, null );
-
- //Create a dav session
- request.setDavSession(new ArchivaDavSession());
-
- return servletAuth.isAuthenticated( request, result );
- }
- catch ( AuthenticationException e )
- {
- // safety check for MRM-911
- String guest = UserManager.GUEST_USERNAME;
- try
- {
- if ( servletAuth.isAuthorized( guest,
- ( (ArchivaDavResourceLocator) request.getRequestLocator() ).getRepositoryId(),
- WebdavMethodUtil.getMethodPermission( request.getMethod() ) ) )
- {
- request.setDavSession( new ArchivaDavSession() );
- return true;
- }
- }
- catch ( UnauthorizedException ae )
- {
- throw new UnauthorizedDavException( repositoryId,
- "You are not authenticated and authorized to access any repository." );
- }
-
- throw new UnauthorizedDavException( repositoryId, "You are not authenticated." );
- }
- catch ( MustChangePasswordException e )
- {
- throw new UnauthorizedDavException( repositoryId, "You must change your password." );
- }
- catch ( AccountLockedException e )
- {
- throw new UnauthorizedDavException( repositoryId, "User account is locked." );
- }
- }
-
- public void releaseSession( WebdavRequest request )
- {
- request.setDavSession(null);
- }
-
- private String removeContextPath( final DavServletRequest request )
- {
- String path = request.getRequestURI();
- String ctx = request.getContextPath();
- if ( path.startsWith( ctx ) )
- {
- path = path.substring( ctx.length() );
- }
- return path;
- }
- }
|