123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402 |
- package org.apache.archiva.rest.services;
- /*
- * Licensed to the Apache Software Foundation (ASF) under one
- * or more contributor license agreements. See the NOTICE file
- * distributed with this work for additional information
- * regarding copyright ownership. The ASF licenses this file
- * to you under the Apache License, Version 2.0 (the
- * "License"); you may not use this file except in compliance
- * with the License. You may obtain a copy of the License at
- *
- * http://www.apache.org/licenses/LICENSE-2.0
- *
- * Unless required by applicable law or agreed to in writing,
- * software distributed under the License is distributed on an
- * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
- * KIND, either express or implied. See the License for the
- * specific language governing permissions and limitations
- * under the License.
- */
-
- import org.apache.archiva.admin.model.RepositoryAdminException;
- import org.apache.archiva.admin.model.beans.LdapConfiguration;
- import org.apache.archiva.admin.model.beans.RedbackRuntimeConfiguration;
- import org.apache.archiva.admin.model.runtime.RedbackRuntimeConfigurationAdmin;
- import org.apache.archiva.redback.authentication.Authenticator;
- import org.apache.archiva.redback.common.ldap.connection.LdapConnection;
- import org.apache.archiva.redback.common.ldap.connection.LdapConnectionConfiguration;
- import org.apache.archiva.redback.common.ldap.connection.LdapConnectionFactory;
- import org.apache.archiva.redback.common.ldap.connection.LdapException;
- import org.apache.archiva.redback.common.ldap.user.LdapUserMapper;
- import org.apache.archiva.redback.components.cache.Cache;
- import org.apache.archiva.redback.policy.CookieSettings;
- import org.apache.archiva.redback.policy.PasswordRule;
- import org.apache.archiva.redback.rbac.RBACManager;
- import org.apache.archiva.redback.role.RoleManager;
- import org.apache.archiva.redback.users.UserManager;
- import org.apache.archiva.rest.api.model.RBACManagerImplementationInformation;
- import org.apache.archiva.rest.api.model.RedbackImplementationsInformations;
- import org.apache.archiva.rest.api.model.UserManagerImplementationInformation;
- import org.apache.archiva.rest.api.services.ArchivaRestServiceException;
- import org.apache.archiva.rest.api.services.RedbackRuntimeConfigurationService;
- import org.apache.commons.lang.StringUtils;
- import org.springframework.context.ApplicationContext;
- import org.springframework.stereotype.Service;
-
- import javax.inject.Inject;
- import javax.inject.Named;
- import javax.naming.InvalidNameException;
- import java.util.ArrayList;
- import java.util.Collection;
- import java.util.Collections;
- import java.util.List;
- import java.util.Map;
- import java.util.Properties;
-
- /**
- * @author Olivier Lamy
- * @since 1.4-M4
- */
- @Service("redbackRuntimeConfigurationService#rest")
- public class DefaultRedbackRuntimeConfigurationService
- extends AbstractRestService
- implements RedbackRuntimeConfigurationService
- {
-
- @Inject
- private RedbackRuntimeConfigurationAdmin redbackRuntimeConfigurationAdmin;
-
- @Inject
- @Named(value = "userManager#default")
- private UserManager userManager;
-
- @Inject
- @Named(value = "rbacManager#default")
- private RBACManager rbacManager;
-
- @Inject
- private RoleManager roleManager;
-
- @Inject
- private ApplicationContext applicationContext;
-
- @Inject
- @Named(value = "ldapConnectionFactory#configurable")
- private LdapConnectionFactory ldapConnectionFactory;
-
- @Inject
- @Named(value = "cache#users")
- private Cache usersCache;
-
- @Inject
- private LdapUserMapper ldapUserMapper;
-
-
- @Override
- public RedbackRuntimeConfiguration getRedbackRuntimeConfiguration()
- throws ArchivaRestServiceException
- {
- try
- {
- RedbackRuntimeConfiguration redbackRuntimeConfiguration =
- redbackRuntimeConfigurationAdmin.getRedbackRuntimeConfiguration();
-
- log.debug( "getRedbackRuntimeConfiguration -> {}", redbackRuntimeConfiguration );
-
- return redbackRuntimeConfiguration;
- }
- catch ( RepositoryAdminException e )
- {
- throw new ArchivaRestServiceException( e.getMessage(), e );
- }
- }
-
- @Override
- public Boolean updateRedbackRuntimeConfiguration( RedbackRuntimeConfiguration redbackRuntimeConfiguration )
- throws ArchivaRestServiceException
- {
- try
- {
- // has user manager impl changed ?
- boolean userManagerChanged = redbackRuntimeConfiguration.getUserManagerImpls().size()
- != redbackRuntimeConfigurationAdmin.getRedbackRuntimeConfiguration().getUserManagerImpls().size();
-
- userManagerChanged =
- userManagerChanged || ( redbackRuntimeConfiguration.getUserManagerImpls().toString().hashCode()
- != redbackRuntimeConfigurationAdmin.getRedbackRuntimeConfiguration().getUserManagerImpls().toString().hashCode() );
-
- boolean rbacManagerChanged = redbackRuntimeConfiguration.getRbacManagerImpls().size()
- != redbackRuntimeConfigurationAdmin.getRedbackRuntimeConfiguration().getRbacManagerImpls().size();
-
- rbacManagerChanged =
- rbacManagerChanged || ( redbackRuntimeConfiguration.getRbacManagerImpls().toString().hashCode()
- != redbackRuntimeConfigurationAdmin.getRedbackRuntimeConfiguration().getRbacManagerImpls().toString().hashCode() );
-
- boolean ldapConfigured = false;
- for (String um : redbackRuntimeConfiguration.getUserManagerImpls()) {
- if (um.contains("ldap")) {
- ldapConfigured=true;
- }
- }
- if (!ldapConfigured) {
- for (String rbm : redbackRuntimeConfiguration.getRbacManagerImpls()) {
- if (rbm.contains("ldap")) {
- ldapConfigured = true;
- }
- }
- }
-
- redbackRuntimeConfigurationAdmin.updateRedbackRuntimeConfiguration( redbackRuntimeConfiguration );
-
- if ( userManagerChanged )
- {
- log.info( "user managerImpls changed to {} so reload it",
- redbackRuntimeConfiguration.getUserManagerImpls() );
- userManager.initialize();
- }
-
- if ( rbacManagerChanged )
- {
- log.info( "rbac manager changed to {} so reload it",
- redbackRuntimeConfiguration.getRbacManagerImpls() );
- rbacManager.initialize();
- roleManager.initialize();
- }
-
- if (ldapConfigured) {
- try {
- ldapConnectionFactory.initialize();
- } catch (Exception e) {
- ArchivaRestServiceException newEx = new ArchivaRestServiceException(e.getMessage(), e);
- newEx.setErrorKey("error.ldap.connectionFactory.init.failed");
- throw newEx;
- }
- }
- Collection<PasswordRule> passwordRules = applicationContext.getBeansOfType( PasswordRule.class ).values();
-
- for ( PasswordRule passwordRule : passwordRules )
- {
- passwordRule.initialize();
- }
-
- Collection<CookieSettings> cookieSettingsList =
- applicationContext.getBeansOfType( CookieSettings.class ).values();
-
- for ( CookieSettings cookieSettings : cookieSettingsList )
- {
- cookieSettings.initialize();
- }
-
- Collection<Authenticator> authenticators =
- applicationContext.getBeansOfType( Authenticator.class ).values();
-
- for ( Authenticator authenticator : authenticators )
- {
- try {
- log.debug("Initializing authenticatior "+authenticator.getId());
- authenticator.initialize();
- } catch (Exception e) {
- log.error("Initialization of authenticator failed "+authenticator.getId(),e);
- }
- }
-
- // users cache
- usersCache.setTimeToIdleSeconds(
- redbackRuntimeConfiguration.getUsersCacheConfiguration().getTimeToIdleSeconds() );
- usersCache.setTimeToLiveSeconds(
- redbackRuntimeConfiguration.getUsersCacheConfiguration().getTimeToLiveSeconds() );
- usersCache.setMaxElementsInMemory(
- redbackRuntimeConfiguration.getUsersCacheConfiguration().getMaxElementsInMemory() );
- usersCache.setMaxElementsOnDisk(
- redbackRuntimeConfiguration.getUsersCacheConfiguration().getMaxElementsOnDisk() );
-
- if (ldapConfigured) {
- try {
- ldapUserMapper.initialize();
- } catch (Exception e) {
- ArchivaRestServiceException newEx = new ArchivaRestServiceException(e.getMessage(), e);
- newEx.setErrorKey("error.ldap.userMapper.init.failed");
- throw newEx;
- }
- }
-
-
-
-
- return Boolean.TRUE;
- }
- catch (ArchivaRestServiceException e) {
- log.error(e.getMessage(), e);
- throw e;
- } catch ( Exception e )
- {
- log.error( e.getMessage(), e );
- throw new ArchivaRestServiceException(e.getMessage(), e);
- }
- }
-
- @Override
- public List<UserManagerImplementationInformation> getUserManagerImplementationInformations()
- throws ArchivaRestServiceException
- {
-
- Map<String, UserManager> beans = applicationContext.getBeansOfType( UserManager.class );
-
- if ( beans.isEmpty() )
- {
- return Collections.emptyList();
- }
-
- List<UserManagerImplementationInformation> informations = new ArrayList<>( beans.size() );
-
- for ( Map.Entry<String, UserManager> entry : beans.entrySet() )
- {
- UserManager userManager = applicationContext.getBean( entry.getKey(), UserManager.class );
- if ( userManager.isFinalImplementation() )
- {
- UserManagerImplementationInformation information = new UserManagerImplementationInformation();
- information.setBeanId( StringUtils.substringAfter( entry.getKey(), "#" ) );
- information.setDescriptionKey( userManager.getDescriptionKey() );
- information.setReadOnly( userManager.isReadOnly() );
- informations.add( information );
- }
- }
-
- return informations;
- }
-
- @Override
- public List<RBACManagerImplementationInformation> getRbacManagerImplementationInformations()
- throws ArchivaRestServiceException
- {
- Map<String, RBACManager> beans = applicationContext.getBeansOfType( RBACManager.class );
-
- if ( beans.isEmpty() )
- {
- return Collections.emptyList();
- }
-
- List<RBACManagerImplementationInformation> informations = new ArrayList<>( beans.size() );
-
- for ( Map.Entry<String, RBACManager> entry : beans.entrySet() )
- {
- RBACManager rbacManager = applicationContext.getBean( entry.getKey(), RBACManager.class );
- if ( rbacManager.isFinalImplementation() )
- {
- RBACManagerImplementationInformation information = new RBACManagerImplementationInformation();
- information.setBeanId( StringUtils.substringAfter( entry.getKey(), "#" ) );
- information.setDescriptionKey( rbacManager.getDescriptionKey() );
- information.setReadOnly( rbacManager.isReadOnly() );
- informations.add( information );
- }
- }
-
- return informations;
- }
-
- @Override
- public RedbackImplementationsInformations getRedbackImplementationsInformations()
- throws ArchivaRestServiceException
- {
- return new RedbackImplementationsInformations( getUserManagerImplementationInformations(),
- getRbacManagerImplementationInformations() );
- }
-
- @Override
- public Boolean checkLdapConnection()
- throws ArchivaRestServiceException
- {
- LdapConnection ldapConnection = null;
- try
- {
- ldapConnection = ldapConnectionFactory.getConnection();
- }
- catch ( LdapException e )
- {
- log.warn( "fail to get ldapConnection: {}", e.getMessage(), e );
- throw new ArchivaRestServiceException( e.getMessage(), e );
- }
- finally
- {
-
- if ( ldapConnection != null )
- {
- ldapConnection.close();
- }
- }
-
- return Boolean.TRUE;
- }
-
- @Override
- public Boolean checkLdapConnection( LdapConfiguration ldapConfiguration )
- throws ArchivaRestServiceException
- {
- LdapConnection ldapConnection = null;
- try
- {
- LdapConnectionConfiguration ldapConnectionConfiguration =
- new LdapConnectionConfiguration( ldapConfiguration.getHostName(), ldapConfiguration.getPort(),
- ldapConfiguration.getBaseDn(), ldapConfiguration.getContextFactory(),
- ldapConfiguration.getBindDn(), ldapConfiguration.getPassword(),
- ldapConfiguration.getAuthenticationMethod(),
- toProperties( ldapConfiguration.getExtraProperties() ) );
- ldapConnectionConfiguration.setSsl( ldapConfiguration.isSsl() );
-
- ldapConnection = ldapConnectionFactory.getConnection( ldapConnectionConfiguration );
-
- ldapConnection.close();
-
- // verify groups dn value too
-
- ldapConnectionConfiguration =
- new LdapConnectionConfiguration( ldapConfiguration.getHostName(), ldapConfiguration.getPort(),
- ldapConfiguration.getBaseGroupsDn(),
- ldapConfiguration.getContextFactory(), ldapConfiguration.getBindDn(),
- ldapConfiguration.getPassword(),
- ldapConfiguration.getAuthenticationMethod(),
- toProperties( ldapConfiguration.getExtraProperties() ) );
-
- ldapConnectionConfiguration.setSsl( ldapConfiguration.isSsl() );
-
- ldapConnection = ldapConnectionFactory.getConnection( ldapConnectionConfiguration );
- }
- catch ( InvalidNameException e )
- {
- log.warn( "fail to get ldapConnection: {}", e.getMessage(), e );
- throw new ArchivaRestServiceException( e.getMessage(), e );
- }
- catch ( LdapException e )
- {
- log.warn( "fail to get ldapConnection: {}", e.getMessage(), e );
- throw new ArchivaRestServiceException( e.getMessage(), e );
- }
- finally
- {
-
- if ( ldapConnection != null )
- {
- ldapConnection.close();
- }
- }
-
- return Boolean.TRUE;
- }
-
- private Properties toProperties( Map<String, String> map )
- {
- Properties properties = new Properties();
- if ( map == null || map.isEmpty() )
- {
- return properties;
- }
- for ( Map.Entry<String, String> entry : map.entrySet() )
- {
- properties.put( entry.getKey(), entry.getValue() );
- }
- return properties;
- }
-
- }
-
|