mirrors
/
gitblit
mirror of https://github.com/gitblit/gitblit.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 43 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1549 Commits
11 Branches
Tree: f8f6aa4d07
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f8f6aa4d07'
${ noResults }
gitblit/src/main/java/com/gitblit/GitblitUserService.java

GitblitUserService.java 8.9KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325 
  1. /*

  2.  * Copyright 2011 gitblit.com.

  3.  *

  4.  * Licensed under the Apache License, Version 2.0 (the "License");

  5.  * you may not use this file except in compliance with the License.

  6.  * You may obtain a copy of the License at

  7.  *

  8.  *     http://www.apache.org/licenses/LICENSE-2.0

  9.  *

  10.  * Unless required by applicable law or agreed to in writing, software

  11.  * distributed under the License is distributed on an "AS IS" BASIS,

  12.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  13.  * See the License for the specific language governing permissions and

  14.  * limitations under the License.

  15.  */

  16. package com.gitblit;

  17. 

  18. import java.io.File;

  19. import java.io.IOException;

  20. import java.text.MessageFormat;

  21. import java.util.Collection;

  22. import java.util.List;

  23. 

  24. import org.slf4j.Logger;

  25. import org.slf4j.LoggerFactory;

  26. 

  27. import com.gitblit.Constants.AccountType;

  28. import com.gitblit.manager.IRuntimeManager;

  29. import com.gitblit.models.TeamModel;

  30. import com.gitblit.models.UserModel;

  31. import com.gitblit.utils.DeepCopier;

  32. import com.gitblit.utils.StringUtils;

  33. 

  34. /**

  35.  * This class wraps the default user service and is recommended as the starting

  36.  * point for custom user service implementations.

  37.  *

  38.  * This does seem a little convoluted, but the idea is to allow IUserService to

  39.  * evolve with new methods and implementations without breaking custom

  40.  * authentication implementations.

  41.  *

  42.  * The most common implementation of a custom IUserService is to only override

  43.  * authentication and then delegate all other functionality to one of Gitblit's

  44.  * user services. This class optimizes that use-case.

  45.  *

  46.  * Extending GitblitUserService allows for authentication customization without

  47.  * having to keep-up-with IUSerService API changes.

  48.  *

  49.  * @author James Moger

  50.  *

  51.  */

  52. public class GitblitUserService implements IUserService {

  53. 

  54. 	protected IUserService serviceImpl;

  55. 

  56. 	private final Logger logger = LoggerFactory.getLogger(GitblitUserService.class);

  57. 

  58. 	public GitblitUserService() {

  59. 	}

  60. 

  61. 	@Override

  62. 	public void setup(IRuntimeManager runtimeManager) {

  63. 		File realmFile = runtimeManager.getFileOrFolder(Keys.realm.userService, "${baseFolder}/users.conf");

  64. 		serviceImpl = createUserService(realmFile);

  65. 		logger.info("GUS delegating to " + serviceImpl.toString());

  66. 	}

  67. 

  68. 	protected IUserService createUserService(File realmFile) {

  69. 		IUserService service = null;

  70. 		if (realmFile.getName().toLowerCase().endsWith(".conf")) {

  71. 			// v0.8.0+ config-based realm file

  72. 			service = new ConfigUserService(realmFile);

  73. 		}

  74. 

  75. 		assert service != null;

  76. 

  77. 		if (!realmFile.exists()) {

  78. 			// Create the Administrator account for a new realm file

  79. 			try {

  80. 				realmFile.createNewFile();

  81. 			} catch (IOException x) {

  82. 				logger.error(MessageFormat.format("COULD NOT CREATE REALM FILE {0}!", realmFile), x);

  83. 			}

  84. 			UserModel admin = new UserModel("admin");

  85. 			admin.password = "admin";

  86. 			admin.canAdmin = true;

  87. 			admin.excludeFromFederation = true;

  88. 			service.updateUserModel(admin);

  89. 		}

  90. 

  91. 		return service;

  92. 	}

  93. 

  94. 	@Override

  95. 	public String toString() {

  96. 		return getClass().getSimpleName();

  97. 	}

  98. 

  99. 	@Override

  100. 	public boolean supportsCredentialChanges() {

  101. 		return serviceImpl.supportsCredentialChanges();

  102. 	}

  103. 

  104. 	@Override

  105. 	public boolean supportsDisplayNameChanges() {

  106. 		return serviceImpl.supportsDisplayNameChanges();

  107. 	}

  108. 

  109. 	@Override

  110. 	public boolean supportsEmailAddressChanges() {

  111. 		return serviceImpl.supportsEmailAddressChanges();

  112. 	}

  113. 

  114. 	@Override

  115. 	public boolean supportsTeamMembershipChanges() {

  116. 		return serviceImpl.supportsTeamMembershipChanges();

  117. 	}

  118. 

  119. 	@Override

  120. 	public boolean supportsCookies() {

  121. 		return serviceImpl.supportsCookies();

  122. 	}

  123. 

  124. 	@Override

  125. 	public String getCookie(UserModel model) {

  126. 		return serviceImpl.getCookie(model);

  127. 	}

  128. 

  129. 	/**

  130. 	 * Authenticate a user based on their cookie.

  131. 	 *

  132. 	 * @param cookie

  133. 	 * @return a user object or null

  134. 	 */

  135. 	@Override

  136. 	public UserModel authenticate(char[] cookie) {

  137. 		UserModel user = serviceImpl.authenticate(cookie);

  138. 		setAccountType(user);

  139. 		return user;

  140. 	}

  141. 

  142. 	@Override

  143. 	public UserModel authenticate(String username, char[] password) {

  144. 		UserModel user = serviceImpl.authenticate(username, password);

  145. 		setAccountType(user);

  146. 		return user;

  147. 	}

  148. 

  149. 	@Override

  150. 	public void logout(UserModel user) {

  151. 		serviceImpl.logout(user);

  152. 	}

  153. 

  154. 	@Override

  155. 	public UserModel getUserModel(String username) {

  156. 		UserModel user = serviceImpl.getUserModel(username);

  157. 		setAccountType(user);

  158. 		return user;

  159. 	}

  160. 

  161. 	@Override

  162. 	public boolean updateUserModel(UserModel model) {

  163. 		return serviceImpl.updateUserModel(model);

  164. 	}

  165. 

  166. 	@Override

  167. 	public boolean updateUserModels(Collection<UserModel> models) {

  168. 		return serviceImpl.updateUserModels(models);

  169. 	}

  170. 

  171. 	@Override

  172. 	public boolean updateUserModel(String username, UserModel model) {

  173. 		if (model.isLocalAccount() || supportsCredentialChanges()) {

  174. 			if (!model.isLocalAccount() && !supportsTeamMembershipChanges()) {

  175. 				//  teams are externally controlled - copy from original model

  176. 				UserModel existingModel = getUserModel(username);

  177. 

  178. 				model = DeepCopier.copy(model);

  179. 				model.teams.clear();

  180. 				model.teams.addAll(existingModel.teams);

  181. 			}

  182. 			return serviceImpl.updateUserModel(username, model);

  183. 		}

  184. 		if (model.username.equals(username)) {

  185. 			// passwords are not persisted by the backing user service

  186. 			model.password = null;

  187. 			if (!model.isLocalAccount() && !supportsTeamMembershipChanges()) {

  188. 				//  teams are externally controlled- copy from original model

  189. 				UserModel existingModel = getUserModel(username);

  190. 

  191. 				model = DeepCopier.copy(model);

  192. 				model.teams.clear();

  193. 				model.teams.addAll(existingModel.teams);

  194. 			}

  195. 			return serviceImpl.updateUserModel(username, model);

  196. 		}

  197. 		logger.error("Users can not be renamed!");

  198. 		return false;

  199. 	}

  200. 	@Override

  201. 	public boolean deleteUserModel(UserModel model) {

  202. 		return serviceImpl.deleteUserModel(model);

  203. 	}

  204. 

  205. 	@Override

  206. 	public boolean deleteUser(String username) {

  207. 		return serviceImpl.deleteUser(username);

  208. 	}

  209. 

  210. 	@Override

  211. 	public List<String> getAllUsernames() {

  212. 		return serviceImpl.getAllUsernames();

  213. 	}

  214. 

  215. 	@Override

  216. 	public List<UserModel> getAllUsers() {

  217. 		List<UserModel> users = serviceImpl.getAllUsers();

  218.     	for (UserModel user : users) {

  219.     		setAccountType(user);

  220.     	}

  221. 		return users;

  222. 	}

  223. 

  224. 	@Override

  225. 	public List<String> getAllTeamNames() {

  226. 		return serviceImpl.getAllTeamNames();

  227. 	}

  228. 

  229. 	@Override

  230. 	public List<TeamModel> getAllTeams() {

  231. 		return serviceImpl.getAllTeams();

  232. 	}

  233. 

  234. 	@Override

  235. 	public List<String> getTeamNamesForRepositoryRole(String role) {

  236. 		return serviceImpl.getTeamNamesForRepositoryRole(role);

  237. 	}

  238. 

  239. 	@Override

  240. 	@Deprecated

  241. 	public boolean setTeamnamesForRepositoryRole(String role, List<String> teamnames) {

  242. 		return serviceImpl.setTeamnamesForRepositoryRole(role, teamnames);

  243. 	}

  244. 

  245. 	@Override

  246. 	public TeamModel getTeamModel(String teamname) {

  247. 		return serviceImpl.getTeamModel(teamname);

  248. 	}

  249. 

  250. 	@Override

  251. 	public boolean updateTeamModel(TeamModel model) {

  252. 		return serviceImpl.updateTeamModel(model);

  253. 	}

  254. 

  255. 	@Override

  256. 	public boolean updateTeamModels(Collection<TeamModel> models) {

  257. 		return serviceImpl.updateTeamModels(models);

  258. 	}

  259. 

  260. 	@Override

  261. 	public boolean updateTeamModel(String teamname, TeamModel model) {

  262. 		if (!supportsTeamMembershipChanges()) {

  263. 			// teams are externally controlled - copy from original model

  264. 			TeamModel existingModel = getTeamModel(teamname);

  265. 

  266. 			model = DeepCopier.copy(model);

  267. 			model.users.clear();

  268. 			model.users.addAll(existingModel.users);

  269. 		}

  270. 		return serviceImpl.updateTeamModel(teamname, model);

  271. 	}

  272. 

  273. 	@Override

  274. 	public boolean deleteTeamModel(TeamModel model) {

  275. 		return serviceImpl.deleteTeamModel(model);

  276. 	}

  277. 

  278. 	@Override

  279. 	public boolean deleteTeam(String teamname) {

  280. 		return serviceImpl.deleteTeam(teamname);

  281. 	}

  282. 

  283. 	@Override

  284. 	public List<String> getUsernamesForRepositoryRole(String role) {

  285. 		return serviceImpl.getUsernamesForRepositoryRole(role);

  286. 	}

  287. 

  288. 	@Override

  289. 	@Deprecated

  290. 	public boolean setUsernamesForRepositoryRole(String role, List<String> usernames) {

  291. 		return serviceImpl.setUsernamesForRepositoryRole(role, usernames);

  292. 	}

  293. 

  294. 	@Override

  295. 	public boolean renameRepositoryRole(String oldRole, String newRole) {

  296. 		return serviceImpl.renameRepositoryRole(oldRole, newRole);

  297. 	}

  298. 

  299. 	@Override

  300. 	public boolean deleteRepositoryRole(String role) {

  301. 		return serviceImpl.deleteRepositoryRole(role);

  302. 	}

  303. 

  304. 	protected boolean isLocalAccount(String username) {

  305. 		UserModel user = getUserModel(username);

  306. 		return user != null && user.isLocalAccount();

  307. 	}

  308. 

  309. 	protected void setAccountType(UserModel user) {

  310. 		if (user != null) {

  311. 			if (!StringUtils.isEmpty(user.password)

  312. 					&& !Constants.EXTERNAL_ACCOUNT.equalsIgnoreCase(user.password)

  313. 					&& !"StoredInLDAP".equalsIgnoreCase(user.password)) {

  314. 				user.accountType = AccountType.LOCAL;

  315. 			} else {

  316. 				user.accountType = getAccountType();

  317. 			}

  318. 		}

  319. 	}

  320. 

  321. 	@Override

  322. 	public AccountType getAccountType() {

  323. 		return AccountType.LOCAL;

  324. 	}

  325. }