| | |
|---|
| | | } |
|---|
| | | |
|---|
| | | /** |
|---|
| | | * Returns true if the username represents an internal account |
|---|
| | | * |
|---|
| | | * @param username |
|---|
| | | * @return true if the specified username represents an internal account |
|---|
| | | */ |
|---|
| | | protected boolean isInternalAccount(String username) { |
|---|
| | | return !StringUtils.isEmpty(username) |
|---|
| | | && (username.equalsIgnoreCase(Constants.FEDERATION_USER) |
|---|
| | | || username.equalsIgnoreCase(UserModel.ANONYMOUS.username)); |
|---|
| | | } |
|---|
| | | |
|---|
| | | /** |
|---|
| | | * Authenticate a user based on a username and password. |
|---|
| | | * |
|---|
| | | * @see IUserService.authenticate(String, char[]) |
|---|
| | |
|---|
| | | if (usernameDecoded.equalsIgnoreCase(Constants.FEDERATION_USER)) { |
|---|
| | | List<String> tokens = getFederationTokens(); |
|---|
| | | if (tokens.contains(pw)) { |
|---|
| | | // the federation user is an administrator |
|---|
| | | UserModel federationUser = new UserModel(Constants.FEDERATION_USER); |
|---|
| | | federationUser.canAdmin = true; |
|---|
| | | return federationUser; |
|---|
| | | return getFederationUser(); |
|---|
| | | } |
|---|
| | | } |
|---|
| | | } |
|---|
| | |
|---|
| | | if (principal != null) { |
|---|
| | | String username = principal.getName(); |
|---|
| | | if (!StringUtils.isEmpty(username)) { |
|---|
| | | boolean internalAccount = isInternalAccount(username); |
|---|
| | | UserModel user = getUserModel(username); |
|---|
| | | if (user != null) { |
|---|
| | | // existing user |
|---|
| | |
|---|
| | | logger.debug(MessageFormat.format("{0} authenticated by servlet container principal from {1}", |
|---|
| | | user.username, httpRequest.getRemoteAddr())); |
|---|
| | | return user; |
|---|
| | | } else if (settings.getBoolean(Keys.realm.container.autoCreateAccounts, true)) { |
|---|
| | | } else if (settings.getBoolean(Keys.realm.container.autoCreateAccounts, false) |
|---|
| | | && !internalAccount) { |
|---|
| | | // auto-create user from an authenticated container principal |
|---|
| | | user = new UserModel(username.toLowerCase()); |
|---|
| | | user.displayName = username; |
|---|
| | |
|---|
| | | logger.debug(MessageFormat.format("{0} authenticated and created by servlet container principal from {1}", |
|---|
| | | user.username, httpRequest.getRemoteAddr())); |
|---|
| | | return user; |
|---|
| | | } else { |
|---|
| | | } else if (!internalAccount) { |
|---|
| | | logger.warn(MessageFormat.format("Failed to find UserModel for {0}, attempted servlet container authentication from {1}", |
|---|
| | | principal.getName(), httpRequest.getRemoteAddr())); |
|---|
| | | } |
|---|
| | |
|---|
| | | } |
|---|
| | | String usernameDecoded = decodeUsername(username); |
|---|
| | | return userService.deleteUser(usernameDecoded); |
|---|
| | | } |
|---|
| | | |
|---|
| | | protected UserModel getFederationUser() { |
|---|
| | | // the federation user is an administrator |
|---|
| | | UserModel federationUser = new UserModel(Constants.FEDERATION_USER); |
|---|
| | | federationUser.canAdmin = true; |
|---|
| | | return federationUser; |
|---|
| | | } |
|---|
| | | |
|---|
| | | /** |
|---|
| | |
|---|
| | | String cloneUrl = sb.toString(); |
|---|
| | | |
|---|
| | | // Retrieve all available repositories |
|---|
| | | UserModel user = new UserModel(Constants.FEDERATION_USER); |
|---|
| | | user.canAdmin = true; |
|---|
| | | UserModel user = getFederationUser(); |
|---|
| | | List<RepositoryModel> list = getRepositoryModels(user); |
|---|
| | | |
|---|
| | | // create the [cloneurl, repositoryModel] map |
|---|
