githubFork/gitblit.git - Solinfo Gitblit

parent: 2b67ec0e | patch | commit | show whitespace

Persist cookies in ConfigUserService. Update LDAPUserService to generate c...

James Moger

2012-07-11 62aeb92c04024a90d9ed392bb79de03a246a45d8

Persist cookies in ConfigUserService.  Update LDAPUserService to generate cookies.

7 files modified

	src/com/gitblit/ConfigUserService.java	21 ●●●●● patch \| view \| raw \| blame \| history
	src/com/gitblit/FileUserService.java	7 ●●●●● patch \| view \| raw \| blame \| history
	src/com/gitblit/GitBlit.java	10 ●●●●● patch \| view \| raw \| blame \| history
	src/com/gitblit/GitblitUserService.java	2 ●●●●● patch \| view \| raw \| blame \| history
	src/com/gitblit/IUserService.java	2 ●●●●● patch \| view \| raw \| blame \| history
	src/com/gitblit/LdapUserService.java	17 ●●●●● patch \| view \| raw \| blame \| history
	src/com/gitblit/utils/ArrayUtils.java	4 ●●●●● patch \| view \| raw \| blame \| history

 src/com/gitblit/ConfigUserService.java

@@ -65,6 +65,8 @@
    

    private static final String EMAILADDRESS = "emailAddress";



    private static final String COOKIE = "cookie";



    private static final String REPOSITORY = "repository";



    private static final String ROLE = "role";

@@ -163,11 +165,13 @@
     * @return cookie value

     */

    @Override

    public char[] getCookie(UserModel model) {

    public String getCookie(UserModel model) {

        if (!StringUtils.isEmpty(model.cookie)) {

            return model.cookie;

        }

        read();

        UserModel storedModel = users.get(model.username.toLowerCase());

        String cookie = StringUtils.getSHA1(model.username + storedModel.password);

        return cookie.toCharArray();

        return storedModel.cookie;

    }



    /**

@@ -715,6 +719,9 @@
            if (!StringUtils.isEmpty(model.password)) {

                config.setString(USER, model.username, PASSWORD, model.password);

            }

            if (!StringUtils.isEmpty(model.cookie)) {

                config.setString(USER, model.username, COOKIE, model.cookie);

            }

            if (!StringUtils.isEmpty(model.displayName)) {

                config.setString(USER, model.username, DISPLAYNAME, model.displayName);

            }

@@ -820,6 +827,10 @@
                    user.password = config.getString(USER, username, PASSWORD);                    

                    user.displayName = config.getString(USER, username, DISPLAYNAME);

                    user.emailAddress = config.getString(USER, username, EMAILADDRESS);

                    user.cookie = config.getString(USER, username, COOKIE);

                    if (StringUtils.isEmpty(user.cookie) && !StringUtils.isEmpty(user.password)) {

                        user.cookie = StringUtils.getSHA1(user.username + user.password);

                    }



                    // user roles

                    Set<String> roles = new HashSet<String>(Arrays.asList(config.getStringList(

@@ -836,7 +847,9 @@


                    // update cache

                    users.put(user.username, user);

                    cookies.put(StringUtils.getSHA1(user.username + user.password), user);

                    if (!StringUtils.isEmpty(user.cookie)) {

                        cookies.put(user.cookie, user);

                    }

                }



                // load the teams


 src/com/gitblit/FileUserService.java

@@ -133,13 +133,16 @@
     * @return cookie value

     */

    @Override

    public char[] getCookie(UserModel model) {

    public String getCookie(UserModel model) {

        if (!StringUtils.isEmpty(model.cookie)) {

            return model.cookie;

        }

        Properties allUsers = super.read();

        String value = allUsers.getProperty(model.username);

        String[] roles = value.split(",");

        String password = roles[0];

        String cookie = StringUtils.getSHA1(model.username + password);

        return cookie.toCharArray();

        return cookie;

    }



    /**


 src/com/gitblit/GitBlit.java

@@ -512,10 +512,16 @@
                userCookie = new Cookie(Constants.NAME, "");

            } else {

                // set cookie for login

                char[] cookie = userService.getCookie(user);

                userCookie = new Cookie(Constants.NAME, new String(cookie));

                String cookie = userService.getCookie(user);

                if (StringUtils.isEmpty(cookie)) {

                    // create empty cookie

                    userCookie = new Cookie(Constants.NAME, "");

                } else {

                    // create real cookie

                    userCookie = new Cookie(Constants.NAME, cookie);

                userCookie.setMaxAge(Integer.MAX_VALUE);

            }

            }

            userCookie.setPath("/");

            response.addCookie(userCookie);

        }


 src/com/gitblit/GitblitUserService.java

@@ -138,7 +138,7 @@
    }



    @Override

    public char[] getCookie(UserModel model) {

    public String getCookie(UserModel model) {

        return serviceImpl.getCookie(model);

    }




 src/com/gitblit/IUserService.java

@@ -84,7 +84,7 @@
     * @param model

     * @return cookie value

     */

    char[] getCookie(UserModel model);

    String getCookie(UserModel model);



    /**

     * Authenticate a user based on their cookie.


 src/com/gitblit/LdapUserService.java

@@ -27,6 +27,7 @@


import com.gitblit.models.TeamModel;

import com.gitblit.models.UserModel;

import com.gitblit.utils.ArrayUtils;

import com.gitblit.utils.StringUtils;

import com.unboundid.ldap.sdk.Attribute;

import com.unboundid.ldap.sdk.LDAPConnection;

@@ -140,17 +141,6 @@
        return !settings.getBoolean(Keys.realm.ldap.maintainTeams, false);

    }



    /**

     * Does the user service support cookie authentication?

     * 
     * @return true or false

     */

    @Override

    public boolean supportsCookies() {

        // TODO cookies need to be reviewed

        return false;

    }



    @Override

    public UserModel authenticate(String username, char[] password) {

        String simpleUsername = getSimpleUsername(username);

@@ -174,7 +164,10 @@
                    if (user == null)    // create user object for new authenticated user

                        user = new UserModel(simpleUsername);

                    

					
                    // create a user cookie

                    if (StringUtils.isEmpty(user.cookie) && !ArrayUtils.isEmpty(password)) {

                        user.cookie = StringUtils.getSHA1(user.username + new String(password));

                    }

                    

                    if (!supportsTeamMembershipChanges())

                        getTeamsFromLdap(ldapConnection, simpleUsername, loggingInUser, user);


 src/com/gitblit/utils/ArrayUtils.java

@@ -30,6 +30,10 @@
        return array == null || array.length == 0;

    }

    

    public static boolean isEmpty(char [] array) {

        return array == null || array.length == 0;

    }



    public static boolean isEmpty(Object [] array) {

        return array == null || array.length == 0;

    }

			@@ -65,6 +65,8 @@

			private static final String EMAILADDRESS = "emailAddress";

			private static final String COOKIE = "cookie";

			private static final String REPOSITORY = "repository";

			private static final String ROLE = "role";
			@@ -163,11 +165,13 @@
			* @return cookie value
			*/
			@Override
			public char[] getCookie(UserModel model) {
			public String getCookie(UserModel model) {
			if (!StringUtils.isEmpty(model.cookie)) {
			return model.cookie;
			}
			read();
			UserModel storedModel = users.get(model.username.toLowerCase());
			String cookie = StringUtils.getSHA1(model.username + storedModel.password);
			return cookie.toCharArray();
			return storedModel.cookie;
			}

			/**
			@@ -715,6 +719,9 @@
			if (!StringUtils.isEmpty(model.password)) {
			config.setString(USER, model.username, PASSWORD, model.password);
			}
			if (!StringUtils.isEmpty(model.cookie)) {
			config.setString(USER, model.username, COOKIE, model.cookie);
			}
			if (!StringUtils.isEmpty(model.displayName)) {
			config.setString(USER, model.username, DISPLAYNAME, model.displayName);
			}
			@@ -820,6 +827,10 @@
			user.password = config.getString(USER, username, PASSWORD);
			user.displayName = config.getString(USER, username, DISPLAYNAME);
			user.emailAddress = config.getString(USER, username, EMAILADDRESS);
			user.cookie = config.getString(USER, username, COOKIE);
			if (StringUtils.isEmpty(user.cookie) && !StringUtils.isEmpty(user.password)) {
			user.cookie = StringUtils.getSHA1(user.username + user.password);
			}

			// user roles
			Set<String> roles = new HashSet<String>(Arrays.asList(config.getStringList(
			@@ -836,7 +847,9 @@

			// update cache
			users.put(user.username, user);
			cookies.put(StringUtils.getSHA1(user.username + user.password), user);
			if (!StringUtils.isEmpty(user.cookie)) {
			cookies.put(user.cookie, user);
			}
			}

			// load the teams

			@@ -133,13 +133,16 @@
			* @return cookie value
			*/
			@Override
			public char[] getCookie(UserModel model) {
			public String getCookie(UserModel model) {
			if (!StringUtils.isEmpty(model.cookie)) {
			return model.cookie;
			}
			Properties allUsers = super.read();
			String value = allUsers.getProperty(model.username);
			String[] roles = value.split(",");
			String password = roles[0];
			String cookie = StringUtils.getSHA1(model.username + password);
			return cookie.toCharArray();
			return cookie;
			}

			/**

			@@ -512,10 +512,16 @@
			userCookie = new Cookie(Constants.NAME, "");
			} else {
			// set cookie for login
			char[] cookie = userService.getCookie(user);
			userCookie = new Cookie(Constants.NAME, new String(cookie));
			String cookie = userService.getCookie(user);
			if (StringUtils.isEmpty(cookie)) {
			// create empty cookie
			userCookie = new Cookie(Constants.NAME, "");
			} else {
			// create real cookie
			userCookie = new Cookie(Constants.NAME, cookie);
			userCookie.setMaxAge(Integer.MAX_VALUE);
			}
			}
			userCookie.setPath("/");
			response.addCookie(userCookie);
			}

			@@ -138,7 +138,7 @@
			}

			@Override
			public char[] getCookie(UserModel model) {
			public String getCookie(UserModel model) {
			return serviceImpl.getCookie(model);
			}

			@@ -84,7 +84,7 @@
			* @param model
			* @return cookie value
			*/
			char[] getCookie(UserModel model);
			String getCookie(UserModel model);

			/**
			* Authenticate a user based on their cookie.

			@@ -27,6 +27,7 @@

			import com.gitblit.models.TeamModel;
			import com.gitblit.models.UserModel;
			import com.gitblit.utils.ArrayUtils;
			import com.gitblit.utils.StringUtils;
			import com.unboundid.ldap.sdk.Attribute;
			import com.unboundid.ldap.sdk.LDAPConnection;
			@@ -140,17 +141,6 @@
			return !settings.getBoolean(Keys.realm.ldap.maintainTeams, false);
			}

			/**
			* Does the user service support cookie authentication?
			*
			* @return true or false
			*/
			@Override
			public boolean supportsCookies() {
			// TODO cookies need to be reviewed
			return false;
			}

			@Override
			public UserModel authenticate(String username, char[] password) {
			String simpleUsername = getSimpleUsername(username);
			@@ -174,7 +164,10 @@
			if (user == null) // create user object for new authenticated user
			user = new UserModel(simpleUsername);


			// create a user cookie
			if (StringUtils.isEmpty(user.cookie) && !ArrayUtils.isEmpty(password)) {
			user.cookie = StringUtils.getSHA1(user.username + new String(password));
			}

			if (!supportsTeamMembershipChanges())
			getTeamsFromLdap(ldapConnection, simpleUsername, loggingInUser, user);

			@@ -30,6 +30,10 @@
			return array == null \|\| array.length == 0;
			}

			public static boolean isEmpty(char [] array) {
			return array == null \|\| array.length == 0;
			}

			public static boolean isEmpty(Object [] array) {
			return array == null \|\| array.length == 0;
			}