From b5c0d648cf147d3709eb78d98011f38e07aee723 Mon Sep 17 00:00:00 2001 From: lresende Date: Fri, 13 Nov 2009 01:25:44 +0000 Subject: Moving 1.x branches git-svn-id: http://svn.us.apache.org/repos/asf/tuscany@835694 13f79535-47bb-0310-9956-ffa450edef68 --- .../modules/policy-security-http/LICENSE | 205 ------------------ .../modules/policy-security-http/NOTICE | 6 - .../modules/policy-security-http/pom.xml | 106 ---------- .../AuthenticationConfigurationPolicy.java | 45 ---- ...AuthenticationConfigurationPolicyProcessor.java | 156 -------------- .../confidentiality/ConfidentialityPolicy.java | 132 ------------ .../ConfidentialityPolicyProcessor.java | 157 -------------- .../LDAPRealmAuthenticationCallbackHandler.java | 71 ------- ...AuthenticationImplementationPolicyProvider.java | 193 ----------------- .../http/LDAPRealmAuthenticationInterceptor.java | 66 ------ .../http/LDAPRealmAuthenticationPolicy.java | 79 ------- .../LDAPRealmAuthenticationPolicyProcessor.java | 140 ------------ ...APRealmAuthenticationPolicyProviderFactory.java | 69 ------ ...APRealmAuthenticationServicePolicyProvider.java | 234 --------------------- .../DefaultLDAPSecurityExtensionPoint.java | 133 ------------ .../http/extensibility/LDAPSecurityHandler.java | 63 ------ .../LDAPSecurityHandlerExtensionPoint.java | 50 ----- .../security/http/util/HttpSecurityUtil.java | 124 ----------- ...ca.contribution.processor.StAXArtifactProcessor | 21 -- ...extensibility.LDAPSecurityHandlerExtensionPoint | 18 -- ...ache.tuscany.sca.provider.PolicyProviderFactory | 19 -- ...cy-security-http-validation-messages.properties | 22 -- 22 files changed, 2109 deletions(-) delete mode 100644 branches/sca-java-1.5.2/modules/policy-security-http/LICENSE delete mode 100644 branches/sca-java-1.5.2/modules/policy-security-http/NOTICE delete mode 100644 branches/sca-java-1.5.2/modules/policy-security-http/pom.xml delete mode 100644 branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/authentication/AuthenticationConfigurationPolicy.java delete mode 100644 branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/authentication/AuthenticationConfigurationPolicyProcessor.java delete mode 100644 branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/confidentiality/ConfidentialityPolicy.java delete mode 100644 branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/confidentiality/ConfidentialityPolicyProcessor.java delete mode 100644 branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationCallbackHandler.java delete mode 100644 branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationImplementationPolicyProvider.java delete mode 100644 branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationInterceptor.java delete mode 100644 branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationPolicy.java delete mode 100644 branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationPolicyProcessor.java delete mode 100644 branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationPolicyProviderFactory.java delete mode 100644 branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationServicePolicyProvider.java delete mode 100644 branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/extensibility/DefaultLDAPSecurityExtensionPoint.java delete mode 100644 branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/extensibility/LDAPSecurityHandler.java delete mode 100644 branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/extensibility/LDAPSecurityHandlerExtensionPoint.java delete mode 100644 branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/util/HttpSecurityUtil.java delete mode 100644 branches/sca-java-1.5.2/modules/policy-security-http/src/main/resources/META-INF/services/org.apache.tuscany.sca.contribution.processor.StAXArtifactProcessor delete mode 100644 branches/sca-java-1.5.2/modules/policy-security-http/src/main/resources/META-INF/services/org.apache.tuscany.sca.policy.security.http.extensibility.LDAPSecurityHandlerExtensionPoint delete mode 100644 branches/sca-java-1.5.2/modules/policy-security-http/src/main/resources/META-INF/services/org.apache.tuscany.sca.provider.PolicyProviderFactory delete mode 100644 branches/sca-java-1.5.2/modules/policy-security-http/src/main/resources/policy-security-http-validation-messages.properties (limited to 'branches/sca-java-1.5.2/modules/policy-security-http') diff --git a/branches/sca-java-1.5.2/modules/policy-security-http/LICENSE b/branches/sca-java-1.5.2/modules/policy-security-http/LICENSE deleted file mode 100644 index 6e529a25c4..0000000000 --- a/branches/sca-java-1.5.2/modules/policy-security-http/LICENSE +++ /dev/null @@ -1,205 +0,0 @@ - - Apache License - Version 2.0, January 2004 - http://www.apache.org/licenses/ - - TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION - - 1. Definitions. - - "License" shall mean the terms and conditions for use, reproduction, - and distribution as defined by Sections 1 through 9 of this document. - - "Licensor" shall mean the copyright owner or entity authorized by - the copyright owner that is granting the License. - - "Legal Entity" shall mean the union of the acting entity and all - other entities that control, are controlled by, or are under common - control with that entity. For the purposes of this definition, - "control" means (i) the power, direct or indirect, to cause the - direction or management of such entity, whether by contract or - otherwise, or (ii) ownership of fifty percent (50%) or more of the - outstanding shares, or (iii) beneficial ownership of such entity. - - "You" (or "Your") shall mean an individual or Legal Entity - exercising permissions granted by this License. - - "Source" form shall mean the preferred form for making modifications, - including but not limited to software source code, documentation - source, and configuration files. - - "Object" form shall mean any form resulting from mechanical - transformation or translation of a Source form, including but - not limited to compiled object code, generated documentation, - and conversions to other media types. - - "Work" shall mean the work of authorship, whether in Source or - Object form, made available under the License, as indicated by a - copyright notice that is included in or attached to the work - (an example is provided in the Appendix below). - - "Derivative Works" shall mean any work, whether in Source or Object - form, that is based on (or derived from) the Work and for which the - editorial revisions, annotations, elaborations, or other modifications - represent, as a whole, an original work of authorship. For the purposes - of this License, Derivative Works shall not include works that remain - separable from, or merely link (or bind by name) to the interfaces of, - the Work and Derivative Works thereof. - - "Contribution" shall mean any work of authorship, including - the original version of the Work and any modifications or additions - to that Work or Derivative Works thereof, that is intentionally - submitted to Licensor for inclusion in the Work by the copyright owner - or by an individual or Legal Entity authorized to submit on behalf of - the copyright owner. For the purposes of this definition, "submitted" - means any form of electronic, verbal, or written communication sent - to the Licensor or its representatives, including but not limited to - communication on electronic mailing lists, source code control systems, - and issue tracking systems that are managed by, or on behalf of, the - Licensor for the purpose of discussing and improving the Work, but - excluding communication that is conspicuously marked or otherwise - designated in writing by the copyright owner as "Not a Contribution." - - "Contributor" shall mean Licensor and any individual or Legal Entity - on behalf of whom a Contribution has been received by Licensor and - subsequently incorporated within the Work. - - 2. Grant of Copyright License. Subject to the terms and conditions of - this License, each Contributor hereby grants to You a perpetual, - worldwide, non-exclusive, no-charge, royalty-free, irrevocable - copyright license to reproduce, prepare Derivative Works of, - publicly display, publicly perform, sublicense, and distribute the - Work and such Derivative Works in Source or Object form. - - 3. Grant of Patent License. Subject to the terms and conditions of - this License, each Contributor hereby grants to You a perpetual, - worldwide, non-exclusive, no-charge, royalty-free, irrevocable - (except as stated in this section) patent license to make, have made, - use, offer to sell, sell, import, and otherwise transfer the Work, - where such license applies only to those patent claims licensable - by such Contributor that are necessarily infringed by their - Contribution(s) alone or by combination of their Contribution(s) - with the Work to which such Contribution(s) was submitted. If You - institute patent litigation against any entity (including a - cross-claim or counterclaim in a lawsuit) alleging that the Work - or a Contribution incorporated within the Work constitutes direct - or contributory patent infringement, then any patent licenses - granted to You under this License for that Work shall terminate - as of the date such litigation is filed. - - 4. Redistribution. You may reproduce and distribute copies of the - Work or Derivative Works thereof in any medium, with or without - modifications, and in Source or Object form, provided that You - meet the following conditions: - - (a) You must give any other recipients of the Work or - Derivative Works a copy of this License; and - - (b) You must cause any modified files to carry prominent notices - stating that You changed the files; and - - (c) You must retain, in the Source form of any Derivative Works - that You distribute, all copyright, patent, trademark, and - attribution notices from the Source form of the Work, - excluding those notices that do not pertain to any part of - the Derivative Works; and - - (d) If the Work includes a "NOTICE" text file as part of its - distribution, then any Derivative Works that You distribute must - include a readable copy of the attribution notices contained - within such NOTICE file, excluding those notices that do not - pertain to any part of the Derivative Works, in at least one - of the following places: within a NOTICE text file distributed - as part of the Derivative Works; within the Source form or - documentation, if provided along with the Derivative Works; or, - within a display generated by the Derivative Works, if and - wherever such third-party notices normally appear. The contents - of the NOTICE file are for informational purposes only and - do not modify the License. You may add Your own attribution - notices within Derivative Works that You distribute, alongside - or as an addendum to the NOTICE text from the Work, provided - that such additional attribution notices cannot be construed - as modifying the License. - - You may add Your own copyright statement to Your modifications and - may provide additional or different license terms and conditions - for use, reproduction, or distribution of Your modifications, or - for any such Derivative Works as a whole, provided Your use, - reproduction, and distribution of the Work otherwise complies with - the conditions stated in this License. - - 5. Submission of Contributions. Unless You explicitly state otherwise, - any Contribution intentionally submitted for inclusion in the Work - by You to the Licensor shall be under the terms and conditions of - this License, without any additional terms or conditions. - Notwithstanding the above, nothing herein shall supersede or modify - the terms of any separate license agreement you may have executed - with Licensor regarding such Contributions. - - 6. Trademarks. This License does not grant permission to use the trade - names, trademarks, service marks, or product names of the Licensor, - except as required for reasonable and customary use in describing the - origin of the Work and reproducing the content of the NOTICE file. - - 7. Disclaimer of Warranty. Unless required by applicable law or - agreed to in writing, Licensor provides the Work (and each - Contributor provides its Contributions) on an "AS IS" BASIS, - WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or - implied, including, without limitation, any warranties or conditions - of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A - PARTICULAR PURPOSE. You are solely responsible for determining the - appropriateness of using or redistributing the Work and assume any - risks associated with Your exercise of permissions under this License. - - 8. Limitation of Liability. In no event and under no legal theory, - whether in tort (including negligence), contract, or otherwise, - unless required by applicable law (such as deliberate and grossly - negligent acts) or agreed to in writing, shall any Contributor be - liable to You for damages, including any direct, indirect, special, - incidental, or consequential damages of any character arising as a - result of this License or out of the use or inability to use the - Work (including but not limited to damages for loss of goodwill, - work stoppage, computer failure or malfunction, or any and all - other commercial damages or losses), even if such Contributor - has been advised of the possibility of such damages. - - 9. Accepting Warranty or Additional Liability. While redistributing - the Work or Derivative Works thereof, You may choose to offer, - and charge a fee for, acceptance of support, warranty, indemnity, - or other liability obligations and/or rights consistent with this - License. However, in accepting such obligations, You may act only - on Your own behalf and on Your sole responsibility, not on behalf - of any other Contributor, and only if You agree to indemnify, - defend, and hold each Contributor harmless for any liability - incurred by, or claims asserted against, such Contributor by reason - of your accepting any such warranty or additional liability. - - END OF TERMS AND CONDITIONS - - APPENDIX: How to apply the Apache License to your work. - - To apply the Apache License to your work, attach the following - boilerplate notice, with the fields enclosed by brackets "[]" - replaced with your own identifying information. (Don't include - the brackets!) The text should be enclosed in the appropriate - comment syntax for the file format. We also recommend that a - file or class name and description of purpose be included on the - same "printed page" as the copyright notice for easier - identification within third-party archives. - - Copyright [yyyy] [name of copyright owner] - - Licensed under the Apache License, Version 2.0 (the "License"); - you may not use this file except in compliance with the License. - You may obtain a copy of the License at - - http://www.apache.org/licenses/LICENSE-2.0 - - Unless required by applicable law or agreed to in writing, software - distributed under the License is distributed on an "AS IS" BASIS, - WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. - See the License for the specific language governing permissions and - limitations under the License. - - - diff --git a/branches/sca-java-1.5.2/modules/policy-security-http/NOTICE b/branches/sca-java-1.5.2/modules/policy-security-http/NOTICE deleted file mode 100644 index 25bb89c9b2..0000000000 --- a/branches/sca-java-1.5.2/modules/policy-security-http/NOTICE +++ /dev/null @@ -1,6 +0,0 @@ -${pom.name} -Copyright (c) 2005 - 2009 The Apache Software Foundation - -This product includes software developed by -The Apache Software Foundation (http://www.apache.org/). - diff --git a/branches/sca-java-1.5.2/modules/policy-security-http/pom.xml b/branches/sca-java-1.5.2/modules/policy-security-http/pom.xml deleted file mode 100644 index 5d0af3f805..0000000000 --- a/branches/sca-java-1.5.2/modules/policy-security-http/pom.xml +++ /dev/null @@ -1,106 +0,0 @@ - - - - 4.0.0 - - org.apache.tuscany.sca - tuscany-modules - 1.5.2-SNAPSHOT - ../pom.xml - - tuscany-policy-security-http - Apache Tuscany SCA Security Policy Model for HTTP Binding - - - - org.apache.tuscany.sca - tuscany-contribution - 1.5.2-SNAPSHOT - - - - org.apache.tuscany.sca - tuscany-host-http - 1.5.2-SNAPSHOT - - - - org.apache.tuscany.sca - tuscany-policy-security - 1.5.2-SNAPSHOT - - - - org.apache.tuscany.sca - tuscany-assembly-xml - 1.5.2-SNAPSHOT - - - - org.apache.tuscany.sca - tuscany-contribution-impl - 1.5.2-SNAPSHOT - test - - - - commons-codec - commons-codec - 1.3 - - - commons-codec - commons-codec - - - - - - javax.servlet - servlet-api - 2.4 - provided - - - - - - - - org.apache.felix - maven-bundle-plugin - - - - ${tuscany.version} - org.apache.tuscany.sca.policy.security - ${pom.name} - - org.apache.tuscany.sca.policy.identity, - org.apache.tuscany.sca.policy.authorization, - org.apache.tuscany.sca.policy.security* - - - - - - - - diff --git a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/authentication/AuthenticationConfigurationPolicy.java b/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/authentication/AuthenticationConfigurationPolicy.java deleted file mode 100644 index 4ab7e582ac..0000000000 --- a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/authentication/AuthenticationConfigurationPolicy.java +++ /dev/null @@ -1,45 +0,0 @@ -/* - * Licensed to the Apache Software Foundation (ASF) under one - * or more contributor license agreements. See the NOTICE file - * distributed with this work for additional information - * regarding copyright ownership. The ASF licenses this file - * to you under the Apache License, Version 2.0 (the - * "License"); you may not use this file except in compliance - * with the License. You may obtain a copy of the License at - * - * http://www.apache.org/licenses/LICENSE-2.0 - * - * Unless required by applicable law or agreed to in writing, - * software distributed under the License is distributed on an - * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY - * KIND, either express or implied. See the License for the - * specific language governing permissions and limitations - * under the License. - */ - -package org.apache.tuscany.sca.policy.authentication; - -import java.util.ArrayList; -import java.util.List; - -import javax.xml.namespace.QName; - -import org.apache.tuscany.sca.assembly.xml.Constants; -import org.apache.tuscany.sca.host.http.UserContext; - -/** - * This policy configures authentication/authorization - * in embedded http servers - * - * @version $Rev$ $Date$ - */ -public class AuthenticationConfigurationPolicy { - public static final QName NAME = new QName(Constants.SCA10_TUSCANY_NS, "basicAuthenticationConfiguration"); - - private List users = new ArrayList(); - - public List getUsers() { - return this.users; - } - -} diff --git a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/authentication/AuthenticationConfigurationPolicyProcessor.java b/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/authentication/AuthenticationConfigurationPolicyProcessor.java deleted file mode 100644 index a112e25364..0000000000 --- a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/authentication/AuthenticationConfigurationPolicyProcessor.java +++ /dev/null @@ -1,156 +0,0 @@ -/* - * Licensed to the Apache Software Foundation (ASF) under one - * or more contributor license agreements. See the NOTICE file - * distributed with this work for additional information - * regarding copyright ownership. The ASF licenses this file - * to you under the Apache License, Version 2.0 (the - * "License"); you may not use this file except in compliance - * with the License. You may obtain a copy of the License at - * - * http://www.apache.org/licenses/LICENSE-2.0 - * - * Unless required by applicable law or agreed to in writing, - * software distributed under the License is distributed on an - * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY - * KIND, either express or implied. See the License for the - * specific language governing permissions and limitations - * under the License. - */ - -package org.apache.tuscany.sca.policy.authentication; - -import static javax.xml.stream.XMLStreamConstants.END_ELEMENT; -import static javax.xml.stream.XMLStreamConstants.START_ELEMENT; - -import java.util.StringTokenizer; - -import javax.xml.namespace.QName; -import javax.xml.stream.XMLStreamException; -import javax.xml.stream.XMLStreamReader; -import javax.xml.stream.XMLStreamWriter; - -import org.apache.tuscany.sca.assembly.xml.Constants; -import org.apache.tuscany.sca.contribution.ModelFactoryExtensionPoint; -import org.apache.tuscany.sca.contribution.processor.StAXArtifactProcessor; -import org.apache.tuscany.sca.contribution.resolver.ModelResolver; -import org.apache.tuscany.sca.contribution.service.ContributionReadException; -import org.apache.tuscany.sca.contribution.service.ContributionResolveException; -import org.apache.tuscany.sca.contribution.service.ContributionWriteException; -import org.apache.tuscany.sca.host.http.UserContext; -import org.apache.tuscany.sca.monitor.Monitor; -import org.apache.tuscany.sca.monitor.Problem; -import org.apache.tuscany.sca.monitor.Problem.Severity; -import org.apache.tuscany.sca.monitor.impl.ProblemImpl; - -/** - * - * - * - * - * - * - * - * - * - * @version $Rev$ $Date$ - */ - -public class AuthenticationConfigurationPolicyProcessor implements StAXArtifactProcessor { - private static final QName AUTHENTICATION_CONFIGURATION_QNAME = new QName(Constants.SCA10_TUSCANY_NS, "authenticationConfiguration"); - private static final QName USER_QNAME = new QName(Constants.SCA10_TUSCANY_NS, "user"); - - private Monitor monitor; - - public AuthenticationConfigurationPolicyProcessor(ModelFactoryExtensionPoint modelFactories, Monitor monitor) { - this.monitor = monitor; - } - - /** - * Report a error. - * - * @param problems - * @param message - * @param model - */ - private void error(String message, Object model, Object... messageParameters) { - if (monitor != null) { - Problem problem = new ProblemImpl(this.getClass().getName(), "policy-security-http-validation-messages", Severity.ERROR, model, message, (Object[])messageParameters); - monitor.problem(problem); - } - } - - public QName getArtifactType() { - return AuthenticationConfigurationPolicy.NAME; - } - - public Class getModelType() { - return AuthenticationConfigurationPolicy.class; - } - - public AuthenticationConfigurationPolicy read(XMLStreamReader reader) throws ContributionReadException, XMLStreamException { - AuthenticationConfigurationPolicy authenticationConfiguration = new AuthenticationConfigurationPolicy(); - - int event = reader.getEventType(); - QName start = reader.getName(); - QName name = null; - while (true) { - switch (event) { - case START_ELEMENT: - name = reader.getName(); - if(USER_QNAME.equals(name)) { - UserContext user = new UserContext(); - // - String username = reader.getAttributeValue(null, "username"); - if(username == null) { - error("RequiredAttributeUsernameMissing", reader); - } else { - user.setUsername(username); - } - - String password = reader.getAttributeValue(null, "password"); - if(password == null) { - error("RequiredAttributePasswordMissing", reader); - } else { - user.setPassword(password); - } - - String roles = reader.getAttributeValue(null, "roles"); - if(roles == null) { - error("RequiredAttributeRolesMissing", reader); - } else { - for (StringTokenizer tokens = new StringTokenizer(roles, ","); tokens.hasMoreTokens();) { - user.getRoles().add(tokens.nextToken()); - } - } - - authenticationConfiguration.getUsers().add(user); - } - break; - case END_ELEMENT: - if (start.equals(reader.getName())) { - if (reader.hasNext()) { - reader.next(); - } - return authenticationConfiguration; - } - - } - if (reader.hasNext()) { - event = reader.next(); - } else { - return authenticationConfiguration; - } - } - } - - public void write(AuthenticationConfigurationPolicy model, XMLStreamWriter writer) throws ContributionWriteException, XMLStreamException { - // TODO Auto-generated method stub - } - - public void resolve(AuthenticationConfigurationPolicy model, ModelResolver resolver) throws ContributionResolveException { - - } - -} diff --git a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/confidentiality/ConfidentialityPolicy.java b/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/confidentiality/ConfidentialityPolicy.java deleted file mode 100644 index 5301e13269..0000000000 --- a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/confidentiality/ConfidentialityPolicy.java +++ /dev/null @@ -1,132 +0,0 @@ -/* - * Licensed to the Apache Software Foundation (ASF) under one - * or more contributor license agreements. See the NOTICE file - * distributed with this work for additional information - * regarding copyright ownership. The ASF licenses this file - * to you under the Apache License, Version 2.0 (the - * "License"); you may not use this file except in compliance - * with the License. You may obtain a copy of the License at - * - * http://www.apache.org/licenses/LICENSE-2.0 - * - * Unless required by applicable law or agreed to in writing, - * software distributed under the License is distributed on an - * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY - * KIND, either express or implied. See the License for the - * specific language governing permissions and limitations - * under the License. - */ - -package org.apache.tuscany.sca.policy.confidentiality; - -import java.util.Properties; - -import javax.xml.namespace.QName; - -import org.apache.tuscany.sca.assembly.xml.Constants; -import org.apache.tuscany.sca.policy.Policy; - - -/** - * Models the SCA Implementation Security Policy Assertion for Confidentiality. - * - * This would map to enabling SSL communication and would require - * the following configuration items : - * - * - javax.net.ssl.keyStore - * - javax.net.ssl.keyStorePassword - * - javax.net.ssl.keyStoreType - * - * - javax.net.ssl.trustStoreType - * - javax.net.ssl.trustStore - * - javax.net.ssl.trustStorePassword - * - * @version $Rev$ $Date$ - */ -public class ConfidentialityPolicy implements Policy { - public static final QName NAME = new QName(Constants.SCA10_TUSCANY_NS, "confidentiality"); - - private String trustStoreType; - private String trustStore; - private String trustStorePassword; - - private String keyStoreType; - private String keyStore; - private String keyStorePassword; - - - public String getTrustStoreType() { - return trustStoreType; - } - - public void setTrustStoreType(String trustStoreType) { - this.trustStoreType = trustStoreType; - } - - public String getTrustStore() { - return trustStore; - } - - public void setTrustStore(String trustStore) { - this.trustStore = trustStore; - } - - public String getTrustStorePassword() { - return trustStorePassword; - } - - public void setTrustStorePassword(String trustStorePassword) { - this.trustStorePassword = trustStorePassword; - } - - public String getKeyStoreType() { - return keyStoreType; - } - - public void setKeyStoreType(String keyStoreType) { - this.keyStoreType = keyStoreType; - } - - public String getKeyStore() { - return keyStore; - } - - public void setKeyStore(String keyStore) { - this.keyStore = keyStore; - } - - public String getKeyStorePassword() { - return keyStorePassword; - } - - public void setKeyStorePassword(String keyStorePassword) { - this.keyStorePassword = keyStorePassword; - } - - public QName getSchemaName() { - return NAME; - } - - public boolean isUnresolved() { - return false; - } - - public void setUnresolved(boolean unresolved) { - - } - - public Properties toProperties() { - Properties properties = new Properties(); - - properties.put("javax.net.ssl.trustStoreType", trustStoreType); - properties.put("javax.net.ssl.trustStore", trustStore); - properties.put("javax.net.ssl.trustStorePassword", trustStorePassword); - - properties.put("javax.net.ssl.keyStoreType", keyStoreType); - properties.put("javax.net.ssl.keyStore", keyStore); - properties.put("javax.net.ssl.keyStorePassword", keyStorePassword); - - return properties; - } - -} diff --git a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/confidentiality/ConfidentialityPolicyProcessor.java b/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/confidentiality/ConfidentialityPolicyProcessor.java deleted file mode 100644 index 86866c2c8e..0000000000 --- a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/confidentiality/ConfidentialityPolicyProcessor.java +++ /dev/null @@ -1,157 +0,0 @@ -/* - * Licensed to the Apache Software Foundation (ASF) under one - * or more contributor license agreements. See the NOTICE file - * distributed with this work for additional information - * regarding copyright ownership. The ASF licenses this file - * to you under the Apache License, Version 2.0 (the - * "License"); you may not use this file except in compliance - * with the License. You may obtain a copy of the License at - * - * http://www.apache.org/licenses/LICENSE-2.0 - * - * Unless required by applicable law or agreed to in writing, - * software distributed under the License is distributed on an - * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY - * KIND, either express or implied. See the License for the - * specific language governing permissions and limitations - * under the License. - */ - -package org.apache.tuscany.sca.policy.confidentiality; - -import static javax.xml.stream.XMLStreamConstants.END_ELEMENT; -import static javax.xml.stream.XMLStreamConstants.START_ELEMENT; - -import javax.xml.namespace.QName; -import javax.xml.stream.XMLStreamException; -import javax.xml.stream.XMLStreamReader; -import javax.xml.stream.XMLStreamWriter; - -import org.apache.tuscany.sca.assembly.xml.Constants; -import org.apache.tuscany.sca.contribution.ModelFactoryExtensionPoint; -import org.apache.tuscany.sca.contribution.processor.StAXArtifactProcessor; -import org.apache.tuscany.sca.contribution.resolver.ModelResolver; -import org.apache.tuscany.sca.contribution.service.ContributionReadException; -import org.apache.tuscany.sca.contribution.service.ContributionResolveException; -import org.apache.tuscany.sca.contribution.service.ContributionWriteException; -import org.apache.tuscany.sca.monitor.Monitor; -import org.apache.tuscany.sca.monitor.Problem; -import org.apache.tuscany.sca.monitor.Problem.Severity; -import org.apache.tuscany.sca.monitor.impl.ProblemImpl; - -public class ConfidentialityPolicyProcessor implements StAXArtifactProcessor { - private static final QName KEY_STORE_QNAME = new QName(Constants.SCA10_TUSCANY_NS, "keyStore"); - private static final QName TRUST_STORE_QNAME = new QName(Constants.SCA10_TUSCANY_NS, "trustStore"); - - private Monitor monitor; - - public ConfidentialityPolicyProcessor(ModelFactoryExtensionPoint modelFactories, Monitor monitor) { - this.monitor = monitor; - } - - /** - * Report a error. - * - * @param problems - * @param message - * @param model - */ - private void error(String message, Object model, Object... messageParameters) { - if (monitor != null) { - Problem problem = new ProblemImpl(this.getClass().getName(), "policy-security-http-validation-messages", Severity.ERROR, model, message, (Object[])messageParameters); - monitor.problem(problem); - } - } - - public QName getArtifactType() { - return ConfidentialityPolicy.NAME; - } - - public Class getModelType() { - return ConfidentialityPolicy.class; - } - - public ConfidentialityPolicy read(XMLStreamReader reader) throws ContributionReadException, XMLStreamException { - ConfidentialityPolicy policy = new ConfidentialityPolicy(); - int event = reader.getEventType(); - QName start = reader.getName(); - QName name = null; - while (true) { - switch (event) { - case START_ELEMENT: - name = reader.getName(); - if(KEY_STORE_QNAME.equals(name)) { - // - String type = reader.getAttributeValue(null, "type"); - if(type == null) { - error("RequiredAttributeKeyStoreTypeMissing", reader); - } else { - policy.setKeyStoreType(type); - } - - String file = reader.getAttributeValue(null, "file"); - if(file == null) { - error("RequiredAttributeKeyStoreFileMissing", reader); - } else { - policy.setKeyStore(file); - } - - String password = reader.getAttributeValue(null, "password"); - if(file == null) { - error("RequiredAttributeKeyStorePasswordMissing", reader); - } else { - policy.setKeyStorePassword(password); - } - - } else if(TRUST_STORE_QNAME.equals(name)) { - // - String type = reader.getAttributeValue(null, "type"); - if(type == null) { - error("RequiredAttributeTrustStoreTypeMissing", reader); - } else { - policy.setTrustStoreType(type); - } - - String file = reader.getAttributeValue(null, "file"); - if(file == null) { - error("RequiredAttributeTrusStoreFileMissing", reader); - } else { - policy.setTrustStore(file); - } - - String password = reader.getAttributeValue(null, "password"); - if(file == null) { - error("RequiredAttributeTrustStorePasswordMissing", reader); - } else { - policy.setTrustStorePassword(password); - } - - } - break; - case END_ELEMENT: - if (start.equals(reader.getName())) { - if (reader.hasNext()) { - reader.next(); - } - return policy; - } - - } - if (reader.hasNext()) { - event = reader.next(); - } else { - return policy; - } - } } - - public void write(ConfidentialityPolicy model, XMLStreamWriter writer) throws ContributionWriteException, - XMLStreamException { - // TODO Auto-generated method stub - - } - - public void resolve(ConfidentialityPolicy model, ModelResolver resolver) throws ContributionResolveException { - - } - -} diff --git a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationCallbackHandler.java b/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationCallbackHandler.java deleted file mode 100644 index ee094f022d..0000000000 --- a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationCallbackHandler.java +++ /dev/null @@ -1,71 +0,0 @@ -/* - * Licensed to the Apache Software Foundation (ASF) under one - * or more contributor license agreements. See the NOTICE file - * distributed with this work for additional information - * regarding copyright ownership. The ASF licenses this file - * to you under the Apache License, Version 2.0 (the - * "License"); you may not use this file except in compliance - * with the License. You may obtain a copy of the License at - * - * http://www.apache.org/licenses/LICENSE-2.0 - * - * Unless required by applicable law or agreed to in writing, - * software distributed under the License is distributed on an - * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY - * KIND, either express or implied. See the License for the - * specific language governing permissions and limitations - * under the License. - */ - -package org.apache.tuscany.sca.policy.security.http; - -import java.io.IOException; - -import javax.security.auth.Subject; -import javax.security.auth.callback.Callback; -import javax.security.auth.callback.CallbackHandler; -import javax.security.auth.callback.NameCallback; -import javax.security.auth.callback.PasswordCallback; -import javax.security.auth.callback.UnsupportedCallbackException; - -import org.apache.tuscany.sca.policy.SecurityUtil; -import org.apache.tuscany.sca.policy.authentication.basic.BasicAuthenticationPrincipal; - - -/** - * @version $Rev$ $Date$ - */ -public class LDAPRealmAuthenticationCallbackHandler implements CallbackHandler { - private final Subject subject; - - public LDAPRealmAuthenticationCallbackHandler(Subject subject) { - this.subject = subject; - } - public void handle(Callback[] callbacks) throws IOException, UnsupportedCallbackException { - - BasicAuthenticationPrincipal principal = SecurityUtil.getPrincipal(subject, BasicAuthenticationPrincipal.class); - - if (principal != null){ - /* - System.out.println(">>> LDAPRealmAuthenticationCallbackHandler" + - " Username: " + principal.getName() + - " Password: " + principal.getPassword()); - */ - for (int i = 0; i < callbacks.length; i++) { - if (callbacks[i] instanceof NameCallback) { - NameCallback nc = (NameCallback)callbacks[i]; - nc.setName(principal.getName()); - } else if (callbacks[i] instanceof PasswordCallback) { - PasswordCallback pc = (PasswordCallback)callbacks[i]; - pc.setPassword(principal.getPassword().toCharArray()); - } else { - throw new UnsupportedCallbackException - (callbacks[i], "Unsupported Callback!"); - } - } - } - - - } - -} diff --git a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationImplementationPolicyProvider.java b/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationImplementationPolicyProvider.java deleted file mode 100644 index 8a2f38115a..0000000000 --- a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationImplementationPolicyProvider.java +++ /dev/null @@ -1,193 +0,0 @@ -/* - * Licensed to the Apache Software Foundation (ASF) under one - * or more contributor license agreements. See the NOTICE file - * distributed with this work for additional information - * regarding copyright ownership. The ASF licenses this file - * to you under the Apache License, Version 2.0 (the - * "License"); you may not use this file except in compliance - * with the License. You may obtain a copy of the License at - * - * http://www.apache.org/licenses/LICENSE-2.0 - * - * Unless required by applicable law or agreed to in writing, - * software distributed under the License is distributed on an - * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY - * KIND, either express or implied. See the License for the - * specific language governing permissions and limitations - * under the License. - */ - -package org.apache.tuscany.sca.policy.security.http; - -import java.util.ArrayList; -import java.util.List; - -import org.apache.tuscany.sca.assembly.ConfiguredOperation; -import org.apache.tuscany.sca.assembly.Implementation; -import org.apache.tuscany.sca.assembly.OperationsConfigurator; -import org.apache.tuscany.sca.interfacedef.Operation; -import org.apache.tuscany.sca.invocation.Interceptor; -import org.apache.tuscany.sca.invocation.Phase; -import org.apache.tuscany.sca.policy.PolicySet; -import org.apache.tuscany.sca.policy.authorization.AuthorizationPolicy; -import org.apache.tuscany.sca.policy.security.http.extensibility.LDAPSecurityHandler; -import org.apache.tuscany.sca.provider.PolicyProvider; -import org.apache.tuscany.sca.runtime.RuntimeComponent; - -public class LDAPRealmAuthenticationImplementationPolicyProvider implements PolicyProvider { - private RuntimeComponent component; - private Implementation implementation; - private LDAPSecurityHandler securityHandler; - - public LDAPRealmAuthenticationImplementationPolicyProvider(RuntimeComponent component, Implementation implementation, LDAPSecurityHandler securityHandler) { - super(); - this.component = component; - this.implementation = implementation; - this.securityHandler = securityHandler; - } - - - public String getPhase() { - return Phase.IMPLEMENTATION_POLICY; - } - - public Interceptor createInterceptor(Operation operation) { - List policies = findAuthenticationPolicies(operation); - if (policies == null || policies.isEmpty()) { - return null; - } else { - return new LDAPRealmAuthenticationInterceptor(securityHandler, findAuthenticationPolicies(operation), findAuthorizationPolicies(operation)); - } - } - - /** - * Internal utility methods - */ - - /** - * Find applicable authentication policySets - * It first check if any explicitly policySet was identified - * Otherwise it look into the list of applicablePolicySets - * @param op - * @return - */ - private List findAuthenticationPolicies(Operation op) { - List polices = new ArrayList(); - - - // check explicity added policies first - ConfiguredOperation configuredOperation = findOperation(op); - if (configuredOperation!= null && configuredOperation.getPolicySets().size() > 0) { - for ( PolicySet ps : configuredOperation.getPolicySets()) { - for (Object p : ps.getPolicies()) { - if (p instanceof LDAPRealmAuthenticationPolicy) { - polices.add((LDAPRealmAuthenticationPolicy)p); - } - } - } - } - - // otherwise find applicable policySets - if ( polices.size() == 0) { - - if (implementation instanceof OperationsConfigurator) { - OperationsConfigurator operationsConfigurator = (OperationsConfigurator)implementation; - for (ConfiguredOperation cop : operationsConfigurator.getConfiguredOperations()) { - if (cop != null && cop.getName() != null && cop.getName().equals(op.getName())) { - for (PolicySet ps : cop.getPolicySets()) { - for (Object p : ps.getPolicies()) { - if (LDAPRealmAuthenticationPolicy.class.isInstance(p)) { - polices.add((LDAPRealmAuthenticationPolicy)p); - } - } - } - } - } - } - - List policySets = component.getPolicySets(); - for (PolicySet ps : policySets) { - for (Object p : ps.getPolicies()) { - if (LDAPRealmAuthenticationPolicy.class.isInstance(p)) { - polices.add((LDAPRealmAuthenticationPolicy)p); - } - } - } - } - - return polices; - } - - /** - * Find applicable authorization policySets - * It first check if any explicitly policySet was identified - * Otherwise it look into the list of applicablePolicySets - * @param op - * @return - */ - private List findAuthorizationPolicies(Operation op) { - List polices = new ArrayList(); - - - // check explicity added policies first - ConfiguredOperation configuredOperation = findOperation(op); - if (configuredOperation!= null && configuredOperation.getPolicySets().size() > 0) { - for ( PolicySet ps : configuredOperation.getPolicySets()) { - for (Object p : ps.getPolicies()) { - if (p instanceof AuthorizationPolicy) { - polices.add((AuthorizationPolicy)p); - } - } - } - } - - // otherwise find applicable policySets - if ( polices.size() == 0) { - - if (implementation instanceof OperationsConfigurator) { - OperationsConfigurator operationsConfigurator = (OperationsConfigurator)implementation; - for (ConfiguredOperation cop : operationsConfigurator.getConfiguredOperations()) { - if (cop != null && cop.getName() != null && cop.getName().equals(op.getName())) { - for (PolicySet ps : cop.getPolicySets()) { - for (Object p : ps.getPolicies()) { - if (AuthorizationPolicy.class.isInstance(p)) { - polices.add((AuthorizationPolicy)p); - } - } - } - } - } - } - - List policySets = component.getPolicySets(); - for (PolicySet ps : policySets) { - for (Object p : ps.getPolicies()) { - if (AuthorizationPolicy.class.isInstance(p)) { - polices.add((AuthorizationPolicy)p); - } - } - } - - } - - return polices; - } - - /** - * Find a given configured operation - * @param operation - * @return - */ - private ConfiguredOperation findOperation(Operation operation) { - ConfiguredOperation configuredOperation = null; - - for (ConfiguredOperation cOperation : ((OperationsConfigurator)component).getConfiguredOperations()) { - if(cOperation.getName().equals(operation.getName())) { - configuredOperation = cOperation; - break; - } - } - - return configuredOperation; - } -} diff --git a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationInterceptor.java b/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationInterceptor.java deleted file mode 100644 index 3f71891a01..0000000000 --- a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationInterceptor.java +++ /dev/null @@ -1,66 +0,0 @@ -/* - * Licensed to the Apache Software Foundation (ASF) under one - * or more contributor license agreements. See the NOTICE file - * distributed with this work for additional information - * regarding copyright ownership. The ASF licenses this file - * to you under the Apache License, Version 2.0 (the - * "License"); you may not use this file except in compliance - * with the License. You may obtain a copy of the License at - * - * http://www.apache.org/licenses/LICENSE-2.0 - * - * Unless required by applicable law or agreed to in writing, - * software distributed under the License is distributed on an - * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY - * KIND, either express or implied. See the License for the - * specific language governing permissions and limitations - * under the License. - */ - -package org.apache.tuscany.sca.policy.security.http; - -import java.util.List; - -import org.apache.tuscany.sca.invocation.Interceptor; -import org.apache.tuscany.sca.invocation.Invoker; -import org.apache.tuscany.sca.invocation.Message; -import org.apache.tuscany.sca.policy.authorization.AuthorizationPolicy; -import org.apache.tuscany.sca.policy.security.http.extensibility.LDAPSecurityHandler; -import org.osoa.sca.ServiceRuntimeException; - -/** - * @version $Rev$ $Date$ - */ -public class LDAPRealmAuthenticationInterceptor implements Interceptor { - private LDAPSecurityHandler securityHandler; - private List authenticationPolicies; - private List authorizationPolicies; - private Invoker next; - - public LDAPRealmAuthenticationInterceptor(LDAPSecurityHandler securityHandler, - List authenticationPolicies, - List authorizationPolicies) { - super(); - this.securityHandler = securityHandler; - this.authenticationPolicies = authenticationPolicies; - this.authorizationPolicies = authorizationPolicies; - } - - public Invoker getNext() { - return next; - } - - public void setNext(Invoker next) { - this.next = next; - } - - public Message invoke(Message msg) { - try { - securityHandler.handleSecurity(msg, authenticationPolicies, authorizationPolicies); - - } catch (Exception e) { - throw new ServiceRuntimeException(e); - } - return getNext().invoke(msg); - } -} diff --git a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationPolicy.java b/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationPolicy.java deleted file mode 100644 index ddb6790964..0000000000 --- a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationPolicy.java +++ /dev/null @@ -1,79 +0,0 @@ -/* - * Licensed to the Apache Software Foundation (ASF) under one - * or more contributor license agreements. See the NOTICE file - * distributed with this work for additional information - * regarding copyright ownership. The ASF licenses this file - * to you under the Apache License, Version 2.0 (the - * "License"); you may not use this file except in compliance - * with the License. You may obtain a copy of the License at - * - * http://www.apache.org/licenses/LICENSE-2.0 - * - * Unless required by applicable law or agreed to in writing, - * software distributed under the License is distributed on an - * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY - * KIND, either express or implied. See the License for the - * specific language governing permissions and limitations - * under the License. - */ -package org.apache.tuscany.sca.policy.security.http; - -import javax.xml.namespace.QName; - -import org.apache.tuscany.sca.assembly.xml.Constants; -import org.apache.tuscany.sca.policy.Policy; - -/** - * This policy provides realm based authentication/authorization - * - * @version $Rev$ $Date$ - */ -public class LDAPRealmAuthenticationPolicy implements Policy{ - static final QName NAME = new QName(Constants.SCA10_TUSCANY_NS,"ldapRealmAuthentication"); - - private String realmName; - private String realmConfigurationName; - - /** - * - * @return - */ - public String getRealmName() { - return realmName; - } - - /** - * - * @param realmName - */ - public void setRealmName(String realmName) { - this.realmName = realmName; - } - - /** - * - * @return - */ - public String getRealmConfigurationName() { - return realmConfigurationName; - } - - /** - * - * @param realmConfigurationName - */ - public void setRealmConfigurationName(String realmConfigurationName) { - this.realmConfigurationName = realmConfigurationName; - } - - public QName getSchemaName() { - return NAME; - } - - public boolean isUnresolved() { - return false; - } - - public void setUnresolved(boolean unresolved) { - } -} diff --git a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationPolicyProcessor.java b/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationPolicyProcessor.java deleted file mode 100644 index 625bb08b7f..0000000000 --- a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationPolicyProcessor.java +++ /dev/null @@ -1,140 +0,0 @@ -/* - * Licensed to the Apache Software Foundation (ASF) under one - * or more contributor license agreements. See the NOTICE file - * distributed with this work for additional information - * regarding copyright ownership. The ASF licenses this file - * to you under the Apache License, Version 2.0 (the - * "License"); you may not use this file except in compliance - * with the License. You may obtain a copy of the License at - * - * http://www.apache.org/licenses/LICENSE-2.0 - * - * Unless required by applicable law or agreed to in writing, - * software distributed under the License is distributed on an - * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY - * KIND, either express or implied. See the License for the - * specific language governing permissions and limitations - * under the License. - */ - -package org.apache.tuscany.sca.policy.security.http; - -import static javax.xml.stream.XMLStreamConstants.END_ELEMENT; -import static javax.xml.stream.XMLStreamConstants.START_ELEMENT; - -import javax.xml.namespace.QName; -import javax.xml.stream.XMLStreamException; -import javax.xml.stream.XMLStreamReader; -import javax.xml.stream.XMLStreamWriter; - -import org.apache.tuscany.sca.assembly.xml.Constants; -import org.apache.tuscany.sca.contribution.ModelFactoryExtensionPoint; -import org.apache.tuscany.sca.contribution.processor.StAXArtifactProcessor; -import org.apache.tuscany.sca.contribution.resolver.ModelResolver; -import org.apache.tuscany.sca.contribution.service.ContributionReadException; -import org.apache.tuscany.sca.contribution.service.ContributionResolveException; -import org.apache.tuscany.sca.contribution.service.ContributionWriteException; -import org.apache.tuscany.sca.monitor.Monitor; -import org.apache.tuscany.sca.monitor.Problem; -import org.apache.tuscany.sca.monitor.Problem.Severity; -import org.apache.tuscany.sca.monitor.impl.ProblemImpl; - - -/** - * - * @version $Rev$ $Date$ - */ - -public class LDAPRealmAuthenticationPolicyProcessor implements StAXArtifactProcessor { - static final QName REALM_QNAME = new QName(Constants.SCA10_TUSCANY_NS,"realm"); - public static final QName REALM_CONFIGURATION_QNAME = new QName(Constants.SCA10_TUSCANY_NS,"realmConfigurationName"); - - private Monitor monitor; - - - public LDAPRealmAuthenticationPolicyProcessor(ModelFactoryExtensionPoint modelFactories, Monitor monitor) { - this.monitor = monitor; - } - - /** - * Report a error. - * - * @param problems - * @param message - * @param model - */ - private void error(String message, Object model, Object... messageParameters) { - if (monitor != null) { - Problem problem = new ProblemImpl(this.getClass().getName(), "policy-security-http-validation-messages", Severity.ERROR, model, message, (Object[])messageParameters); - monitor.problem(problem); - } - } - - public Class getModelType() { - return LDAPRealmAuthenticationPolicy.class; - } - - - public QName getArtifactType() { - return LDAPRealmAuthenticationPolicy.NAME; - } - - public LDAPRealmAuthenticationPolicy read(XMLStreamReader reader) throws ContributionReadException, XMLStreamException { - LDAPRealmAuthenticationPolicy policy = new LDAPRealmAuthenticationPolicy(); - int event = reader.getEventType(); - QName name = null; - - while (reader.hasNext()) { - event = reader.getEventType(); - switch (event) { - case START_ELEMENT : { - name = reader.getName(); - if (name.equals(REALM_QNAME)) { - String realmName = reader.getElementText(); - if (realmName != null) { - policy.setRealmName(realmName.trim()); - } - } - if (name.equals(REALM_CONFIGURATION_QNAME)) { - String realmConfigurationName = reader.getElementText(); - if (realmConfigurationName != null) { - policy.setRealmConfigurationName(realmConfigurationName.trim()); - } - } - - break; - } - } - - if ( event == END_ELEMENT ) { - if ( LDAPRealmAuthenticationPolicy.NAME.equals(reader.getName()) ) { - break; - } - } - - //Read the next element - if (reader.hasNext()) { - reader.next(); - } - } - - return policy; - } - - public void write(LDAPRealmAuthenticationPolicy policy, XMLStreamWriter writer) throws ContributionWriteException, - XMLStreamException { - String prefix = "tuscany"; - writer.writeStartElement(prefix, - LDAPRealmAuthenticationPolicy.NAME.getLocalPart(), - LDAPRealmAuthenticationPolicy.NAME.getNamespaceURI()); - writer.writeNamespace("tuscany", Constants.SCA10_TUSCANY_NS); - - - writer.writeEndElement(); - } - - - public void resolve(LDAPRealmAuthenticationPolicy policy, ModelResolver resolver) throws ContributionResolveException { - - } -} diff --git a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationPolicyProviderFactory.java b/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationPolicyProviderFactory.java deleted file mode 100644 index 45fe650b22..0000000000 --- a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationPolicyProviderFactory.java +++ /dev/null @@ -1,69 +0,0 @@ -/* - * Licensed to the Apache Software Foundation (ASF) under one - * or more contributor license agreements. See the NOTICE file - * distributed with this work for additional information - * regarding copyright ownership. The ASF licenses this file - * to you under the Apache License, Version 2.0 (the - * "License"); you may not use this file except in compliance - * with the License. You may obtain a copy of the License at - * - * http://www.apache.org/licenses/LICENSE-2.0 - * - * Unless required by applicable law or agreed to in writing, - * software distributed under the License is distributed on an - * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY - * KIND, either express or implied. See the License for the - * specific language governing permissions and limitations - * under the License. - */ - -package org.apache.tuscany.sca.policy.security.http; - -import org.apache.tuscany.sca.assembly.Binding; -import org.apache.tuscany.sca.assembly.Implementation; -import org.apache.tuscany.sca.core.ExtensionPointRegistry; -import org.apache.tuscany.sca.policy.security.http.extensibility.LDAPSecurityHandler; -import org.apache.tuscany.sca.policy.security.http.extensibility.LDAPSecurityHandlerExtensionPoint; -import org.apache.tuscany.sca.provider.PolicyProvider; -import org.apache.tuscany.sca.provider.PolicyProviderFactory; -import org.apache.tuscany.sca.runtime.RuntimeComponent; -import org.apache.tuscany.sca.runtime.RuntimeComponentReference; -import org.apache.tuscany.sca.runtime.RuntimeComponentService; - -/** - * @version $Rev$ $Date$ - */ -public class LDAPRealmAuthenticationPolicyProviderFactory implements PolicyProviderFactory { - private LDAPSecurityHandler securityHandler; - - public LDAPRealmAuthenticationPolicyProviderFactory(ExtensionPointRegistry registry) { - super(); - - LDAPSecurityHandlerExtensionPoint securityHandlerExtensionPoint = registry.getExtensionPoint(LDAPSecurityHandlerExtensionPoint.class); - if (securityHandlerExtensionPoint.getLDAPSecurityHandlers().size() > 0) { - securityHandler = securityHandlerExtensionPoint.getLDAPSecurityHandlers().get(0); - } - } - - public Class getModelType() { - return LDAPRealmAuthenticationPolicy.class; - } - - public PolicyProvider createImplementationPolicyProvider(RuntimeComponent component, Implementation implementation) { - return new LDAPRealmAuthenticationImplementationPolicyProvider(component, implementation, securityHandler); - } - - public PolicyProvider createReferencePolicyProvider(RuntimeComponent component, - RuntimeComponentReference reference, - Binding binding) { - return null; - } - - public PolicyProvider createServicePolicyProvider(RuntimeComponent component, - RuntimeComponentService service, - Binding binding) { - return new LDAPRealmAuthenticationServicePolicyProvider(component, service, binding, securityHandler); - } - - -} diff --git a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationServicePolicyProvider.java b/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationServicePolicyProvider.java deleted file mode 100644 index 5a8b7c7d85..0000000000 --- a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/LDAPRealmAuthenticationServicePolicyProvider.java +++ /dev/null @@ -1,234 +0,0 @@ -/* - * Licensed to the Apache Software Foundation (ASF) under one - * or more contributor license agreements. See the NOTICE file - * distributed with this work for additional information - * regarding copyright ownership. The ASF licenses this file - * to you under the Apache License, Version 2.0 (the - * "License"); you may not use this file except in compliance - * with the License. You may obtain a copy of the License at - * - * http://www.apache.org/licenses/LICENSE-2.0 - * - * Unless required by applicable law or agreed to in writing, - * software distributed under the License is distributed on an - * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY - * KIND, either express or implied. See the License for the - * specific language governing permissions and limitations - * under the License. - */ - -package org.apache.tuscany.sca.policy.security.http; - -import java.util.ArrayList; -import java.util.List; - -import org.apache.tuscany.sca.assembly.Binding; -import org.apache.tuscany.sca.assembly.ConfiguredOperation; -import org.apache.tuscany.sca.assembly.OperationsConfigurator; -import org.apache.tuscany.sca.interfacedef.Operation; -import org.apache.tuscany.sca.invocation.Interceptor; -import org.apache.tuscany.sca.invocation.Phase; -import org.apache.tuscany.sca.policy.PolicySet; -import org.apache.tuscany.sca.policy.authorization.AuthorizationPolicy; -import org.apache.tuscany.sca.policy.security.http.extensibility.LDAPSecurityHandler; -import org.apache.tuscany.sca.provider.PolicyProvider; -import org.apache.tuscany.sca.runtime.RuntimeComponent; -import org.apache.tuscany.sca.runtime.RuntimeComponentService; - - -/** - * - * @version $Rev$ $Date$ - */ -public class LDAPRealmAuthenticationServicePolicyProvider implements PolicyProvider { - private RuntimeComponent component; - private RuntimeComponentService service; - private Binding binding; - LDAPSecurityHandler securityHandler; - - private List operations = new ArrayList(); - - public LDAPRealmAuthenticationServicePolicyProvider(RuntimeComponent component, RuntimeComponentService service, Binding binding, LDAPSecurityHandler securityHandler) { - super(); - this.component = component; - this.service = service; - this.binding = binding; - this.securityHandler = securityHandler; - - this.operations.addAll(service.getInterfaceContract().getInterface().getOperations()); - } - - public String getPhase() { - return Phase.SERVICE_BINDING_POLICY; - } - - public Interceptor createInterceptor(Operation operation) { - List authenticationPolicies = null; - List authorizationPolicies = null; - - if (operation != null) { - authenticationPolicies = findAuthenticationPolicies(operation); - authorizationPolicies = findAuthorizationPolicies(operation); - } - - if (authenticationPolicies == null || authenticationPolicies.isEmpty()) { - return null; - } else { - return new LDAPRealmAuthenticationInterceptor(securityHandler, authenticationPolicies, authorizationPolicies); - } - } - - - /** - * Private utility methods - */ - - /** - * Find applicable authorization policySets - * It first check if any explicitly policySet was identified - * Otherwise it look into the list of applicablePolicySets - * @param op - * @return - */ - private List findAuthenticationPolicies(Operation op) { - List polices = new ArrayList(); - - // check explicity added policies first - ConfiguredOperation configuredOperation = findOperation(op); - if (configuredOperation!= null && configuredOperation.getPolicySets().size() > 0) { - for ( PolicySet ps : configuredOperation.getPolicySets()) { - for (Object p : ps.getPolicies()) { - if (p instanceof LDAPRealmAuthenticationPolicy) { - polices.add((LDAPRealmAuthenticationPolicy)p); - } - } - } - } - - - // otherwise find applicable policySets - if ( polices.size() == 0) { - // FIXME: How do we get a list of effective policySets for a given operation? - for(Operation operation : operations) { - if (operation!= null && operation.getName() != null && operation.getName().equals(op.getName())) { - for (PolicySet ps : operation.getPolicySets()) { - for (Object p : ps.getPolicies()) { - if (p instanceof LDAPRealmAuthenticationPolicy) { - polices.add((LDAPRealmAuthenticationPolicy)p); - } - } - } - } - } - - if (service instanceof OperationsConfigurator) { - OperationsConfigurator operationsConfigurator = (OperationsConfigurator)service; - for (ConfiguredOperation cop : operationsConfigurator.getConfiguredOperations()) { - if (cop!= null && cop.getName() != null && cop.getName().equals(op.getName())) { - for (PolicySet ps : cop.getApplicablePolicySets()) { - for (Object p : ps.getPolicies()) { - if (p instanceof LDAPRealmAuthenticationPolicy) { - polices.add((LDAPRealmAuthenticationPolicy)p); - } - } - } - } - } - } - - List policySets = service.getPolicySets(); - for (PolicySet ps : policySets) { - for (Object p : ps.getPolicies()) { - if (p instanceof LDAPRealmAuthenticationPolicy) { - polices.add((LDAPRealmAuthenticationPolicy)p); - } - } - } - } - - return polices; - } - - /** - * Find applicable authorization policySets - * It first check if any explicitly policySet was identified - * Otherwise it look into the list of applicablePolicySets - * @param op - * @return - */ - private List findAuthorizationPolicies(Operation op) { - List polices = new ArrayList(); - - // check explicity added policies first - ConfiguredOperation configuredOperation = findOperation(op); - if (configuredOperation!= null && configuredOperation.getPolicySets().size() > 0) { - for ( PolicySet ps : configuredOperation.getPolicySets()) { - for (Object p : ps.getPolicies()) { - if (p instanceof AuthorizationPolicy) { - polices.add((AuthorizationPolicy)p); - } - } - } - } - - // otherwise find applicable policySets - if ( polices.size() == 0) { - // FIXME: How do we get a list of effective policySets for a given operation? - for(Operation operation : operations) { - if (operation!= null && operation.getName() != null && operation.getName().equals(op.getName())) { - for (PolicySet ps : operation.getPolicySets()) { - for (Object p : ps.getPolicies()) { - if (p instanceof AuthorizationPolicy) { - polices.add((AuthorizationPolicy)p); - } - } - } - } - } - - if (service instanceof OperationsConfigurator) { - OperationsConfigurator operationsConfigurator = (OperationsConfigurator)service; - for (ConfiguredOperation cop : operationsConfigurator.getConfiguredOperations()) { - if (cop != null && cop.getName() != null && cop.getName().equals(op.getName())) { - for (PolicySet ps : cop.getApplicablePolicySets()) { - for (Object p : ps.getPolicies()) { - if (p instanceof AuthorizationPolicy) { - polices.add((AuthorizationPolicy)p); - } - } - } - } - } - } - - List policySets = service.getPolicySets(); - for (PolicySet ps : policySets) { - for (Object p : ps.getPolicies()) { - if (p instanceof AuthorizationPolicy) { - polices.add((AuthorizationPolicy)p); - } - } - } - } - - return polices; - } - - /** - * Find a given configured operation - * @param operation - * @return - */ - private ConfiguredOperation findOperation(Operation operation) { - ConfiguredOperation configuredOperation = null; - - for (ConfiguredOperation cOperation : ((OperationsConfigurator)component).getConfiguredOperations()) { - if(cOperation.getName().equals(operation.getName())) { - configuredOperation = cOperation; - break; - } - } - - return configuredOperation; - } -} diff --git a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/extensibility/DefaultLDAPSecurityExtensionPoint.java b/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/extensibility/DefaultLDAPSecurityExtensionPoint.java deleted file mode 100644 index b454289673..0000000000 --- a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/extensibility/DefaultLDAPSecurityExtensionPoint.java +++ /dev/null @@ -1,133 +0,0 @@ -/* - * Licensed to the Apache Software Foundation (ASF) under one - * or more contributor license agreements. See the NOTICE file - * distributed with this work for additional information - * regarding copyright ownership. The ASF licenses this file - * to you under the Apache License, Version 2.0 (the - * "License"); you may not use this file except in compliance - * with the License. You may obtain a copy of the License at - * - * http://www.apache.org/licenses/LICENSE-2.0 - * - * Unless required by applicable law or agreed to in writing, - * software distributed under the License is distributed on an - * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY - * KIND, either express or implied. See the License for the - * specific language governing permissions and limitations - * under the License. - */ - -package org.apache.tuscany.sca.policy.security.http.extensibility; - -import java.io.IOException; -import java.util.ArrayList; -import java.util.List; -import java.util.Set; - -import org.apache.tuscany.sca.core.ExtensionPointRegistry; -import org.apache.tuscany.sca.core.UtilityExtensionPoint; -import org.apache.tuscany.sca.extensibility.ServiceDeclaration; -import org.apache.tuscany.sca.extensibility.ServiceDiscovery; -import org.apache.tuscany.sca.monitor.Monitor; -import org.apache.tuscany.sca.monitor.MonitorFactory; -import org.apache.tuscany.sca.monitor.Problem; -import org.apache.tuscany.sca.monitor.Problem.Severity; - - -/** - * Default Extension point for LDAP Security Handlers - * - * @version $Rev$ $Date$ - */ - -public class DefaultLDAPSecurityExtensionPoint implements LDAPSecurityHandlerExtensionPoint { - private List securityHandlers = new ArrayList(); - - private ExtensionPointRegistry extensionPoints; - private Monitor monitor = null; - - private boolean loaded = false; - - public DefaultLDAPSecurityExtensionPoint(ExtensionPointRegistry extensionPoints) { - this.extensionPoints = extensionPoints; - - UtilityExtensionPoint utilities = extensionPoints.getExtensionPoint(UtilityExtensionPoint.class); - MonitorFactory monitorFactory = utilities.getUtility(MonitorFactory.class); - if (monitorFactory != null) { - this.monitor = monitorFactory.createMonitor(); - } - } - - - public void addLDAPSecurityHandler(LDAPSecurityHandler securityHandler) { - securityHandlers.add(securityHandler); - } - - public void removeLDAPSecurityHandler(LDAPSecurityHandler securityHandler) { - securityHandlers.remove(securityHandler); - } - - public List getLDAPSecurityHandlers() { - loadHandlers(); - return securityHandlers; - } - - - /** - * Private Utility methods - */ - - /** - * Report a exception. - * - * @param problems - * @param message - * @param model - */ - private void error(String message, Object model, Exception ex) { - if (monitor != null) { - Problem problem = monitor.createProblem(this.getClass().getName(), null, Severity.ERROR, model, message, ex); - monitor.problem(problem); - } - } - - /** - * Lazily load artifact processors registered in the extension point. - */ - @SuppressWarnings("unchecked") - private synchronized void loadHandlers() { - if (loaded) { - return; - } - - // Get the proxy factories declarations - Set handlerDeclarations = null; - try { - handlerDeclarations = ServiceDiscovery.getInstance().getServiceDeclarations(LDAPSecurityHandler.class); - } catch (IOException e) { - IllegalStateException ie = new IllegalStateException(e); - error("IllegalStateException", handlerDeclarations, ie); - throw ie; - } - - for (ServiceDeclaration processorDeclaration : handlerDeclarations) { - // Create a factory, and register it - LDAPSecurityHandler securityHandler = null; - try { - Class securityHandlerClass = (Class) processorDeclaration.loadClass(); - - securityHandler = securityHandlerClass.newInstance(); - - } catch (Exception e) { - IllegalStateException ie = new IllegalStateException(e); - error("IllegalStateException", securityHandler, ie); - throw ie; - } - - addLDAPSecurityHandler(securityHandler); - } - - loaded = true; - } - -} diff --git a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/extensibility/LDAPSecurityHandler.java b/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/extensibility/LDAPSecurityHandler.java deleted file mode 100644 index bf64f8fa30..0000000000 --- a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/extensibility/LDAPSecurityHandler.java +++ /dev/null @@ -1,63 +0,0 @@ -/* - * Licensed to the Apache Software Foundation (ASF) under one - * or more contributor license agreements. See the NOTICE file - * distributed with this work for additional information - * regarding copyright ownership. The ASF licenses this file - * to you under the Apache License, Version 2.0 (the - * "License"); you may not use this file except in compliance - * with the License. You may obtain a copy of the License at - * - * http://www.apache.org/licenses/LICENSE-2.0 - * - * Unless required by applicable law or agreed to in writing, - * software distributed under the License is distributed on an - * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY - * KIND, either express or implied. See the License for the - * specific language governing permissions and limitations - * under the License. - */ - -package org.apache.tuscany.sca.policy.security.http.extensibility; - -import java.util.List; - -import org.apache.tuscany.sca.invocation.Message; -import org.apache.tuscany.sca.policy.authorization.AuthorizationPolicy; -import org.apache.tuscany.sca.policy.security.http.LDAPRealmAuthenticationPolicy; - -public interface LDAPSecurityHandler { - - /** - * The Http Service calls this method prior to servicing the specified request. - * This method controls whether the request is processed in the normal manner - * or an error is returned. - * - * If the request requires authentication and the Authorization header - * in the request is missing or not acceptable, then this method should - * set the WWW-Authenticate header in the response object, set the status - * in the response object to Unauthorized(401) and return false. - * See also RFC 2617: HTTP Authentication: Basic and Digest Access Authentication - * (available at http://www.ietf.org/rfc/rfc2617.txt). - * - * If the request requires a secure connection and the getScheme method - * in the request does not return 'https' or some other acceptable secure protocol, - * then this method should set the status in the response object to Forbidden(403) - * and return false. - * - * When this method returns false, the Http Service will send the response back to - * the client, thereby completing the request. When this method returns true, the - * Http Service will proceed with servicing the request. - * - * If the specified request has been authenticated, this method must set the - * AUTHENTICATION_TYPE request attribute to the type of authentication used, - * and the REMOTE_USER request attribute to the remote user - * (request attributes are set using the setAttribute method on the request). - * If this method does not perform any authentication, it must not set these attributes. - * - * @param msg - * @return - */ - void handleSecurity(Message msg, - List authenticationPolicies, - List authorizationPolicies) throws javax.security.auth.login.LoginException; -} diff --git a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/extensibility/LDAPSecurityHandlerExtensionPoint.java b/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/extensibility/LDAPSecurityHandlerExtensionPoint.java deleted file mode 100644 index 73765c0a10..0000000000 --- a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/extensibility/LDAPSecurityHandlerExtensionPoint.java +++ /dev/null @@ -1,50 +0,0 @@ -/* - * Licensed to the Apache Software Foundation (ASF) under one - * or more contributor license agreements. See the NOTICE file - * distributed with this work for additional information - * regarding copyright ownership. The ASF licenses this file - * to you under the Apache License, Version 2.0 (the - * "License"); you may not use this file except in compliance - * with the License. You may obtain a copy of the License at - * - * http://www.apache.org/licenses/LICENSE-2.0 - * - * Unless required by applicable law or agreed to in writing, - * software distributed under the License is distributed on an - * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY - * KIND, either express or implied. See the License for the - * specific language governing permissions and limitations - * under the License. - */ - -package org.apache.tuscany.sca.policy.security.http.extensibility; - -import java.util.List; - -/** - * Extension point for LDAP Security Handlers - * - * @version $Rev$ $Date$ - */ -public interface LDAPSecurityHandlerExtensionPoint { - - /** - * Add a LDAP security handler - * @param securityHandler - */ - void addLDAPSecurityHandler (LDAPSecurityHandler securityHandler); - - /** - * Remove a LDAP security handler - * @param securityHandler - */ - void removeLDAPSecurityHandler (LDAPSecurityHandler securityHandler); - - /** - * Return a list of security handlers - * @return - */ - List getLDAPSecurityHandlers(); - - -} diff --git a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/util/HttpSecurityUtil.java b/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/util/HttpSecurityUtil.java deleted file mode 100644 index 88b2ee9fce..0000000000 --- a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/java/org/apache/tuscany/sca/policy/security/http/util/HttpSecurityUtil.java +++ /dev/null @@ -1,124 +0,0 @@ -/* - * Licensed to the Apache Software Foundation (ASF) under one - * or more contributor license agreements. See the NOTICE file - * distributed with this work for additional information - * regarding copyright ownership. The ASF licenses this file - * to you under the Apache License, Version 2.0 (the - * "License"); you may not use this file except in compliance - * with the License. You may obtain a copy of the License at - * - * http://www.apache.org/licenses/LICENSE-2.0 - * - * Unless required by applicable law or agreed to in writing, - * software distributed under the License is distributed on an - * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY - * KIND, either express or implied. See the License for the - * specific language governing permissions and limitations - * under the License. - */ - -package org.apache.tuscany.sca.policy.security.http.util; - -import java.util.StringTokenizer; - -import javax.security.auth.Subject; -import javax.servlet.http.HttpServletRequest; - -import org.apache.commons.codec.binary.Base64; -import org.apache.tuscany.sca.invocation.Message; -import org.apache.tuscany.sca.policy.authentication.basic.BasicAuthenticationPrincipal; - -/** - * - * @version $Rev$ $Date$ - */ -public class HttpSecurityUtil { - - /** - * Check if Authorization header is available - * @param request - * @param response - * @return - */ - public static boolean hasAuthorizationHeader(HttpServletRequest request) { - boolean result = false; - if(request.getHeader("Authorization") != null) { - result = true; - } - - return result; - } - - /** - * - * @param request - * @param response - * @return - */ - public static String getAuthorizationHeader(HttpServletRequest request) { - return request.getHeader("Authorization"); - } - - public static Subject getSubject(Message msg){ - - Subject subject = null; - HttpServletRequest request = null; - - for (Object header : msg.getHeaders()){ - if (header instanceof Subject){ - subject = (Subject)header; - break; - } else if( header instanceof HttpServletRequest) { - request = (HttpServletRequest) header; - } - } - - //if there is no subject, but request is available - //try to build a subject from authorization header - if (subject == null & request != null) { - if ( hasAuthorizationHeader(request)) { - subject = getSubject(getAuthorizationHeader(request)); - } - - } - if (subject == null){ - subject = new Subject(); - msg.getHeaders().add(subject); - } - - return subject; - - } - - public static Subject getSubject(String httpAuthorizationHeader){ - - - // get the security context - Subject subject = new Subject(); - String user = null; - String password = null; - - if (httpAuthorizationHeader != null) { - StringTokenizer tokens = new StringTokenizer(httpAuthorizationHeader); - if (tokens.hasMoreTokens()) { - String basic = tokens.nextToken(); - if (basic.equalsIgnoreCase("Basic")) { - String credentials = tokens.nextToken(); - String userAndPassword = new String(Base64.decodeBase64(credentials.getBytes())); - int colon = userAndPassword.indexOf(":"); - if (colon != -1) { - user = userAndPassword.substring(0, colon); - password = userAndPassword.substring(colon + 1); - } - } - } - } - - if(user != null && password != null) { - BasicAuthenticationPrincipal principal = new BasicAuthenticationPrincipal(user, password); - subject.getPrincipals().add(principal); - } - - return subject; - } -} diff --git a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/resources/META-INF/services/org.apache.tuscany.sca.contribution.processor.StAXArtifactProcessor b/branches/sca-java-1.5.2/modules/policy-security-http/src/main/resources/META-INF/services/org.apache.tuscany.sca.contribution.processor.StAXArtifactProcessor deleted file mode 100644 index fd57d8a44f..0000000000 --- a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/resources/META-INF/services/org.apache.tuscany.sca.contribution.processor.StAXArtifactProcessor +++ /dev/null @@ -1,21 +0,0 @@ -# Licensed to the Apache Software Foundation (ASF) under one -# or more contributor license agreements. See the NOTICE file -# distributed with this work for additional information -# regarding copyright ownership. The ASF licenses this file -# to you under the Apache License, Version 2.0 (the -# "License"); you may not use this file except in compliance -# with the License. You may obtain a copy of the License at -# -# http://www.apache.org/licenses/LICENSE-2.0 -# -# Unless required by applicable law or agreed to in writing, -# software distributed under the License is distributed on an -# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY -# KIND, either express or implied. See the License for the -# specific language governing permissions and limitations -# under the License. - -# Implementation class for the artifact processor extension -org.apache.tuscany.sca.policy.authentication.AuthenticationConfigurationPolicyProcessor;qname=http://tuscany.apache.org/xmlns/sca/1.0#authenticationConfiguration,model=org.apache.tuscany.sca.policy.authentication.AuthenticationConfigurationPolicy -org.apache.tuscany.sca.policy.confidentiality.ConfidentialityPolicyProcessor;qname=http://tuscany.apache.org/xmlns/sca/1.0#confidentiality,model=org.apache.tuscany.sca.policy.confidentiality.ConfidentialityPolicy -org.apache.tuscany.sca.policy.security.http.LDAPRealmAuthenticationPolicyProcessor;qname=http://tuscany.apache.org/xmlns/sca/1.0#ldapRealmAuthentication,model=org.apache.tuscany.sca.policy.security.http.LDAPRealmAuthenticationPolicy diff --git a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/resources/META-INF/services/org.apache.tuscany.sca.policy.security.http.extensibility.LDAPSecurityHandlerExtensionPoint b/branches/sca-java-1.5.2/modules/policy-security-http/src/main/resources/META-INF/services/org.apache.tuscany.sca.policy.security.http.extensibility.LDAPSecurityHandlerExtensionPoint deleted file mode 100644 index 79ee88142a..0000000000 --- a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/resources/META-INF/services/org.apache.tuscany.sca.policy.security.http.extensibility.LDAPSecurityHandlerExtensionPoint +++ /dev/null @@ -1,18 +0,0 @@ -# Licensed to the Apache Software Foundation (ASF) under one -# or more contributor license agreements. See the NOTICE file -# distributed with this work for additional information -# regarding copyright ownership. The ASF licenses this file -# to you under the Apache License, Version 2.0 (the -# "License"); you may not use this file except in compliance -# with the License. You may obtain a copy of the License at -# -# http://www.apache.org/licenses/LICENSE-2.0 -# -# Unless required by applicable law or agreed to in writing, -# software distributed under the License is distributed on an -# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY -# KIND, either express or implied. See the License for the -# specific language governing permissions and limitations -# under the License. - -org.apache.tuscany.sca.policy.security.http.extensibility.DefaultLDAPSecurityExtensionPoint \ No newline at end of file diff --git a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/resources/META-INF/services/org.apache.tuscany.sca.provider.PolicyProviderFactory b/branches/sca-java-1.5.2/modules/policy-security-http/src/main/resources/META-INF/services/org.apache.tuscany.sca.provider.PolicyProviderFactory deleted file mode 100644 index 5a92f0dfd7..0000000000 --- a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/resources/META-INF/services/org.apache.tuscany.sca.provider.PolicyProviderFactory +++ /dev/null @@ -1,19 +0,0 @@ -# Licensed to the Apache Software Foundation (ASF) under one -# or more contributor license agreements. See the NOTICE file -# distributed with this work for additional information -# regarding copyright ownership. The ASF licenses this file -# to you under the Apache License, Version 2.0 (the -# "License"); you may not use this file except in compliance -# with the License. You may obtain a copy of the License at -# -# http://www.apache.org/licenses/LICENSE-2.0 -# -# Unless required by applicable law or agreed to in writing, -# software distributed under the License is distributed on an -# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY -# KIND, either express or implied. See the License for the -# specific language governing permissions and limitations -# under the License. - -# Implementation class for the policy extension -org.apache.tuscany.sca.policy.security.http.LDAPRealmAuthenticationPolicyProviderFactory;model=org.apache.tuscany.sca.policy.security.http.LDAPRealmAuthenticationPolicy diff --git a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/resources/policy-security-http-validation-messages.properties b/branches/sca-java-1.5.2/modules/policy-security-http/src/main/resources/policy-security-http-validation-messages.properties deleted file mode 100644 index ebb47f2b60..0000000000 --- a/branches/sca-java-1.5.2/modules/policy-security-http/src/main/resources/policy-security-http-validation-messages.properties +++ /dev/null @@ -1,22 +0,0 @@ -# -# -# Licensed to the Apache Software Foundation (ASF) under one -# or more contributor license agreements. See the NOTICE file -# distributed with this work for additional information -# regarding copyright ownership. The ASF licenses this file -# to you under the Apache License, Version 2.0 (the -# "License"); you may not use this file except in compliance -# with the License. You may obtain a copy of the License at -# -# http://www.apache.org/licenses/LICENSE-2.0 -# -# Unless required by applicable law or agreed to in writing, -# software distributed under the License is distributed on an -# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY -# KIND, either express or implied. See the License for the -# specific language governing permissions and limitations -# under the License. -# -# -RequiredAttributeRolesMissing = Required attribute 'roles' is missing. -ClassNotFoundException = Class Not Found Exception: {0} \ No newline at end of file -- cgit v1.2.3