2010-11-05 19:47:52 +01:00
|
|
|
/**
|
|
|
|
|
* Copyright (c) 2010, Sebastian Sdorra
|
|
|
|
|
* All rights reserved.
|
|
|
|
|
*
|
|
|
|
|
* Redistribution and use in source and binary forms, with or without
|
|
|
|
|
* modification, are permitted provided that the following conditions are met:
|
|
|
|
|
*
|
|
|
|
|
* 1. Redistributions of source code must retain the above copyright notice,
|
|
|
|
|
* this list of conditions and the following disclaimer.
|
|
|
|
|
* 2. Redistributions in binary form must reproduce the above copyright notice,
|
|
|
|
|
* this list of conditions and the following disclaimer in the documentation
|
|
|
|
|
* and/or other materials provided with the distribution.
|
|
|
|
|
* 3. Neither the name of SCM-Manager; nor the names of its
|
|
|
|
|
* contributors may be used to endorse or promote products derived from this
|
|
|
|
|
* software without specific prior written permission.
|
|
|
|
|
*
|
|
|
|
|
* THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
|
|
|
|
|
* AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
|
|
|
|
|
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
|
|
|
|
|
* DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE FOR ANY
|
|
|
|
|
* DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
|
|
|
|
|
* (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
|
|
|
|
|
* LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON
|
|
|
|
|
* ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
|
|
|
|
|
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
|
|
|
|
|
* SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
|
|
|
|
*
|
|
|
|
|
* http://bitbucket.org/sdorra/scm-manager
|
|
|
|
|
*
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2012-03-16 18:50:32 +01:00
|
|
|
package sonia.scm.user;
|
2010-11-05 19:47:52 +01:00
|
|
|
|
2016-12-06 22:04:13 +01:00
|
|
|
import com.github.sdorra.ssp.PermissionActionCheck;
|
2010-11-28 11:32:41 +01:00
|
|
|
import com.google.inject.Inject;
|
2010-11-05 19:47:52 +01:00
|
|
|
import com.google.inject.Singleton;
|
2018-10-17 11:58:37 +02:00
|
|
|
import org.apache.shiro.SecurityUtils;
|
2010-11-05 19:47:52 +01:00
|
|
|
import org.slf4j.Logger;
|
|
|
|
|
import org.slf4j.LoggerFactory;
|
2018-10-26 15:24:25 +02:00
|
|
|
import sonia.scm.ContextEntry;
|
2018-08-01 09:59:23 +02:00
|
|
|
import sonia.scm.EagerSingleton;
|
2014-01-11 13:45:23 +01:00
|
|
|
import sonia.scm.HandlerEventType;
|
2018-07-12 10:15:32 +02:00
|
|
|
import sonia.scm.ManagerDaoAdapter;
|
2018-08-21 07:53:33 +02:00
|
|
|
import sonia.scm.NotFoundException;
|
2010-11-05 19:47:52 +01:00
|
|
|
import sonia.scm.SCMContextProvider;
|
2011-02-12 15:43:27 +01:00
|
|
|
import sonia.scm.TransformFilter;
|
2011-02-11 19:44:10 +01:00
|
|
|
import sonia.scm.search.SearchRequest;
|
|
|
|
|
import sonia.scm.search.SearchUtil;
|
2011-06-09 21:32:30 +02:00
|
|
|
import sonia.scm.util.CollectionAppender;
|
2010-11-26 15:37:35 +01:00
|
|
|
import sonia.scm.util.Util;
|
2010-11-05 19:47:52 +01:00
|
|
|
|
|
|
|
|
import java.io.IOException;
|
2018-08-01 09:59:23 +02:00
|
|
|
import java.util.ArrayList;
|
|
|
|
|
import java.util.Collection;
|
|
|
|
|
import java.util.Collections;
|
|
|
|
|
import java.util.Comparator;
|
|
|
|
|
import java.util.List;
|
2019-04-09 13:09:16 +02:00
|
|
|
import java.util.function.Predicate;
|
2010-11-05 19:47:52 +01:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
*
|
|
|
|
|
* @author Sebastian Sdorra
|
|
|
|
|
*/
|
2018-08-01 09:59:23 +02:00
|
|
|
@Singleton @EagerSingleton
|
2012-03-16 18:50:32 +01:00
|
|
|
public class DefaultUserManager extends AbstractUserManager
|
2010-11-05 19:47:52 +01:00
|
|
|
{
|
|
|
|
|
|
|
|
|
|
/** Field description */
|
2010-12-05 19:26:38 +01:00
|
|
|
public static final String STORE_NAME = "users";
|
2010-11-05 19:47:52 +01:00
|
|
|
|
2010-11-26 15:37:35 +01:00
|
|
|
/** the logger for XmlUserManager */
|
2010-11-05 19:47:52 +01:00
|
|
|
private static final Logger logger =
|
2012-03-16 18:50:32 +01:00
|
|
|
LoggerFactory.getLogger(DefaultUserManager.class);
|
2010-11-05 19:47:52 +01:00
|
|
|
|
2010-11-28 11:32:41 +01:00
|
|
|
//~--- constructors ---------------------------------------------------------
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Constructs ...
|
|
|
|
|
*
|
2012-03-15 21:38:47 +01:00
|
|
|
* @param userDAO
|
2010-11-28 11:32:41 +01:00
|
|
|
*/
|
|
|
|
|
@Inject
|
2014-01-03 11:32:40 +01:00
|
|
|
public DefaultUserManager(UserDAO userDAO)
|
2010-11-28 11:32:41 +01:00
|
|
|
{
|
2012-03-15 21:38:47 +01:00
|
|
|
this.userDAO = userDAO;
|
2018-08-21 07:53:33 +02:00
|
|
|
this.managerDaoAdapter = new ManagerDaoAdapter<>(userDAO);
|
2010-11-28 11:32:41 +01:00
|
|
|
}
|
|
|
|
|
|
2010-11-05 19:47:52 +01:00
|
|
|
//~--- methods --------------------------------------------------------------
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Method description
|
|
|
|
|
*
|
|
|
|
|
*
|
|
|
|
|
* @throws IOException
|
|
|
|
|
*/
|
|
|
|
|
@Override
|
|
|
|
|
public void close() throws IOException
|
|
|
|
|
{
|
|
|
|
|
|
|
|
|
|
// do nothing
|
|
|
|
|
}
|
|
|
|
|
|
2010-12-04 15:58:13 +01:00
|
|
|
/**
|
|
|
|
|
* Method description
|
|
|
|
|
*
|
|
|
|
|
*
|
|
|
|
|
* @param username
|
|
|
|
|
*
|
|
|
|
|
* @return
|
|
|
|
|
*/
|
|
|
|
|
@Override
|
|
|
|
|
public boolean contains(String username)
|
|
|
|
|
{
|
2012-03-15 21:38:47 +01:00
|
|
|
return userDAO.contains(username);
|
2010-12-04 15:58:13 +01:00
|
|
|
}
|
|
|
|
|
|
2010-11-05 19:47:52 +01:00
|
|
|
/**
|
|
|
|
|
* Method description
|
|
|
|
|
*
|
|
|
|
|
*
|
|
|
|
|
* @param user
|
|
|
|
|
*
|
|
|
|
|
* @throws IOException
|
|
|
|
|
*/
|
|
|
|
|
@Override
|
2018-10-25 15:31:42 +02:00
|
|
|
public User create(User user) {
|
2012-03-16 09:44:32 +01:00
|
|
|
String type = user.getType();
|
2018-07-12 10:15:32 +02:00
|
|
|
if (Util.isEmpty(type)) {
|
2012-03-16 09:44:32 +01:00
|
|
|
user.setType(userDAO.getType());
|
|
|
|
|
}
|
|
|
|
|
|
2018-07-12 10:15:32 +02:00
|
|
|
logger.info("create user {} of type {}", user.getName(), user.getType());
|
2010-11-05 19:47:52 +01:00
|
|
|
|
2018-07-12 10:15:32 +02:00
|
|
|
return managerDaoAdapter.create(
|
|
|
|
|
user,
|
|
|
|
|
UserPermissions::create,
|
|
|
|
|
newUser -> fireEvent(HandlerEventType.BEFORE_CREATE, newUser),
|
|
|
|
|
newUser -> fireEvent(HandlerEventType.CREATE, newUser)
|
|
|
|
|
);
|
2010-11-05 19:47:52 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
@Override
|
2018-10-16 10:47:52 +02:00
|
|
|
public void delete(User user) {
|
2018-07-12 10:30:33 +02:00
|
|
|
logger.info("delete user {} of type {}", user.getName(), user.getType());
|
|
|
|
|
managerDaoAdapter.delete(
|
|
|
|
|
user,
|
|
|
|
|
() -> UserPermissions.delete(user.getName()),
|
|
|
|
|
toDelete -> fireEvent(HandlerEventType.BEFORE_DELETE, toDelete),
|
|
|
|
|
toDelete -> fireEvent(HandlerEventType.DELETE, toDelete)
|
|
|
|
|
);
|
2010-11-05 19:47:52 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Method description
|
|
|
|
|
*
|
|
|
|
|
*
|
|
|
|
|
* @param context
|
|
|
|
|
*/
|
|
|
|
|
@Override
|
|
|
|
|
public void init(SCMContextProvider context)
|
|
|
|
|
{
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Method description
|
|
|
|
|
*
|
|
|
|
|
*
|
|
|
|
|
* @param user
|
|
|
|
|
*
|
|
|
|
|
* @throws IOException
|
|
|
|
|
*/
|
|
|
|
|
@Override
|
2018-10-16 10:47:52 +02:00
|
|
|
public void modify(User user) {
|
2018-10-12 15:20:58 +02:00
|
|
|
logger.info("modify user {} of type {}", user.getName(), user.getType());
|
2018-07-12 10:15:32 +02:00
|
|
|
managerDaoAdapter.modify(
|
|
|
|
|
user,
|
2018-10-17 11:58:37 +02:00
|
|
|
UserPermissions::modify,
|
2018-07-12 10:15:32 +02:00
|
|
|
notModified -> fireEvent(HandlerEventType.BEFORE_MODIFY, user, notModified),
|
|
|
|
|
notModified -> fireEvent(HandlerEventType.MODIFY, user, notModified));
|
2010-11-05 19:47:52 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Method description
|
|
|
|
|
*
|
|
|
|
|
*
|
|
|
|
|
* @param user
|
|
|
|
|
*
|
|
|
|
|
* @throws IOException
|
|
|
|
|
*/
|
2010-11-26 15:37:35 +01:00
|
|
|
@Override
|
2018-10-16 10:47:52 +02:00
|
|
|
public void refresh(User user) {
|
2010-12-05 17:33:29 +01:00
|
|
|
if (logger.isInfoEnabled())
|
|
|
|
|
{
|
|
|
|
|
logger.info("refresh user {} of type {}", user.getName(), user.getType());
|
|
|
|
|
}
|
|
|
|
|
|
2016-12-06 22:04:13 +01:00
|
|
|
UserPermissions.read(user).check();
|
2012-03-15 21:38:47 +01:00
|
|
|
User fresh = userDAO.get(user.getName());
|
2010-11-05 19:47:52 +01:00
|
|
|
|
|
|
|
|
if (fresh == null)
|
|
|
|
|
{
|
2018-10-18 13:12:16 +02:00
|
|
|
throw new NotFoundException(User.class, user.getName());
|
2010-11-05 19:47:52 +01:00
|
|
|
}
|
|
|
|
|
|
2010-11-25 21:56:06 +01:00
|
|
|
fresh.copyProperties(user);
|
2010-11-05 19:47:52 +01:00
|
|
|
}
|
|
|
|
|
|
2011-02-11 19:44:10 +01:00
|
|
|
/**
|
|
|
|
|
* Method description
|
|
|
|
|
*
|
|
|
|
|
*
|
|
|
|
|
* @param searchRequest
|
|
|
|
|
*
|
|
|
|
|
* @return
|
|
|
|
|
*/
|
|
|
|
|
@Override
|
|
|
|
|
public Collection<User> search(final SearchRequest searchRequest)
|
|
|
|
|
{
|
2011-02-12 11:24:08 +01:00
|
|
|
if (logger.isDebugEnabled())
|
|
|
|
|
{
|
|
|
|
|
logger.debug("search user with query {}", searchRequest.getQuery());
|
|
|
|
|
}
|
|
|
|
|
|
2016-12-06 22:04:13 +01:00
|
|
|
final PermissionActionCheck<User> check = UserPermissions.read();
|
2019-04-01 13:51:34 +02:00
|
|
|
return SearchUtil.search(searchRequest, userDAO.getAll(), new TransformFilter<User, User>() {
|
2011-02-12 15:43:27 +01:00
|
|
|
@Override
|
|
|
|
|
public User accept(User user)
|
2011-02-11 19:44:10 +01:00
|
|
|
{
|
2011-02-12 15:43:27 +01:00
|
|
|
User result = null;
|
2016-12-06 22:04:13 +01:00
|
|
|
if (check.isPermitted(user) && matches(searchRequest, user)) {
|
2011-02-12 15:43:27 +01:00
|
|
|
result = user.clone();
|
2011-02-11 19:44:10 +01:00
|
|
|
}
|
2011-02-12 15:43:27 +01:00
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
});
|
2011-02-11 19:44:10 +01:00
|
|
|
}
|
2018-10-12 11:06:53 +02:00
|
|
|
|
2016-12-06 22:04:13 +01:00
|
|
|
private boolean matches(SearchRequest searchRequest, User user) {
|
|
|
|
|
return SearchUtil.matchesOne(searchRequest, user.getName(), user.getDisplayName(), user.getMail());
|
|
|
|
|
}
|
2011-02-11 19:44:10 +01:00
|
|
|
|
2010-11-05 19:47:52 +01:00
|
|
|
//~--- get methods ----------------------------------------------------------
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Method description
|
|
|
|
|
*
|
|
|
|
|
*
|
|
|
|
|
* @param id
|
|
|
|
|
*
|
|
|
|
|
* @return
|
|
|
|
|
*/
|
2010-11-26 15:37:35 +01:00
|
|
|
@Override
|
2010-11-05 19:47:52 +01:00
|
|
|
public User get(String id)
|
|
|
|
|
{
|
2016-12-06 22:04:13 +01:00
|
|
|
UserPermissions.read().check(id);
|
2018-10-12 11:06:53 +02:00
|
|
|
|
2012-03-15 21:38:47 +01:00
|
|
|
User user = userDAO.get(id);
|
2010-11-05 19:47:52 +01:00
|
|
|
|
2010-11-07 15:19:00 +01:00
|
|
|
if (user != null)
|
2010-11-05 19:47:52 +01:00
|
|
|
{
|
2010-11-07 15:19:00 +01:00
|
|
|
user = user.clone();
|
2010-11-05 19:47:52 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return user;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Method description
|
|
|
|
|
*
|
|
|
|
|
*
|
|
|
|
|
* @return
|
|
|
|
|
*/
|
2010-11-26 15:37:35 +01:00
|
|
|
@Override
|
2010-11-05 19:47:52 +01:00
|
|
|
public Collection<User> getAll()
|
2011-06-09 22:10:30 +02:00
|
|
|
{
|
2019-04-09 13:09:16 +02:00
|
|
|
return getAll(user -> true, null);
|
2011-06-09 22:10:30 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Method description
|
|
|
|
|
*
|
|
|
|
|
*
|
|
|
|
|
* @param comparator
|
|
|
|
|
*
|
|
|
|
|
* @return
|
|
|
|
|
*/
|
|
|
|
|
@Override
|
2019-04-09 13:09:16 +02:00
|
|
|
public Collection<User> getAll(Predicate<User> filter, Comparator<User> comparator)
|
2010-11-05 19:47:52 +01:00
|
|
|
{
|
2016-12-06 22:04:13 +01:00
|
|
|
List<User> users = new ArrayList<>();
|
2010-11-05 19:47:52 +01:00
|
|
|
|
2016-12-06 22:04:13 +01:00
|
|
|
PermissionActionCheck<User> check = UserPermissions.read();
|
|
|
|
|
for (User user : userDAO.getAll()) {
|
2019-04-09 13:09:16 +02:00
|
|
|
if (filter.test(user) && check.isPermitted(user)) {
|
2016-12-06 22:04:13 +01:00
|
|
|
users.add(user.clone());
|
|
|
|
|
}
|
2010-11-05 19:47:52 +01:00
|
|
|
}
|
|
|
|
|
|
2016-12-06 22:04:13 +01:00
|
|
|
if (comparator != null) {
|
2011-06-09 22:10:30 +02:00
|
|
|
Collections.sort(users, comparator);
|
|
|
|
|
}
|
|
|
|
|
|
2010-11-05 19:47:52 +01:00
|
|
|
return users;
|
|
|
|
|
}
|
|
|
|
|
|
2011-06-09 21:32:30 +02:00
|
|
|
/**
|
|
|
|
|
* Method description
|
|
|
|
|
*
|
|
|
|
|
*
|
2011-06-09 21:46:22 +02:00
|
|
|
*
|
|
|
|
|
* @param comaparator
|
2011-06-09 21:32:30 +02:00
|
|
|
* @param start
|
|
|
|
|
* @param limit
|
|
|
|
|
*
|
|
|
|
|
* @return
|
|
|
|
|
*/
|
|
|
|
|
@Override
|
2016-12-06 22:04:13 +01:00
|
|
|
public Collection<User> getAll(Comparator<User> comaparator, int start, int limit) {
|
|
|
|
|
final PermissionActionCheck<User> check = UserPermissions.read();
|
2012-03-15 21:38:47 +01:00
|
|
|
return Util.createSubCollection(userDAO.getAll(), comaparator,
|
2012-08-30 13:20:26 +02:00
|
|
|
new CollectionAppender<User>()
|
2011-06-09 21:32:30 +02:00
|
|
|
{
|
|
|
|
|
@Override
|
|
|
|
|
public void append(Collection<User> collection, User item)
|
|
|
|
|
{
|
2016-12-06 22:04:13 +01:00
|
|
|
if (check.isPermitted(item)) {
|
|
|
|
|
collection.add(item.clone());
|
|
|
|
|
}
|
2011-06-09 21:32:30 +02:00
|
|
|
}
|
|
|
|
|
}, start, limit);
|
|
|
|
|
}
|
|
|
|
|
|
2011-06-09 21:46:22 +02:00
|
|
|
/**
|
|
|
|
|
* Method description
|
|
|
|
|
*
|
|
|
|
|
*
|
|
|
|
|
* @param start
|
|
|
|
|
* @param limit
|
|
|
|
|
*
|
|
|
|
|
* @return
|
|
|
|
|
*/
|
|
|
|
|
@Override
|
|
|
|
|
public Collection<User> getAll(int start, int limit)
|
|
|
|
|
{
|
|
|
|
|
return getAll(null, start, limit);
|
|
|
|
|
}
|
|
|
|
|
|
2012-03-16 09:44:32 +01:00
|
|
|
/**
|
|
|
|
|
* Method description
|
|
|
|
|
*
|
|
|
|
|
*
|
|
|
|
|
* @return
|
|
|
|
|
*/
|
|
|
|
|
@Override
|
|
|
|
|
public String getDefaultType()
|
|
|
|
|
{
|
|
|
|
|
return userDAO.getType();
|
|
|
|
|
}
|
|
|
|
|
|
2011-02-12 19:55:18 +01:00
|
|
|
/**
|
|
|
|
|
* Method description
|
|
|
|
|
*
|
|
|
|
|
*
|
|
|
|
|
* @return
|
|
|
|
|
*/
|
|
|
|
|
@Override
|
|
|
|
|
public Long getLastModified()
|
|
|
|
|
{
|
2012-03-15 21:38:47 +01:00
|
|
|
return userDAO.getLastModified();
|
2011-02-12 19:55:18 +01:00
|
|
|
}
|
|
|
|
|
|
2010-11-05 19:47:52 +01:00
|
|
|
//~--- methods --------------------------------------------------------------
|
|
|
|
|
|
2018-10-17 11:58:37 +02:00
|
|
|
@Override
|
|
|
|
|
public void changePasswordForLoggedInUser(String oldPassword, String newPassword) {
|
|
|
|
|
User user = get((String) SecurityUtils.getSubject().getPrincipals().getPrimaryPrincipal());
|
|
|
|
|
|
|
|
|
|
if (!user.getPassword().equals(oldPassword)) {
|
2019-03-12 15:10:43 +01:00
|
|
|
throw new InvalidPasswordException(ContextEntry.ContextBuilder.entity("PasswordChange", "-").in(User.class, user.getName()));
|
2018-10-17 11:58:37 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
user.setPassword(newPassword);
|
|
|
|
|
|
|
|
|
|
managerDaoAdapter.modify(
|
|
|
|
|
user,
|
|
|
|
|
UserPermissions::changePassword,
|
|
|
|
|
notModified -> fireEvent(HandlerEventType.BEFORE_MODIFY, user, notModified),
|
|
|
|
|
notModified -> fireEvent(HandlerEventType.MODIFY, user, notModified));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
@Override
|
|
|
|
|
public void overwritePassword(String userId, String newPassword) {
|
|
|
|
|
User user = get(userId);
|
|
|
|
|
if (user == null) {
|
2018-10-18 13:12:16 +02:00
|
|
|
throw new NotFoundException(User.class, userId);
|
2018-10-17 11:58:37 +02:00
|
|
|
}
|
|
|
|
|
if (!isTypeDefault(user)) {
|
2019-03-12 15:10:43 +01:00
|
|
|
throw new ChangePasswordNotAllowedException(ContextEntry.ContextBuilder.entity("PasswordChange", "-").in(User.class, user.getName()), user.getType());
|
2018-10-17 11:58:37 +02:00
|
|
|
}
|
|
|
|
|
user.setPassword(newPassword);
|
|
|
|
|
this.modify(user);
|
|
|
|
|
}
|
|
|
|
|
|
2010-11-05 19:47:52 +01:00
|
|
|
//~--- fields ---------------------------------------------------------------
|
|
|
|
|
|
2014-01-03 11:32:40 +01:00
|
|
|
private final UserDAO userDAO;
|
2018-08-21 07:53:33 +02:00
|
|
|
private final ManagerDaoAdapter<User> managerDaoAdapter;
|
2010-11-05 19:47:52 +01:00
|
|
|
}
|
