org.argeo.cms/src/org/argeo/cms/spring/AbstractSystemExecution.java

   1 /*
   2  * Copyright (C) 2007-2012 Argeo GmbH
   3  *
   4  * Licensed under the Apache License, Version 2.0 (the "License");
   5  * you may not use this file except in compliance with the License.
   6  * You may obtain a copy of the License at
   7  *
   8  *         http://www.apache.org/licenses/LICENSE-2.0
   9  *
  10  * Unless required by applicable law or agreed to in writing, software
  11  * distributed under the License is distributed on an "AS IS" BASIS,
  12  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  13  * See the License for the specific language governing permissions and
  14  * limitations under the License.
  15  */
  16 package org.argeo.cms.spring;
  17
  18 import javax.security.auth.Subject;
  19 import javax.security.auth.login.LoginContext;
  20 import javax.security.auth.login.LoginException;
  21
  22 import org.apache.commons.logging.Log;
  23 import org.apache.commons.logging.LogFactory;
  24 import org.argeo.cms.CmsException;
  25 import org.argeo.node.NodeConstants;
  26
  27 /** Provides base method for executing code with system authorization. */
  28 abstract class AbstractSystemExecution {
  29         private final static Log log = LogFactory.getLog(AbstractSystemExecution.class);
  30         private final Subject subject = new Subject();
  31
  32         /**
  33          * Authenticate the calling thread to the underlying
  34          * {@link AuthenticationManager}
  35          */
  36         protected void authenticateAsSystem() {
  37                 ClassLoader origClassLoader = Thread.currentThread().getContextClassLoader();
  38                 Thread.currentThread().setContextClassLoader(getClass().getClassLoader());
  39                 try {
  40                         LoginContext lc = new LoginContext(NodeConstants.LOGIN_CONTEXT_DATA_ADMIN, subject);
  41                         lc.login();
  42                 } catch (LoginException e) {
  43                         throw new CmsException("Cannot login as system", e);
  44                 } finally {
  45                         Thread.currentThread().setContextClassLoader(origClassLoader);
  46                 }
  47                 if (log.isTraceEnabled())
  48                         log.trace("System authenticated");
  49         }
  50
  51         protected void deauthenticateAsSystem() {
  52                 ClassLoader origClassLoader = Thread.currentThread().getContextClassLoader();
  53                 Thread.currentThread().setContextClassLoader(getClass().getClassLoader());
  54                 try {
  55                         LoginContext lc = new LoginContext(NodeConstants.LOGIN_CONTEXT_DATA_ADMIN, subject);
  56                         lc.logout();
  57                 } catch (LoginException e) {
  58                         throw new CmsException("Cannot logout as system", e);
  59                 } finally {
  60                         Thread.currentThread().setContextClassLoader(origClassLoader);
  61                 }
  62         }
  63
  64         protected Subject getSubject() {
  65                 return subject;
  66         }
  67 }