X-Git-Url: http://git.argeo.org/?a=blobdiff_plain;f=org.argeo.security.core%2Fsrc%2Forg%2Fargeo%2Fsecurity%2Fjcr%2FOsJcrUserAdminService.java;fp=org.argeo.security.core%2Fsrc%2Forg%2Fargeo%2Fsecurity%2Fjcr%2FOsJcrUserAdminService.java;h=c25bdb86577f70213aa6e9e95528bbc4ac15b27a;hb=10ed6557c631d5feee8541badd0c9f16a9e791c6;hp=0000000000000000000000000000000000000000;hpb=864072113f7a44fd2a291a4cb50659d6e67f8c29;p=lgpl%2Fargeo-commons.git

diff --git a/org.argeo.security.core/src/org/argeo/security/jcr/OsJcrUserAdminService.java b/org.argeo.security.core/src/org/argeo/security/jcr/OsJcrUserAdminService.java
new file mode 100644
index 000000000..c25bdb865
--- /dev/null
+++ b/org.argeo.security.core/src/org/argeo/security/jcr/OsJcrUserAdminService.java
@@ -0,0 +1,153 @@
+/*
+ * Copyright (C) 2007-2012 Argeo GmbH
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *         http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.argeo.security.jcr;
+
+import java.util.ArrayList;
+import java.util.HashSet;
+import java.util.List;
+import java.util.Set;
+
+import javax.jcr.Node;
+import javax.jcr.Repository;
+import javax.jcr.RepositoryException;
+import javax.jcr.Session;
+
+import org.argeo.ArgeoException;
+import org.argeo.jcr.JcrUtils;
+import org.argeo.jcr.UserJcrUtils;
+import org.argeo.security.UserAdminService;
+import org.springframework.dao.DataAccessException;
+import org.springframework.security.userdetails.User;
+import org.springframework.security.userdetails.UserDetails;
+import org.springframework.security.userdetails.UsernameNotFoundException;
+
+/**
+ * Dummy user service to be used when running as a single OS user (typically
+ * desktop). TODO integrate with JCR user / groups
+ */
+public class OsJcrUserAdminService implements UserAdminService {
+	private Repository repository;
+
+	/** In memory roles provided by applications. */
+	private List<String> roles = new ArrayList<String>();
+
+	// private Session adminSession;
+
+	public void init() {
+		// try {
+		// adminSession = repository.login();
+		// } catch (RepositoryException e) {
+		// throw new ArgeoException("Cannot initialize", e);
+		// }
+	}
+
+	public void destroy() {
+		// JcrUtils.logoutQuietly(adminSession);
+	}
+
+	/** <b>Unsupported</b> */
+	public void createUser(UserDetails user) {
+		throw new UnsupportedOperationException();
+	}
+
+	/** Does nothing */
+	public void updateUser(UserDetails user) {
+
+	}
+
+	/** <b>Unsupported</b> */
+	public void deleteUser(String username) {
+		throw new UnsupportedOperationException();
+	}
+
+	/** <b>Unsupported</b> */
+	public void changePassword(String oldPassword, String newPassword) {
+		throw new UnsupportedOperationException();
+	}
+
+	public boolean userExists(String username) {
+		if (getSPropertyUsername().equals(username))
+			return true;
+		else
+			return false;
+	}
+
+	public UserDetails loadUserByUsername(String username)
+			throws UsernameNotFoundException, DataAccessException {
+		if (getSPropertyUsername().equals(username)) {
+			UserDetails userDetails;
+			if (repository != null) {
+				Session adminSession = null;
+				try {
+					adminSession = repository.login();
+					Node userProfile = UserJcrUtils.getUserProfile(
+							adminSession, username);
+					userDetails = new JcrUserDetails(userProfile, "",
+							OsJcrAuthenticationProvider.getBaseAuthorities());
+				} catch (RepositoryException e) {
+					throw new ArgeoException(
+							"Cannot retrieve user profile for " + username, e);
+				} finally {
+					JcrUtils.logoutQuietly(adminSession);
+				}
+			} else {
+				userDetails = new User(username, "", true, true, true, true,
+						OsJcrAuthenticationProvider.getBaseAuthorities());
+			}
+			return userDetails;
+		} else {
+			throw new UnsupportedOperationException();
+		}
+	}
+
+	protected final String getSPropertyUsername() {
+		return System.getProperty("user.name");
+	}
+
+	public Set<String> listUsers() {
+		Set<String> set = new HashSet<String>();
+		set.add(getSPropertyUsername());
+		return set;
+	}
+
+	public Set<String> listUsersInRole(String role) {
+		Set<String> set = new HashSet<String>();
+		set.add(getSPropertyUsername());
+		return set;
+	}
+
+	/** Does nothing */
+	public void synchronize() {
+	}
+
+	/** <b>Unsupported</b> */
+	public void newRole(String role) {
+		roles.add(role);
+	}
+
+	public Set<String> listEditableRoles() {
+		return new HashSet<String>(roles);
+	}
+
+	/** <b>Unsupported</b> */
+	public void deleteRole(String role) {
+		roles.remove(role);
+	}
+
+	public void setRepository(Repository repository) {
+		this.repository = repository;
+	}
+}