/*
* Copyright (c) 2014, WSO2 Inc. (http://www.wso2.org) All Rights Reserved.
*
* WSO2 Inc. licenses this file to you under the Apache License,
* Version 2.0 (the "License"); you may not use this file except
* in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing,
* software distributed under the License is distributed on an
* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
* KIND, either express or implied. See the License for the
* specific language governing permissions and limitations
* under the License.
*/
package org.wso2.carbon.identity.thrift.authentication;
import org.apache.commons.logging.Log;
import org.apache.commons.logging.LogFactory;
import org.apache.thrift.server.TServer;
import org.apache.thrift.server.TThreadPoolServer;
import org.apache.thrift.transport.TSSLTransportFactory;
import org.apache.thrift.transport.TServerSocket;
import org.apache.thrift.transport.TTransportException;
import org.wso2.carbon.identity.thrift.authentication.dao.InMemoryThriftSessionDAO;
import org.wso2.carbon.identity.thrift.authentication.exception.ThriftAuthenticationException;
import org.wso2.carbon.identity.thrift.authentication.internal.AuthenticatorServiceImpl;
import org.wso2.carbon.identity.thrift.authentication.internal.ThriftAuthenticatorServiceImpl;
import org.wso2.carbon.identity.thrift.authentication.internal.generatedCode.AuthenticatorService;
import org.wso2.carbon.identity.thrift.authentication.internal.util.ThriftAuthenticationConstants;
import org.wso2.carbon.utils.ThriftSession;
import java.net.InetAddress;
import java.net.UnknownHostException;
/**
* The tcp Thrift Authentication service
*/
public class TCPThriftAuthenticationService {
private final String hostName;
private final int port;
private final String keyStore;
private final String keyStorePassword;
private final int clientTimeout;
private ThriftAuthenticatorService thriftAuthenticatorService;
private Log log = LogFactory.getLog(TCPThriftAuthenticationService.class);
private TServer authenticationServer;
public TCPThriftAuthenticationService(String hostName, int port, String keyStore, String keyStorePassword, int clientTimeout, ThriftAuthenticatorService thriftAuthenticatorService) {
this.hostName = hostName;
this.port = port;
this.keyStore = keyStore;
this.keyStorePassword = keyStorePassword;
this.clientTimeout = clientTimeout;
this.thriftAuthenticatorService = thriftAuthenticatorService;
}
public TCPThriftAuthenticationService(String hostName, int port, long thriftSessionTimeOut) throws ThriftAuthenticationException {
this.hostName = hostName;
this.port = port;
String SecurityKeyStore = System.getProperty(ThriftAuthenticationConstants.SECURITY_KEY_STORE_LOCATION);
if (SecurityKeyStore == null) {
throw new ThriftAuthenticationException("Cannot start agent server, not valid Security.KeyStore.Location is null");
}
String SecurityKeyStorePassword
= System.getProperty(ThriftAuthenticationConstants.SECURITY_KEY_STORE_PASSWORD);
if (SecurityKeyStorePassword == null) {
throw new ThriftAuthenticationException("Cannot start agent server, not valid Security.KeyStore.Password is null ");
}
this.keyStore = SecurityKeyStore;
this.keyStorePassword = SecurityKeyStorePassword;
this.clientTimeout = 30000;
this.thriftAuthenticatorService = new ThriftAuthenticatorServiceImpl(null, new InMemoryThriftSessionDAO(), thriftSessionTimeOut);
}
public void start() throws TTransportException, UnknownHostException {
InetAddress inetAddress = InetAddress.getByName(hostName);
TSSLTransportFactory.TSSLTransportParameters params =
new TSSLTransportFactory.TSSLTransportParameters();
params.setKeyStore(keyStore, keyStorePassword);
TServerSocket serverTransport;
serverTransport = TSSLTransportFactory.getServerSocket(port, clientTimeout, inetAddress, params);
AuthenticatorService.Processor<AuthenticatorServiceImpl> processor =
new AuthenticatorService.Processor<AuthenticatorServiceImpl>(
new AuthenticatorServiceImpl(thriftAuthenticatorService));
authenticationServer = new TThreadPoolServer(
new TThreadPoolServer.Args(serverTransport).processor(processor));
Thread thread = new Thread(new ServerRunnable(authenticationServer));
if (log.isDebugEnabled()) {
log.debug("Thrift Authentication Service started at ssl://" + hostName + ":" + port);
}
thread.start();
}
public void stop() {
authenticationServer.stop();
}
public boolean isAuthenticated(String sessionId) {
return thriftAuthenticatorService.isAuthenticated(sessionId);
}
public ThriftSession getSessionInfo(String sessionId) {
return thriftAuthenticatorService.getSessionInfo(sessionId);
}
/**
* Thread that starts thrift server
*/
private static class ServerRunnable implements Runnable {
TServer server;
public ServerRunnable(TServer server) {
this.server = server;
}
@Override
public void run() {
server.serve();
}
}
}