/*
* Copyright (c) JForum Team
* All rights reserved.
*
* Redistribution and use in source and binary forms,
* with or without modification, are permitted provided
* that the following conditions are met:
*
* 1) Redistributions of source code must retain the above
* copyright notice, this list of conditions and the
* following disclaimer.
* 2) Redistributions in binary form must reproduce the
* above copyright notice, this list of conditions and
* the following disclaimer in the documentation and/or
* other materials provided with the distribution.
* 3) Neither the name of "Rafael Steil" nor
* the names of its contributors may be used to endorse
* or promote products derived from this software without
* specific prior written permission.
*
* THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT
* HOLDERS AND CONTRIBUTORS "AS IS" AND ANY
* EXPRESS OR IMPLIED WARRANTIES, INCLUDING,
* BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
* MERCHANTABILITY AND FITNESS FOR A PARTICULAR
* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL
* THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
* EXEMPLARY, OR CONSEQUENTIAL DAMAGES
* (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
* SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA,
* OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
* CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER
* IN CONTRACT, STRICT LIABILITY, OR TORT
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN
* ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF
* ADVISED OF THE POSSIBILITY OF SUCH DAMAGE
*
* Created on Jan 3, 2005 1:20:24 PM
* The JForum Project
* http://www.jforum.net
*/
package net.jforum.sso;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.sql.SQLException;
import java.util.Map;
import net.jforum.JForumExecutionContext;
import net.jforum.dao.UserDAO;
import net.jforum.entities.User;
import net.jforum.exceptions.ForumException;
import net.jforum.util.DbUtils;
import net.jforum.util.MD5;
import net.jforum.util.preferences.SystemGlobals;
/**
* Default login authenticator for JForum.
* This authenticator will validate the input against
* <i>jforum_users</i>.
*
* @author Rafael Steil
* @version $Id: DefaultLoginAuthenticator.java,v 1.10 2007/07/28 14:17:10 rafaelsteil Exp $
*/
public class DefaultLoginAuthenticator implements LoginAuthenticator
{
private UserDAO userModel;
/**
* @see net.jforum.sso.LoginAuthenticator#setUserModel(net.jforum.dao.UserDAO)
*/
public void setUserModel(UserDAO userModel)
{
this.userModel = userModel;
}
/**
* @see net.jforum.sso.LoginAuthenticator#validateLogin(String, String, java.util.Map)
*/
public User validateLogin(String username, String password, Map extraParams)
{
User user = null;
ResultSet rs=null;
PreparedStatement p=null;
try
{
p = JForumExecutionContext.getConnection().prepareStatement(
SystemGlobals.getSql("UserModel.login"));
p.setString(1, username);
p.setString(2, MD5.crypt(password));
rs = p.executeQuery();
if (rs.next() && rs.getInt("user_id") > 0) {
user = this.userModel.selectById(rs.getInt("user_id"));
}
}
catch (SQLException e)
{
throw new ForumException(e);
}
finally
{
DbUtils.close(rs, p);
}
if (user != null && !user.isDeleted() && (user.getActivationKey() == null || user.isActive())) {
return user;
}
return null;
}
}