CasAuthenticationService.java example

Explorer

email-preview-master
- src
  - main
    - java
      - org
        jasig
        portlet
        emailpreview
        AccountSummary.java
        EmailMessage.java
        EmailMessageContent.java
        EmailPreviewException.java
        EmailQuota.java
        ExchangeEmailMessage.java
        ExchangeFolderDto.java
        MailStoreConfiguration.java
        caching
        AccountSummaryCacheKeyGeneratorImpl.java
        EWSEndpointUriCacheKeyGeneratorImpl.java
        IAccountSummaryCacheKeyGenerator.java
        IEWSEndpoingUriCacheKeyGenerator.java
        IMailAccountCacheKeyGenerator.java
        IMessageCacheKeyGenerator.java
        MailAccountCacheKeyGeneratorImpl.java
        UsernameItemCacheKeyGeneratorImpl.java
        controller
        AjaxUpdateInboxFolderController.java
        AjaxUpdatePageSizeController.java
        BaseEmailController.java
        EditPreferencesController.java
        EmailAccountSummaryController.java
        EmailHelpController.java
        EmailMessageController.java
        EmailSummaryController.java
        MailStoreConfigurationController.java
        ViewSelectorDefault.java
        dao
        EmailAccountService.java
        IEmailAccountService.java
        IMailAccountDao.java
        MailPreferences.java
        demo
        DemoAccountService.java
        exchange
        AutodiscoverRedirectStrategy.java
        ExchangeAccountDaoImpl.java
        ExchangeAutoDiscoverDaoImpl.java
        IExchangeAccountDao.java
        IExchangeAutoDiscoverDao.java
        JCIFSEngine.java
        MailCredentialsProvider.java
        SoapHttpRequestHeaderInterceptor.java
        TestingDontUseTrustEveryoneNtlmAuthHttpClient.java
        javamail
        IJavamailAccountDao.java
        JavamailAccountDaoImpl.java
        exception
        MailAuthenticationException.java
        MailTimeoutException.java
        mvc
        Attribute.java
        AttributeFactory.java
        MailStoreConfigurationForm.java
        MinimizedStateHandlerInterceptor.java
        security
        IStringEncryptionService.java
        JasyptPBEStringEncryptionServiceImpl.java
        StringEncryptionException.java
        service
        ConfigurationParameter.java
        ICredentialsProvider.java
        IServiceBroker.java
        SimpleServiceBroker.java
        auth
        AuthenticationServiceRegistryImpl.java
        BaseCredentialsAuthenticationService.java
        CachedPasswordAuthenticationService.java
        DemoAuthenticationService.java
        IAuthenticationService.java
        IAuthenticationServiceRegistry.java
        SimplePasswordAuthenticator.java
        cas
        CASProxyTicketServiceUserInfoImpl.java
        CasAuthenticationService.java
        ICASProxyTicketService.java
        pp
        PortletPreferencesCredentialsAuthenticationService.java
        link
        IEmailLinkService.java
        ILinkServiceRegistry.java
        LinkServiceRegistryImpl.java
        SimpleEmailLinkServiceImpl.java
        util
        EmailAccountUtils.java
        MessageUtils.java
  - test
    - java
      - org
        jasig
        portlet
        emailpreview
        EmailMessageTest.java
        PortletTestSuite.java
        dao
        EmailAccountDaoImplIntegrationTest.java
        SimpleServiceBrokerTest.java
        service
        auth
        CachedPasswordAuthenticationServiceTest.java
        link
        LinkServiceRegistryImplTest.java
        SimpleEmailLinkServiceImplTest.java
        util
        EmailAccountUtilsTest.java
        MessageUtilsTest.java

/**
 * Licensed to Apereo under one or more contributor license agreements. See the NOTICE file
 * distributed with this work for additional information regarding copyright ownership. Apereo
 * licenses this file to you under the Apache License, Version 2.0 (the "License"); you may not use
 * this file except in compliance with the License. You may obtain a copy of the License at the
 * following location:
 *
 * <p>http://www.apache.org/licenses/LICENSE-2.0
 *
 * <p>Unless required by applicable law or agreed to in writing, software distributed under the
 * License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either
 * express or implied. See the License for the specific language governing permissions and
 * limitations under the License.
 */
package org.jasig.portlet.emailpreview.service.auth.cas;

import javax.mail.Authenticator;
import javax.portlet.PortletRequest;
import javax.portlet.PortletSession;
import org.apache.http.auth.Credentials;
import org.apache.http.auth.UsernamePasswordCredentials;
import org.jasig.cas.client.validation.Assertion;
import org.jasig.portlet.emailpreview.MailStoreConfiguration;
import org.jasig.portlet.emailpreview.service.auth.BaseCredentialsAuthenticationService;
import org.jasig.portlet.emailpreview.service.auth.SimplePasswordAuthenticator;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

public class CasAuthenticationService extends BaseCredentialsAuthenticationService {

  private final Logger log = LoggerFactory.getLogger(getClass());

  protected String key = "cas";

  protected ICASProxyTicketService casTicketService;
  protected String serviceUrl;

  protected String CAS_ASSERTION_KEY = "CAS_ASSERTION_KEY";

  public void setCasTicketService(ICASProxyTicketService casTicketService) {
    this.casTicketService = casTicketService;
  }

  public void setServiceUrl(String serviceUrl) {
    this.serviceUrl = serviceUrl;
  }

  protected String getProxyPrincipalname(PortletRequest request) {
    Assertion casAssertion = getCasAssertion(request);
    String proxyPrincipalname = casAssertion.getPrincipal().getName();
    return proxyPrincipalname;
  }

  protected Assertion getCasAssertion(PortletRequest request) {
    PortletSession session = request.getPortletSession(true);
    Assertion casAssertion = (Assertion) session.getAttribute(CAS_ASSERTION_KEY);
    if (casAssertion == null) {
      casAssertion = casTicketService.getProxyTicket(request);
      if (casAssertion == null)
        throw new RuntimeException(
            "CasAssertion is null : Auth ProxyCAS failed. Please check your CAS configuration.");
      session.setAttribute(CAS_ASSERTION_KEY, casAssertion);
    }
    return casAssertion;
  }

  @Override
  public boolean isConfigured(PortletRequest request, MailStoreConfiguration config) {
    return true;
  }

  public Authenticator getAuthenticator(PortletRequest request, MailStoreConfiguration config) {
    Assertion casAssertion = getCasAssertion(request);
    String proxyPrincipalname = getProxyPrincipalname(request);
    String proxyTicket = casTicketService.getCasServiceToken(casAssertion, serviceUrl);
    return new SimplePasswordAuthenticator(proxyPrincipalname, proxyTicket);
  }

  /**
   * CAS ticket doesn't make sense with Exchange Integration. However this method is invoked as part
   * of the services layer initialization and is used to obtain the username so create a credential
   * with just the username. We also don't want to create a proxy ticket because that would be a 2nd
   * trip to the CAS server (or we'd need to obtain the proxy ticket and cache it to the thread so
   * the initialization code can call both getAuthenticator and getCredentials).
   */
  public Credentials getCredentials(PortletRequest request, MailStoreConfiguration config) {
    String proxyPrincipalname = getProxyPrincipalname(request);
    log.debug(
        "CAS ticket doesn't make sense with Exchange integration, creating null password credential for "
            + proxyPrincipalname);
    return new UsernamePasswordCredentials(proxyPrincipalname, null);
  }

  public String getMailAccountName(PortletRequest request, MailStoreConfiguration config) {
    String proxyPrincipalname = getProxyPrincipalname(request);
    return proxyPrincipalname;
  }

  public String getKey() {
    return key;
  }

  public void setKey(String key) {
    this.key = key;
  }
}