/*<?xml version="1.0" encoding="UTF-8"?>
<!--
Licensed to the Apache Software Foundation (ASF) under one or more
contributor license agreements. See the NOTICE file distributed with
this work for additional information regarding copyright ownership.
The ASF licenses this file to You under the Apache License, Version 2.0
(the "License"); you may not use this file except in compliance with
the License. You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
-->*/
package org.apache.ranger.patch.cliutil;
import org.apache.log4j.Logger;
import org.apache.ranger.biz.UserMgr;
import org.apache.ranger.db.RangerDaoManager;
import org.apache.ranger.entity.XXPortalUser;
import org.apache.ranger.patch.BaseLoader;
import org.apache.ranger.util.CLIUtil;
import org.apache.solr.common.StringUtils;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Component;
@Component
public class ChangePasswordUtil extends BaseLoader {
private static final Logger logger = Logger.getLogger(ChangePasswordUtil.class);
@Autowired
RangerDaoManager daoMgr;
@Autowired
UserMgr userMgr;
public static String userLoginId;
public static String currentPassword;
public static String newPassword;
public static boolean defaultPwdChangeRequest=false;
public static void main(String[] args) {
logger.info("main()");
try {
ChangePasswordUtil loader = (ChangePasswordUtil) CLIUtil.getBean(ChangePasswordUtil.class);
loader.init();
if (args.length == 3 || args.length == 4) {
userLoginId = args[0];
currentPassword = args[1];
newPassword = args[2];
if (args.length == 4) {
if("-default".equalsIgnoreCase(args[3])){
defaultPwdChangeRequest=true;
}
}
if(StringUtils.isEmpty(userLoginId)){
System.out.println("Invalid login ID. Exiting!!!");
logger.info("Invalid login ID. Exiting!!!");
System.exit(1);
}
if(StringUtils.isEmpty(currentPassword)){
System.out.println("Invalid current password. Exiting!!!");
logger.info("Invalid current password. Exiting!!!");
System.exit(1);
}
if(StringUtils.isEmpty(newPassword)){
System.out.println("Invalid new password. Exiting!!!");
logger.info("Invalid new password. Exiting!!!");
System.exit(1);
}
while (loader.isMoreToProcess()) {
loader.load();
}
logger.info("Load complete. Exiting!!!");
System.exit(0);
}else{
System.out.println("ChangePasswordUtil: Incorrect Arguments \n Usage: \n <loginId> <current-password> <new-password>");
logger.error("ChangePasswordUtil: Incorrect Arguments \n Usage: \n <loginId> <current-password> <new-password>");
System.exit(1);
}
}
catch (Exception e) {
logger.error("Error loading", e);
System.exit(1);
}
}
@Override
public void init() throws Exception {
}
@Override
public void printStats() {
}
@Override
public void execLoad() {
logger.info("==> ChangePasswordUtil.execLoad()");
updateAdminPassword();
logger.info("<== ChangePasswordUtil.execLoad()");
}
public void updateAdminPassword() {
XXPortalUser xPortalUser=daoMgr.getXXPortalUser().findByLoginId(userLoginId);
if (xPortalUser!=null){
String dbPassword=xPortalUser.getPassword();
String currentEncryptedPassword=null;
try {
currentEncryptedPassword=userMgr.encrypt(userLoginId, currentPassword);
if (currentEncryptedPassword.equals(dbPassword)){
userMgr.updatePasswordInSHA256(userLoginId,newPassword,true);
logger.info("User '"+userLoginId+"' Password updated sucessfully.");
}else if (!currentEncryptedPassword.equals(dbPassword) && defaultPwdChangeRequest){
System.out.println("Skipping default password change request as provided password doesn't match with existing password.");
logger.error("Skipping default password change request as provided password doesn't match with existing password.");
System.exit(2);
}
else{
System.out.println("Invalid user password");
logger.error("Invalid user password");
System.exit(1);
}
} catch (Exception e) {
logger.error("Update Admin Password failure. Detail: \n", e);
System.exit(1);
}
}
else{
System.out.println("User does not exist in DB!!");
logger.error("User does not exist in DB");
System.exit(1);
}
}
}