PlainAuthenticator.java example

Explorer

subethasmtp-master
- src
  - main
    - java
      - org
        subethamail
        smtp
        AuthenticationHandler.java
        AuthenticationHandlerFactory.java
        DropConnectionException.java
        MessageContext.java
        MessageHandler.java
        MessageHandlerFactory.java
        RejectException.java
        TooMuchDataException.java
        Version.java
        auth
        EasyAuthenticationHandlerFactory.java
        LoginAuthenticationHandlerFactory.java
        LoginFailedException.java
        MultipleAuthenticationHandlerFactory.java
        PlainAuthenticationHandlerFactory.java
        UsernamePasswordValidator.java
        client
        AuthenticationNotSupportedException.java
        Authenticator.java
        PlainAuthenticator.java
        SMTPClient.java
        SMTPException.java
        SmartClient.java
        command
        AuthCommand.java
        DataCommand.java
        EhloCommand.java
        ExpandCommand.java
        HelloCommand.java
        HelpCommand.java
        MailCommand.java
        NoopCommand.java
        QuitCommand.java
        ReceiptCommand.java
        ResetCommand.java
        StartTLSCommand.java
        VerifyCommand.java
        helper
        SimpleMessageListener.java
        SimpleMessageListenerAdapter.java
        SmarterMessageListener.java
        SmarterMessageListenerAdapter.java
        io
        BetterByteArrayOutputStream.java
        CRLFOutputStream.java
        CRLFTerminatedReader.java
        DeferredFileOutputStream.java
        DotTerminatedInputStream.java
        DotTerminatedOutputStream.java
        DotUnstuffingInputStream.java
        ExtraDotOutputStream.java
        ReceivedHeaderStream.java
        ThresholdingOutputStream.java
        server
        BaseCommand.java
        Command.java
        CommandException.java
        CommandHandler.java
        CommandRegistry.java
        HelpMessage.java
        InvalidCommandNameException.java
        RequireAuthCommandWrapper.java
        RequireTLSCommandWrapper.java
        SMTPServer.java
        ServerThread.java
        Session.java
        SessionIdFactory.java
        TimeBasedSessionIdFactory.java
        UnknownCommandException.java
        util
        Base64.java
        EmailUtils.java
        TextUtils.java
        wiser
        Wiser.java
        WiserMessage.java
  - test
    - java
      - org
        subethamail
        smtp
        BigAttachmentTest.java
        DotTerminatedInputStreamTest.java
        DotTerminatedOutputStreamTest.java
        MessageContentTest.java
        ReceivedHeaderStreamTest.java
        StartStopTest.java
        ThreadDeathLoggingTest.java
        TimeoutTest.java
        WiserFailuresTest.java
        client
        PlainAuthenticatorTest.java
        command
        AuthTest.java
        CommandTest.java
        DataTest.java
        HelloTest.java
        MailTest.java
        QuitTest.java
        ReceiptTest.java
        StartTLSTest.java
        server
        MessageHandlerTest.java
        RequireAuthTest.java
        RequireTlsTest.java
        util
        Client.java
        Practice.java
        ServerTestCase.java

package org.subethamail.smtp.client;

import java.io.ByteArrayOutputStream;
import java.io.IOException;
import java.util.Arrays;
import java.util.HashSet;
import java.util.Set;

import org.subethamail.smtp.util.Base64;

/**
 * PlainAuthenticator implements the SASL PLAIN mechanism which authenticates
 * the client using a name - password combination.
 * 
 * @see <a href="http://tools.ietf.org/html/rfc4616">RFC 4616: The PLAIN Simple
 *      Authentication and Security Layer (SASL) Mechanism</a>
 */
public class PlainAuthenticator implements Authenticator {
	private final String user;
	private final String password;
	private final SmartClient smartClient;

	public PlainAuthenticator(SmartClient smartClient, String user,
			String password) {
		this.smartClient = smartClient;
		this.user = user;
		this.password = password;
	}

	@Override
	public void authenticate() throws SMTPException,
			AuthenticationNotSupportedException, IOException {
		checkAuthPlainSupport();

		String initialClientResponse = constructInitialClientResponse();
		smartClient.sendAndCheck("AUTH PLAIN " + initialClientResponse);
	}

	/**
	 * Checks if the server supports this mechanism.
	 * 
	 * @throws AuthenticationNotSupportedException
	 *             if the server does not support this mechanism or
	 *             authentication at all.
	 */
	private void checkAuthPlainSupport()
			throws AuthenticationNotSupportedException {
		String mechanismsString = smartClient.getExtensions().get("AUTH");
		if (mechanismsString == null) {
			throw new AuthenticationNotSupportedException(
					"Cannot authenticate, because the AUTH extension is "
							+ "not supported by the server. Maybe the server expects "
							+ "TLS first");
		}
		Set<String> mechanisms = parseMechanismsList(mechanismsString);
		if (!mechanisms.contains("PLAIN")) {
			throw new AuthenticationNotSupportedException(
					"Cannot authenticate, because the PLAIN mechanism is "
							+ "not supported by the server. Maybe the server expects "
							+ "TLS first");
		}
	}

	/**
	 * Parses the EHLO parameter list of the SMTP AUTH extension keyword.
	 * 
	 * @return the set of SASL mechanism names 
	 */
	private Set<String> parseMechanismsList(String authParameters) {
		String[] mechanisms = authParameters.split(" ");
		return new HashSet<String>(Arrays.asList(mechanisms));
	}

	/**
	 * Creates the base64 encoded SASL PLAIN initial response.
	 */
	private String constructInitialClientResponse() throws IOException {
		ByteArrayOutputStream out = new ByteArrayOutputStream(512);
		out.write(0);
		out.write(user.getBytes("UTF-8"));
		out.write(0);
		out.write(password.getBytes("UTF-8"));
		return Base64.encodeToString(out.toByteArray(), false);
	}
}