FileDocCategorySizeDatePackage
JDBCRealm.javaAPI DocGlassfish v2 API19079Fri May 04 22:32:16 BST 2007org.apache.catalina.realm

JDBCRealm

public class JDBCRealm extends RealmBase
Implmentation of Realm that works with any JDBC supported database. See the JDBCRealm.howto for more details on how to set up the database and for configuration options.

TODO - Support connection pooling (including message format objects) so that authenticate() does not have to be synchronized.

author
Craig R. McClanahan
author
Carson McDonald
author
Ignacio Ortega
version
$Revision: 1.3 $ $Date: 2007/05/05 05:32:16 $

Fields Summary
protected String
connectionName
The connection username to use when trying to connect to the database.
protected String
connectionPassword
The connection URL to use when trying to connect to the database.
protected String
connectionURL
The connection URL to use when trying to connect to the database.
protected Connection
dbConnection
The connection to the database.
protected Driver
driver
Instance of the JDBC Driver class we use as a connection factory.
protected String
driverName
The JDBC driver to use.
protected static final String
info
Descriptive information about this Realm implementation.
protected static final String
name
Descriptive information about this Realm implementation.
protected PreparedStatement
preparedCredentials
The PreparedStatement to use for authenticating users.
protected PreparedStatement
preparedRoles
The PreparedStatement to use for identifying the roles for a specified user.
protected String
roleNameCol
The column in the user role table that names a role
protected static final org.apache.catalina.util.StringManager
sm
The string manager for this package.
protected String
userCredCol
The column in the user table that holds the user's credintials
protected String
userNameCol
The column in the user table that holds the user's name
protected String
userRoleTable
The table that holds the relation between user's and roles
protected String
userTable
The table that holds user data.
Constructors Summary
Methods Summary
public java.security.Principalauthenticate(java.lang.String username, java.lang.String credentials)
Return the Principal associated with the specified username and credentials, if there is one; otherwise return null. If there are any errors with the JDBC connection, executing the query or anything we return null (don't authenticate). This event is also logged, and the connection will be closed so that a subsequent request will automatically re-open it.

param
username Username of the Principal to look up
param
credentials Password or other credentials to use in authenticating this username


        Connection dbConnection = null;

        try {

            // Ensure that we have an open database connection
            dbConnection = open();

            // Acquire a Principal object for this user
            Principal principal = authenticate(dbConnection,
                                               username, credentials);

            // Release the database connection we just used
            release(dbConnection);

            // Return the Principal (if any)
            return (principal);

        } catch (SQLException e) {

            // Log the problem for posterity
            log(sm.getString("jdbcRealm.exception"), e);

            // Close the connection so that it gets reopened next time
            if (dbConnection != null)
                close(dbConnection);

            // Return "not authenticated" for this request
            return (null);

        }
public synchronized java.security.Principalauthenticate(java.sql.Connection dbConnection, java.lang.String username, java.lang.String credentials)
Return the Principal associated with the specified username and credentials, if there is one; otherwise return null.

param
dbConnection The database connection to be used
param
username Username of the Principal to look up
param
credentials Password or other credentials to use in authenticating this username
exception
SQLException if a database error occurs


        // Look up the user's credentials
        String dbCredentials = null;
        PreparedStatement stmt = credentials(dbConnection, username);
        ResultSet rs = stmt.executeQuery();
        while (rs.next()) {
            dbCredentials = rs.getString(1).trim();
        }
        rs.close();
        if (dbCredentials == null) {
            return (null);
        }

        // Validate the user's credentials
        boolean validated = false;
        if (hasMessageDigest()) {
            // Hex hashes should be compared case-insensitive
            validated = (digest(credentials).equalsIgnoreCase(dbCredentials));
        } else
            validated = (digest(credentials).equals(dbCredentials));

        if (validated) {
            if (debug >= 2)
                log(sm.getString("jdbcRealm.authenticateSuccess",
                                 username));
        } else {
            if (debug >= 2)
                log(sm.getString("jdbcRealm.authenticateFailure",
                                 username));
            return (null);
        }

        // Accumulate the user's roles
        ArrayList list = new ArrayList();
        stmt = roles(dbConnection, username);
        rs = stmt.executeQuery();
        while (rs.next()) {
            list.add(rs.getString(1).trim());
        }
        rs.close();
        dbConnection.commit();

        // Create and return a suitable Principal for this user
        return (new GenericPrincipal(this, username, credentials, list));
protected voidclose(java.sql.Connection dbConnection)
Close the specified database connection.

param
dbConnection The connection to be closed


        // Do nothing if the database connection is already closed
        if (dbConnection == null)
            return;

        // Close our prepared statements (if any)
        try {
            preparedCredentials.close();
        } catch (Throwable f) {
            ;
        }
        try {
            preparedRoles.close();
        } catch (Throwable f) {
            ;
        }

        // Close this database connection, and log any errors
        try {
            dbConnection.close();
        } catch (SQLException e) {
            log(sm.getString("jdbcRealm.close"), e); // Just log it here
        }

        // Release resources associated with the closed connection
        this.dbConnection = null;
        this.preparedCredentials = null;
        this.preparedRoles = null;
protected java.sql.PreparedStatementcredentials(java.sql.Connection dbConnection, java.lang.String username)
Return a PreparedStatement configured to perform the SELECT required to retrieve user credentials for the specified username.

param
dbConnection The database connection to be used
param
username Username for which credentials should be retrieved
exception
SQLException if a database error occurs


        if (preparedCredentials == null) {
            StringBuffer sb = new StringBuffer("SELECT ");
            sb.append(userCredCol);
            sb.append(" FROM ");
            sb.append(userTable);
            sb.append(" WHERE ");
            sb.append(userNameCol);
            sb.append(" = ?");
            preparedCredentials =
                dbConnection.prepareStatement(sb.toString());
        }

        preparedCredentials.setString(1, username);
        return (preparedCredentials);
public java.lang.StringgetConnectionName()
Return the username to use to connect to the database.



    // ------------------------------------------------------------- Properties

                   
       
        return connectionName;
public java.lang.StringgetConnectionPassword()
Return the password to use to connect to the database.

        return connectionPassword;
public java.lang.StringgetConnectionURL()
Return the URL to use to connect to the database.

        return connectionURL;
public java.lang.StringgetDriverName()
Return the JDBC driver that will be used.

        return driverName;
protected java.lang.StringgetName()
Return a short name for this Realm implementation.


        return (this.name);
protected java.lang.StringgetPassword(java.lang.String username)
Return the password associated with the given principal's user name.


        return (null);
protected java.security.PrincipalgetPrincipal(java.lang.String username)
Return the Principal associated with the given user name.


        return (null);
public java.lang.StringgetRoleNameCol()
Return the column in the user role table that names a role.

        return roleNameCol;
public java.lang.StringgetUserCredCol()
Return the column in the user table that holds the user's credentials.

        return userCredCol;
public java.lang.StringgetUserNameCol()
Return the column in the user table that holds the user's name.

        return userNameCol;
public java.lang.StringgetUserRoleTable()
Return the table that holds the relation between user's and roles.

        return userRoleTable;
public java.lang.StringgetUserTable()
Return the table that holds user data..

        return userTable;
protected java.sql.Connectionopen()
Open (if necessary) and return a database connection for use by this Realm.

exception
SQLException if a database error occurs


        // Do nothing if there is a database connection already open
        if (dbConnection != null)
            return (dbConnection);

        // Instantiate our database driver if necessary
        if (driver == null) {
            try {
                Class clazz = Class.forName(driverName);
                driver = (Driver) clazz.newInstance();
            } catch (Throwable e) {
                throw new SQLException(e.getMessage());
            }
        }

        // Open a new connection
        Properties props = new Properties();
        if (connectionName != null)
            props.put("user", connectionName);
        if (connectionPassword != null)
            props.put("password", connectionPassword);
        dbConnection = driver.connect(connectionURL, props);
        dbConnection.setAutoCommit(false);
        return (dbConnection);
protected voidrelease(java.sql.Connection dbConnection)
Release our use of this connection so that it can be recycled.

param
dbConnnection The connection to be released


        ; // NO-OP since we are not pooling anything
protected java.sql.PreparedStatementroles(java.sql.Connection dbConnection, java.lang.String username)
Return a PreparedStatement configured to perform the SELECT required to retrieve user roles for the specified username.

param
dbConnection The database connection to be used
param
username Username for which roles should be retrieved
exception
SQLException if a database error occurs


        if (preparedRoles == null) {
            StringBuffer sb = new StringBuffer("SELECT ");
            sb.append(roleNameCol);
            sb.append(" FROM ");
            sb.append(userRoleTable);
            sb.append(" WHERE ");
            sb.append(userNameCol);
            sb.append(" = ?");
            preparedRoles =
                dbConnection.prepareStatement(sb.toString());
        }

        preparedRoles.setString(1, username);
        return (preparedRoles);
public voidsetConnectionName(java.lang.String connectionName)
Set the username to use to connect to the database.

param
connectionName Username

        this.connectionName = connectionName;
public voidsetConnectionPassword(java.lang.String connectionPassword)
Set the password to use to connect to the database.

param
connectionPassword User password

        this.connectionPassword = connectionPassword;
public voidsetConnectionURL(java.lang.String connectionURL)
Set the URL to use to connect to the database.

param
connectionURL The new connection URL

      this.connectionURL = connectionURL;
public voidsetDriverName(java.lang.String driverName)
Set the JDBC driver that will be used.

param
driverName The driver name

      this.driverName = driverName;
public voidsetRoleNameCol(java.lang.String roleNameCol)
Set the column in the user role table that names a role.

param
roleNameCol The column name

        this.roleNameCol = roleNameCol;
public voidsetUserCredCol(java.lang.String userCredCol)
Set the column in the user table that holds the user's credentials.

param
userCredCol The column name

       this.userCredCol = userCredCol;
public voidsetUserNameCol(java.lang.String userNameCol)
Set the column in the user table that holds the user's name.

param
userNameCol The column name

       this.userNameCol = userNameCol;
public voidsetUserRoleTable(java.lang.String userRoleTable)
Set the table that holds the relation between user's and roles.

param
userRoleTable The table name

        this.userRoleTable = userRoleTable;
public voidsetUserTable(java.lang.String userTable)
Set the table that holds user data.

param
userTable The table name

      this.userTable = userTable;
public voidstart()
Prepare for active use of the public methods of this Component.

exception
LifecycleException if this component detects a fatal error that prevents it from being started


        // Validate that we can open our connection
        try {
            open();
        } catch (SQLException e) {
            throw new LifecycleException(sm.getString("jdbcRealm.open"), e);
        }

        // Perform normal superclass initialization
        super.start();
public voidstop()
Gracefully shut down active use of the public methods of this Component.

exception
LifecycleException if this component detects a fatal error that needs to be reported


        // Perform normal superclass finalization
        super.stop();

        // Close any open DB connection
        close(this.dbConnection);