| | |
|---|
| | | |
|---|
| | | import java.nio.charset.Charset; |
|---|
| | | import java.security.Principal; |
|---|
| | | import java.security.PublicKey; |
|---|
| | | import java.text.MessageFormat; |
|---|
| | | import java.util.ArrayList; |
|---|
| | | import java.util.HashMap; |
|---|
| | |
|---|
| | | } |
|---|
| | | |
|---|
| | | /** |
|---|
| | | * Authenticate a user based on a public key. |
|---|
| | | * |
|---|
| | | * This implementation assumes that the authentication has already take place |
|---|
| | | * (e.g. SSHDaemon) and that this is a validation/verification of the user. |
|---|
| | | * |
|---|
| | | * @param username |
|---|
| | | * @param key |
|---|
| | | * @return a user object or null |
|---|
| | | */ |
|---|
| | | @Override |
|---|
| | | public UserModel authenticate(String username, PublicKey key) { |
|---|
| | | if (username != null) { |
|---|
| | | if (!StringUtils.isEmpty(username)) { |
|---|
| | | UserModel user = userManager.getUserModel(username); |
|---|
| | | if (user != null) { |
|---|
| | | // existing user |
|---|
| | | logger.debug(MessageFormat.format("{0} authenticated by {1} public key", |
|---|
| | | user.username, key.getAlgorithm())); |
|---|
| | | return validateAuthentication(user, AuthenticationType.PUBLIC_KEY); |
|---|
| | | } |
|---|
| | | logger.warn(MessageFormat.format("Failed to find UserModel for {0} during public key authentication", |
|---|
| | | username)); |
|---|
| | | } |
|---|
| | | } else { |
|---|
| | | logger.warn("Empty user passed to AuthenticationManager.authenticate!"); |
|---|
| | | } |
|---|
| | | return null; |
|---|
| | | } |
|---|
| | | |
|---|
| | | |
|---|
| | | /** |
|---|
| | | * This method allows the authentication manager to reject authentication |
|---|
| | | * attempts. It is called after the username/secret have been verified to |
|---|
| | | * ensure that the authentication technique has been logged. |
|---|
