Clover Coverage Report - KS Security 1.2-M1-SNAPSHOT (Aggregated)
Coverage timestamp: Fri Mar 4 2011 05:00:15 EST
Overview   Package   File
    FRAMES   NO FRAMES     
../../../../../img/srcFileCovDistChart0.png 6% of files have more coverage
26   147   18   2.6
14   84   0.69   10
10     1.8  
1    
 
  KimAuthenticationProvider       Line # 41 26 0% 18 50 0% 0.0
 
No Tests
 
1    /**
2    * Copyright 2010 The Kuali Foundation Licensed under the
3    * Educational Community License, Version 2.0 (the "License"); you may
4    * not use this file except in compliance with the License. You may
5    * obtain a copy of the License at
6    *
7    * http://www.osedu.org/licenses/ECL-2.0
8    *
9    * Unless required by applicable law or agreed to in writing,
10    * software distributed under the License is distributed on an "AS IS"
11    * BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express
12    * or implied. See the License for the specific language governing
13    * permissions and limitations under the License.
14    */
15   
16    package org.kuali.student.security.kim;
17   
18    import org.kuali.student.security.spring.KSRiceDefaultUserDetailsService;
19    import org.springframework.dao.DataAccessException;
20    import org.springframework.security.AuthenticationException;
21    import org.springframework.security.AuthenticationServiceException;
22    import org.springframework.security.BadCredentialsException;
23    import org.springframework.security.providers.AuthenticationProvider;
24    import org.springframework.security.providers.UsernamePasswordAuthenticationToken;
25    import org.springframework.security.providers.dao.AbstractUserDetailsAuthenticationProvider;
26    import org.springframework.security.providers.dao.DaoAuthenticationProvider;
27    import org.springframework.security.providers.dao.SaltSource;
28    import org.springframework.security.providers.encoding.PasswordEncoder;
29    import org.springframework.security.providers.encoding.PlaintextPasswordEncoder;
30    import org.springframework.security.userdetails.UserDetails;
31    import org.springframework.security.userdetails.UserDetailsService;
32    import org.springframework.util.Assert;
33   
34    /**
35    * An {@link AuthenticationProvider} implementation that retrieves user details
36    * from an {@link UserDetailsService}. Slightly modified from {@link DaoAuthenticationProvider}
37    *
38    * @author Kuali Student Team
39    *
40    */
 
41    public class KimAuthenticationProvider extends AbstractUserDetailsAuthenticationProvider {
42   
43    //~ Instance fields ================================================================================================
44   
45    private PasswordEncoder passwordEncoder = new PlaintextPasswordEncoder();
46   
47    private SaltSource saltSource;
48   
49    private UserDetailsService userDetailsService;
50   
51    private boolean includeDetailsObject = true;
52   
53    //~ Methods ========================================================================================================
54   
 
55  0 toggle protected void additionalAuthenticationChecks(UserDetails userDetails,
56    UsernamePasswordAuthenticationToken authentication) throws AuthenticationException {
57  0 Object salt = null;
58   
59  0 if (this.saltSource != null) {
60  0 salt = this.saltSource.getSalt(userDetails);
61    }
62   
63  0 if (authentication.getCredentials() == null) {
64  0 throw new BadCredentialsException(messages.getMessage(
65    "AbstractUserDetailsAuthenticationProvider.badCredentials", "Bad credentials"),
66  0 includeDetailsObject ? userDetails : null);
67    }
68   
69  0 String presentedPassword = authentication.getCredentials().toString();
70   
71  0 if (!passwordEncoder.isPasswordValid(userDetails.getPassword(), presentedPassword, salt)) {
72  0 throw new BadCredentialsException(messages.getMessage(
73    "AbstractUserDetailsAuthenticationProvider.badCredentials", "Bad credentials"),
74  0 includeDetailsObject ? userDetails : null);
75    }
76    }
77   
 
78  0 toggle protected void doAfterPropertiesSet() throws Exception {
79  0 Assert.notNull(this.userDetailsService, "A UserDetailsService must be set");
80    }
81   
 
82  0 toggle protected final UserDetails retrieveUser(String username, UsernamePasswordAuthenticationToken authentication)
83    throws AuthenticationException {
84  0 UserDetails loadedUser;
85   
86  0 UserDetailsService ksRiceDefaultUserDetailsService = this.getUserDetailsService();
87  0 if(!(ksRiceDefaultUserDetailsService instanceof KSRiceDefaultUserDetailsService)){
88  0 throw new AuthenticationServiceException(
89    "UserDetailsService is not an an instance of KSRiceDefaultUserDetailsService");
90    }
91   
92  0 try {
93    //loadedUser = this.getUserDetailsService().loadUserByUsername(username);
94  0 loadedUser = ((KSRiceDefaultUserDetailsService)ksRiceDefaultUserDetailsService).loadUserByUsernameAndToken(username, authentication);
95    }
96    catch (DataAccessException repositoryProblem) {
97  0 throw new AuthenticationServiceException(repositoryProblem.getMessage(), repositoryProblem);
98    }
99   
100  0 if (loadedUser == null) {
101  0 throw new AuthenticationServiceException(
102    "UserDetailsService returned null, which is an interface contract violation");
103    }
104  0 return loadedUser;
105    }
106   
107    /**
108    * Sets the PasswordEncoder instance to be used to encode and validate passwords.
109    * If not set, {@link PlaintextPasswordEncoder} will be used by default.
110    *
111    * @param passwordEncoder The passwordEncoder to use
112    */
 
113  0 toggle public void setPasswordEncoder(PasswordEncoder passwordEncoder) {
114  0 this.passwordEncoder = passwordEncoder;
115    }
116   
 
117  0 toggle protected PasswordEncoder getPasswordEncoder() {
118  0 return passwordEncoder;
119    }
120   
121    /**
122    * The source of salts to use when decoding passwords. <code>null</code>
123    * is a valid value, meaning the <code>DaoAuthenticationProvider</code>
124    * will present <code>null</code> to the relevant <code>PasswordEncoder</code>.
125    *
126    * @param saltSource to use when attempting to decode passwords via the <code>PasswordEncoder</code>
127    */
 
128  0 toggle public void setSaltSource(SaltSource saltSource) {
129  0 this.saltSource = saltSource;
130    }
131   
 
132  0 toggle protected SaltSource getSaltSource() {
133  0 return saltSource;
134    }
135   
 
136  0 toggle public void setUserDetailsService(UserDetailsService userDetailsService) {
137  0 this.userDetailsService = userDetailsService;
138    }
139   
 
140  0 toggle protected UserDetailsService getUserDetailsService() {
141  0 return userDetailsService;
142    }
143   
 
144  0 toggle protected boolean isIncludeDetailsObject() {
145  0 return includeDetailsObject;
146    }
147    }
 
CloverReport generated by Clover Code Coverage v3.0.2
Fri Mar 4 2011 05:00:20 EST.		   Clover: Open Source License registered to University of Arizona.