libjava/classpath/gnu/javax/crypto/sasl/plain/PlainServer.java

   1 /* PlainServer.java --
   2    Copyright (C) 2003, 2006 Free Software Foundation, Inc.
   3
   4 This file is a part of GNU Classpath.
   5
   6 GNU Classpath is free software; you can redistribute it and/or modify
   7 it under the terms of the GNU General Public License as published by
   8 the Free Software Foundation; either version 2 of the License, or (at
   9 your option) any later version.
  10
  11 GNU Classpath is distributed in the hope that it will be useful, but
  12 WITHOUT ANY WARRANTY; without even the implied warranty of
  13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
  14 General Public License for more details.
  15
  16 You should have received a copy of the GNU General Public License
  17 along with GNU Classpath; if not, write to the Free Software
  18 Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301
  19 USA
  20
  21 Linking this library statically or dynamically with other modules is
  22 making a combined work based on this library.  Thus, the terms and
  23 conditions of the GNU General Public License cover the whole
  24 combination.
  25
  26 As a special exception, the copyright holders of this library give you
  27 permission to link this library with independent modules to produce an
  28 executable, regardless of the license terms of these independent
  29 modules, and to copy and distribute the resulting executable under
  30 terms of your choice, provided that you also meet, for each linked
  31 independent module, the terms and conditions of the license of that
  32 module.  An independent module is a module which is not derived from
  33 or based on this library.  If you modify this library, you may extend
  34 this exception to your version of the library, but you are not
  35 obligated to do so.  If you do not wish to do so, delete this
  36 exception statement from your version.  */
  37
  38
  39 package gnu.javax.crypto.sasl.plain;
  40
  41 import gnu.java.security.Registry;
  42 import gnu.javax.crypto.sasl.NoSuchUserException;
  43 import gnu.javax.crypto.sasl.ServerMechanism;
  44
  45 import java.io.IOException;
  46 import java.io.UnsupportedEncodingException;
  47 import java.util.Arrays;
  48 import java.util.HashMap;
  49 import java.util.Map;
  50 import java.util.NoSuchElementException;
  51 import java.util.StringTokenizer;
  52
  53 import javax.security.sasl.SaslException;
  54 import javax.security.sasl.SaslServer;
  55
  56 /**
  57  * <p>The PLAIN SASL server-side mechanism.</p>
  58  */
  59 public class PlainServer extends ServerMechanism implements SaslServer
  60 {
  61
  62   // Constants and variables
  63   // -------------------------------------------------------------------------
  64
  65   // Constructor(s)
  66   // -------------------------------------------------------------------------
  67
  68   public PlainServer()
  69   {
  70     super(Registry.SASL_PLAIN_MECHANISM);
  71   }
  72
  73   // Class methods
  74   // -------------------------------------------------------------------------
  75
  76   // Instance methods
  77   // -------------------------------------------------------------------------
  78
  79   // abstract methods implementation -----------------------------------------
  80
  81   protected void initMechanism() throws SaslException
  82   {
  83   }
  84
  85   protected void resetMechanism() throws SaslException
  86   {
  87   }
  88
  89   // javax.security.sasl.SaslServer interface implementation -----------------
  90
  91   public byte[] evaluateResponse(final byte[] response) throws SaslException
  92   {
  93     if (response == null)
  94       {
  95         return null;
  96       }
  97     try
  98       {
  99         final String nullStr = new String("\0");
 100         final StringTokenizer strtok = new StringTokenizer(
 101                                                            new String(response),
 102                                                            nullStr, true);
 103
 104         authorizationID = strtok.nextToken();
 105         if (!authorizationID.equals(nullStr))
 106           {
 107             strtok.nextToken();
 108           }
 109         else
 110           {
 111             authorizationID = null;
 112           }
 113         final String id = strtok.nextToken();
 114         if (id.equals(nullStr))
 115           {
 116             throw new SaslException("No identity given");
 117           }
 118         if (authorizationID == null)
 119           {
 120             authorizationID = id;
 121           }
 122         if ((!authorizationID.equals(nullStr)) && (!authorizationID.equals(id)))
 123           {
 124             throw new SaslException("Delegation not supported");
 125           }
 126         strtok.nextToken();
 127         final byte[] pwd;
 128         try
 129           {
 130             pwd = strtok.nextToken().getBytes("UTF-8");
 131           }
 132         catch (UnsupportedEncodingException x)
 133           {
 134             throw new SaslException("evaluateResponse()", x);
 135           }
 136         if (pwd == null)
 137           {
 138             throw new SaslException("No password given");
 139           }
 140         final byte[] password;
 141         try
 142           {
 143             password = new String(lookupPassword(id)).getBytes("UTF-8");
 144           }
 145         catch (UnsupportedEncodingException x)
 146           {
 147             throw new SaslException("evaluateResponse()", x);
 148           }
 149         if (!Arrays.equals(pwd, password))
 150           {
 151             throw new SaslException("Password incorrect");
 152           }
 153         this.complete = true;
 154         return null;
 155       }
 156     catch (NoSuchElementException x)
 157       {
 158         throw new SaslException("evaluateResponse()", x);
 159       }
 160   }
 161
 162   protected String getNegotiatedQOP()
 163   {
 164     return Registry.QOP_AUTH;
 165   }
 166
 167   // other methods -----------------------------------------------------------
 168
 169   private char[] lookupPassword(final String userName) throws SaslException
 170   {
 171     try
 172       {
 173         if (!authenticator.contains(userName))
 174           {
 175             throw new NoSuchUserException(userName);
 176           }
 177         final Map userID = new HashMap();
 178         userID.put(Registry.SASL_USERNAME, userName);
 179         final Map credentials = authenticator.lookup(userID);
 180         final String password = (String) credentials.get(Registry.SASL_PASSWORD);
 181         if (password == null)
 182           {
 183             throw new SaslException("lookupPassword()", new InternalError());
 184           }
 185         return password.toCharArray();
 186       }
 187     catch (IOException x)
 188       {
 189         if (x instanceof SaslException)
 190           {
 191             throw (SaslException) x;
 192           }
 193         throw new SaslException("lookupPassword()", x);
 194       }
 195   }
 196 }