List of usage examples for org.apache.shiro.authc UsernamePasswordToken getHost
public String getHost()
From source file:app.controllers.access.LoginController.java
License:Apache License
@POST public void signin() { String pass = ZHelper.simpleSaltedHash(param("nameoremail"), param("password")); UsernamePasswordToken token = new UsernamePasswordToken(param("nameoremail"), pass); token.setHost(remoteAddress());// w w w. ja v a2s .co m token.setRememberMe(Boolean.parseBoolean(param("rememberme"))); try { // currentUser.login(token); ZHelperAuth auth = ZHelperAuth.getInstance(); auth.AuthHelper(token); System.out.println(auth.isAuth()); if (auth.isAuth()) { UsernamePasswordToken loginToken = (UsernamePasswordToken) auth.getAuthToken(); ZHelper.logInfo(LoginController.class, loginToken.getHost() + " :: ==> getIpFrom Client "); session().put("authuser", auth); redirect(context()); return; } } catch (UnknownAccountException uae) { ZHelper.logError(LoginController.class, uae.getMessage()); } catch (IncorrectCredentialsException ice) { ZHelper.logError(LoginController.class, ice.getMessage()); } catch (LockedAccountException lae) { ZHelper.logError(LoginController.class, lae.getMessage()); } catch (Exception e) { if (Configuration.getEnv().equalsIgnoreCase("development")) { render("/system/error", Collections.map("e", e)).noLayout(); } } view("msgbox", "Email Tidak ditemukan : " + param("nameoremail") + "<br /> Untuk Bergabung dengan OTransmedia silakan <a href=\"" + context() + "/access/login\" ><strong>disini</strong></a>"); }
From source file:cn.com.qiqi.order.web.system.security.ShiroDbRealm.java
License:Apache License
/** * ?,./* w ww. ja v a 2 s. co m*/ */ @Override protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken authcToken) throws AuthenticationException { UsernamePasswordToken token = (UsernamePasswordToken) authcToken; User user = userService.findUserByUserName(token.getUsername()); if (user != null) { if (user.getStatus() != 1) { Subject subject = SecurityUtils.getSubject(); subject.getSession().setAttribute(Constants.CURRENT_USER_NAME, user.getUserName()); throw new DisabledAccountException(); } String md5 = Encodes.encodeHex( Digests.md5(String.valueOf(token.getPassword()).getBytes(), user.getUserName().getBytes(), 1)); if (!user.getPassword().equals(md5)) { throw new IncorrectCredentialsException(); } sysLogService.log("", "", user.getUserName(), SysLog.INFO, token.getHost(), SysLog.USER); Subject subject = SecurityUtils.getSubject(); subject.getSession().setAttribute(Constants.CURRENT_USER_NAME, user.getUserName()); return new SimpleAuthenticationInfo(new ShiroUser(user.getId(), user.getUserName(), user.getRealName()), user.getPassword(), ByteSource.Util.bytes(user.getUserName()), getName()); } else { throw new UnknownAccountException(); } }
From source file:com.stormpath.shiro.realm.ApplicationRealm.java
License:Apache License
protected AuthenticationRequest createAuthenticationRequest(UsernamePasswordToken token) { String username = token.getUsername(); char[] password = token.getPassword(); String host = token.getHost(); return new UsernamePasswordRequest(username, password, host); }
From source file:org.opendaylight.aaa.shiro.filters.AuthenticationTokenUtils.java
License:Open Source License
/** * Extracts the hostname if possible. If the supplied token is a <code>UsernamePasswordToken</code> * and the hostname field is not set, <code>DEFAULT_HOSTNAME</code> is returned. If the supplied * token is not a <code>UsernamePasswordToken</code> (i.e., a <code>CasToken</code> or other * implementation of <code>AuthenticationToken</code>), then <code>DEFAULT_HOSTNAME</code> is * returned.// w w w . j a va2 s. c o m * * @param token An <code>AuthenticationToken</code>, possibly a <code>UsernamePasswordToken</code> * @return the hostname, or <code>DEFAULT_USERNAME</code> depending on input */ public static String extractHostname(final AuthenticationToken token) { if (isUsernamePasswordToken(token)) { final UsernamePasswordToken upt = (UsernamePasswordToken) token; return extractField(upt.getHost(), DEFAULT_HOSTNAME); } return DEFAULT_HOSTNAME; }
From source file:org.sonatype.nexus.content.ContentRestrictedToken.java
License:Open Source License
public ContentRestrictedToken(final UsernamePasswordToken basis, final ServletRequest request) { checkNotNull(basis);//from w w w .j a va 2s.c o m this.principal = basis.getPrincipal(); this.credentials = basis.getPassword(); //this.rememberMe = basis.isRememberMe(); this.host = basis.getHost(); this.request = checkNotNull(request); }
From source file:org.sonatype.nexus.security.filter.authc.NexusContentRestrictedToken.java
License:Open Source License
public NexusContentRestrictedToken(final UsernamePasswordToken basis, final ServletRequest request) { checkNotNull(basis);/*from w ww .j av a 2 s .c o m*/ this.principal = basis.getPrincipal(); this.credentials = basis.getPassword(); //this.rememberMe = basis.isRememberMe(); this.host = basis.getHost(); this.request = checkNotNull(request); }
From source file:zi.helper.ZHelperAuth.java
License:Apache License
public void AuthHelper(AuthenticationToken token) throws AuthenticationException { //identify account to log to UsernamePasswordToken userPassToken = (UsernamePasswordToken) token; String username = userPassToken.getUsername(); if (username == null) { ZHelper.logInfo(ZHelperAuth.class, "Username is null."); return;/*from w ww .java2 s . co m*/ } try { // read password hash and salt from db User UserDB = MUser.ReadByName(username); if (UserDB.get("password") == null) { ZHelper.logInfo(ZHelperAuth.class, "No account found for user [" + username + "]"); setisAuth(false); return; } else { setUser(UserDB); //tokenLogin {emailpassword + ip} setTokenLogin(ZHelper.simpleSaltedHash(UserDB.get("email").toString(), UserDB.get("password").toString(), userPassToken.getHost()).toCharArray()); ZHelper.logInfo(ZHelperAuth.class, "account found for user [" + username + "] in <" + userPassToken.getHost() + "> :: => [" + String.valueOf(getToken()) + "]"); } UsernamePasswordToken info = new UsernamePasswordToken(UserDB.get("name").toString(), UserDB.get("password").toString(), userPassToken.isRememberMe(), userPassToken.getHost()); // return salted credentials ZHelper.logInfo(ZHelperAuth.class, String.valueOf(userPassToken.getPassword()) + " :::=> token" + UserDB.get("name")); ZHelper.logInfo(ZHelperAuth.class, String.valueOf(info.getPassword()) + " :::=> token" + info.getUsername()); // SimpleAuthenticationInfo info = new SimpleAuthenticationInfo(UserDB.get("name"), // ZHelper.simpleSaltedHash(UserDB.get("name").toString(), // userPassToken.getPassword().toString()), "jdbcRealm"); // PasswordService svc = new DefaultPasswordService(); // for compare secure auth password user if (Arrays.equals(info.getPassword(), userPassToken.getPassword())) { // if (svc.passwordsMatch(userPassToken.getPassword(), String.valueOf(info.getPassword()))) { ZHelper.logInfo(ZHelperAuth.class, String.valueOf(userPassToken.getCredentials()) + " :::=> token" + UserDB.get("name")); setisAuth(true); ZHelper.logInfo(ZHelperAuth.class, info.getCredentials().toString() + " ::: => salt"); } else setisAuth(false); setAuthToken(info); } catch (DBException db) { ZHelper.logError(ZHelperAuth.class, db.getMessage()); } }