Java tutorial
/******************************************************************************* * This file is part of OpenNMS(R). * * Copyright (C) 2008-2014 The OpenNMS Group, Inc. * OpenNMS(R) is Copyright (C) 1999-2014 The OpenNMS Group, Inc. * * OpenNMS(R) is a registered trademark of The OpenNMS Group, Inc. * * OpenNMS(R) is free software: you can redistribute it and/or modify * it under the terms of the GNU Affero General Public License as published * by the Free Software Foundation, either version 3 of the License, * or (at your option) any later version. * * OpenNMS(R) is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU Affero General Public License for more details. * * You should have received a copy of the GNU Affero General Public License * along with OpenNMS(R). If not, see: * http://www.gnu.org/licenses/ * * For more information contact: * OpenNMS(R) Licensing <license@opennms.org> * http://www.opennms.org/ * http://www.opennms.com/ *******************************************************************************/ package org.opennms.web.springframework.security; import java.net.ConnectException; import java.util.Date; import org.apache.commons.lang.exception.ExceptionUtils; import org.slf4j.Logger; import org.slf4j.LoggerFactory; import org.opennms.core.utils.WebSecurityUtils; import org.opennms.netmgt.events.api.EventProxy; import org.opennms.netmgt.events.api.EventProxyException; import org.opennms.netmgt.model.events.EventBuilder; import org.opennms.netmgt.xml.event.Event; import org.springframework.beans.factory.InitializingBean; import org.springframework.context.ApplicationEvent; import org.springframework.context.ApplicationListener; import org.springframework.security.access.event.AuthorizationFailureEvent; import org.springframework.security.access.event.AuthorizedEvent; import org.springframework.security.authentication.event.AbstractAuthenticationEvent; import org.springframework.security.authentication.event.AbstractAuthenticationFailureEvent; import org.springframework.security.authentication.event.AuthenticationSuccessEvent; import org.springframework.security.authentication.event.InteractiveAuthenticationSuccessEvent; import org.springframework.security.web.authentication.WebAuthenticationDetails; import org.springframework.util.Assert; import org.springframework.web.context.support.ServletRequestHandledEvent; /** * <p>SecurityAuthenticationEventOnmsEventBuilder class.</p> */ public class SecurityAuthenticationEventOnmsEventBuilder implements ApplicationListener<ApplicationEvent>, InitializingBean { private static final Logger LOG = LoggerFactory.getLogger(SecurityAuthenticationEventOnmsEventBuilder.class); /** Constant <code>SUCCESS_UEI="uei.opennms.org/internal/authentication"{trunked}</code> */ public static final String SUCCESS_UEI = "uei.opennms.org/internal/authentication/successfulLogin"; /** Constant <code>FAILURE_UEI="uei.opennms.org/internal/authentication"{trunked}</code> */ public static final String FAILURE_UEI = "uei.opennms.org/internal/authentication/failure"; private EventProxy m_eventProxy; /** {@inheritDoc} */ @Override public void onApplicationEvent(ApplicationEvent event) { LOG.debug("Received ApplicationEvent {}", event.getClass()); if (event instanceof AuthenticationSuccessEvent) { AuthenticationSuccessEvent authEvent = (AuthenticationSuccessEvent) event; EventBuilder builder = createEvent(SUCCESS_UEI, authEvent); // Sync the timestamp builder.setTime(new Date(event.getTimestamp())); if (!"true".equalsIgnoreCase(System.getProperty("org.opennms.security.disableLoginSuccessEvent"))) { sendEvent(builder.getEvent()); } } if (event instanceof AbstractAuthenticationFailureEvent) { AbstractAuthenticationFailureEvent authEvent = (AbstractAuthenticationFailureEvent) event; LOG.debug("AbstractAuthenticationFailureEvent was received, exception message - {}", authEvent.getException().getMessage()); EventBuilder builder = createEvent(FAILURE_UEI, authEvent); // Sync the timestamp builder.setTime(new Date(event.getTimestamp())); builder.addParam("exceptionName", authEvent.getException().getClass().getSimpleName()); builder.addParam("exceptionMessage", authEvent.getException().getMessage()); sendEvent(builder.getEvent()); } if (event instanceof AuthorizedEvent) { AuthorizedEvent authEvent = (AuthorizedEvent) event; LOG.debug("AuthorizedEvent received - \n Details - {}\n Principal - {}", authEvent.getAuthentication().getDetails(), authEvent.getAuthentication().getPrincipal()); } if (event instanceof AuthorizationFailureEvent) { AuthorizationFailureEvent authEvent = (AuthorizationFailureEvent) event; LOG.debug("AuthorizationFailureEvent received -\n Details - {}\n Principal - {}", authEvent.getAuthentication().getDetails(), authEvent.getAuthentication().getPrincipal()); } if (event instanceof InteractiveAuthenticationSuccessEvent) { InteractiveAuthenticationSuccessEvent authEvent = (InteractiveAuthenticationSuccessEvent) event; LOG.debug("InteractiveAuthenticationSuccessEvent received - \n Details - {}\n Principal - {}", authEvent.getAuthentication().getDetails(), authEvent.getAuthentication().getPrincipal()); } if (event instanceof ServletRequestHandledEvent) { ServletRequestHandledEvent authEvent = (ServletRequestHandledEvent) event; LOG.debug("ServletRequestHandledEvent received - {}\n Servlet - {}\n URL - {}", authEvent.getDescription(), authEvent.getServletName(), authEvent.getRequestUrl()); LOG.info("{} requested from {} by user {}", authEvent.getRequestUrl(), authEvent.getClientAddress(), authEvent.getUserName()); } } private EventBuilder createEvent(String uei, AbstractAuthenticationEvent authEvent) { EventBuilder builder = new EventBuilder(uei, "OpenNMS.WebUI"); builder.setTime(new Date(authEvent.getTimestamp())); org.springframework.security.core.Authentication auth = authEvent.getAuthentication(); if (auth != null && auth.getName() != null) { builder.addParam("user", WebSecurityUtils.sanitizeString(auth.getName())); } if (auth != null && auth.getDetails() != null && auth.getDetails() instanceof WebAuthenticationDetails) { WebAuthenticationDetails webDetails = (WebAuthenticationDetails) auth.getDetails(); if (webDetails.getRemoteAddress() != null) { builder.addParam("ip", webDetails.getRemoteAddress()); } } return builder; } private void sendEvent(Event onmsEvent) { try { m_eventProxy.send(onmsEvent); } catch (EventProxyException e) { if (ExceptionUtils.getRootCause(e) instanceof ConnectException) { LOG.error("Failed to send OpenNMS event to event proxy ( {} )", m_eventProxy, e); } else { LOG.error("Failed to send OpenNMS event to event proxy ( {} )", m_eventProxy, e); } } } /** * <p>setEventProxy</p> * * @param eventProxy a {@link org.opennms.netmgt.events.api.EventProxy} object. */ public void setEventProxy(EventProxy eventProxy) { m_eventProxy = eventProxy; } /** * <p>afterPropertiesSet</p> */ @Override public void afterPropertiesSet() { Assert.notNull(m_eventProxy, "property eventProxy must be set"); } }