| commit | author | age | ||
| 924c9b | 1 | /* |
| JM | 2 | * Copyright 2014 gitblit.com. |
| 3 | * | |
| 4 | * Licensed under the Apache License, Version 2.0 (the "License"); you may not | |
| 5 | * use this file except in compliance with the License. You may obtain a copy of | |
| 6 | * the License at | |
| 7 | * | |
| 8 | * http://www.apache.org/licenses/LICENSE-2.0 | |
| 9 | * | |
| 10 | * Unless required by applicable law or agreed to in writing, software | |
| 11 | * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT | |
| 12 | * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the | |
| 13 | * License for the specific language governing permissions and limitations under | |
| 14 | * the License. | |
| 15 | */ | |
| 16 | package com.gitblit.transport.ssh; | |
| 17 | ||
| 18 | import java.util.Locale; | |
| 19 | ||
| d41034 | 20 | import org.apache.sshd.server.auth.password.PasswordAuthenticator; |
| 924c9b | 21 | import org.apache.sshd.server.session.ServerSession; |
| 44e2ee | 22 | import org.slf4j.Logger; |
| JM | 23 | import org.slf4j.LoggerFactory; |
| 924c9b | 24 | |
| b53611 | 25 | import com.gitblit.manager.IAuthenticationManager; |
| 924c9b | 26 | import com.gitblit.models.UserModel; |
| JM | 27 | |
| 28 | /** | |
| 29 | * | |
| 56b3f3 | 30 | * Authenticates an SSH session with username/password credentials. |
| JM | 31 | * |
| 924c9b | 32 | * @author James Moger |
| JM | 33 | * |
| 34 | */ | |
| 448145 | 35 | public class UsernamePasswordAuthenticator implements PasswordAuthenticator { |
| 924c9b | 36 | |
| 44e2ee | 37 | protected final Logger log = LoggerFactory.getLogger(getClass()); |
| JM | 38 | |
| b53611 | 39 | protected final IAuthenticationManager authManager; |
| 924c9b | 40 | |
| 448145 | 41 | public UsernamePasswordAuthenticator(IAuthenticationManager authManager) { |
| b53611 | 42 | this.authManager = authManager; |
| 924c9b | 43 | } |
| JM | 44 | |
| 45 | @Override | |
| 46 | public boolean authenticate(String username, String password, ServerSession session) { | |
| a8dd37 | 47 | SshDaemonClient client = session.getAttribute(SshDaemonClient.KEY); |
| JM | 48 | if (client.getUser() != null) { |
| 44e2ee | 49 | log.info("{} has already authenticated!", username); |
| JM | 50 | return true; |
| 51 | } | |
| 52 | ||
| 924c9b | 53 | username = username.toLowerCase(Locale.US); |
| 0d7c65 | 54 | UserModel user = authManager.authenticate(username, password.toCharArray(), null); |
| 924c9b | 55 | if (user != null) { |
| a8dd37 | 56 | client.setUser(user); |
| 924c9b | 57 | return true; |
| JM | 58 | } |
| 44e2ee | 59 | |
| b7fcca | 60 | log.warn("could not authenticate {} ({}) for SSH using the supplied password", username, client.getRemoteAddress()); |
| 924c9b | 61 | return false; |
| JM | 62 | } |
| 63 | } | |
