svn commit: r1226927 - /juddi/trunk/juddi-core/src/main/java/org/apache/juddi/api/impl/UDDISecurityImpl.java

Tue, 03 Jan 2012 11:24:13 -0800 

Author: kstam
Date: Tue Jan  3 19:23:47 2012
New Revision: 1226927

URL: http://svn.apache.org/viewvc?rev=1226927&view=rev
Log:
JUDDI-536, checking the publisher exists before handing out a security token.

Modified:
    
juddi/trunk/juddi-core/src/main/java/org/apache/juddi/api/impl/UDDISecurityImpl.java

Modified: 
juddi/trunk/juddi-core/src/main/java/org/apache/juddi/api/impl/UDDISecurityImpl.java
URL: 
http://svn.apache.org/viewvc/juddi/trunk/juddi-core/src/main/java/org/apache/juddi/api/impl/UDDISecurityImpl.java?rev=1226927&r1=1226926&r2=1226927&view=diff
==============================================================================
--- 
juddi/trunk/juddi-core/src/main/java/org/apache/juddi/api/impl/UDDISecurityImpl.java
 (original)
+++ 
juddi/trunk/juddi-core/src/main/java/org/apache/juddi/api/impl/UDDISecurityImpl.java
 Tue Jan  3 19:23:47 2012
@@ -36,6 +36,7 @@ import org.apache.juddi.api.util.Replica
 import org.apache.juddi.api.util.SecurityQuery;
 import org.apache.juddi.config.PersistenceManager;
 import org.apache.juddi.mapping.MappingModelToApi;
+import org.apache.juddi.model.Publisher;
 import org.apache.juddi.v3.auth.Authenticator;
 import org.apache.juddi.v3.auth.AuthenticatorFactory;
 import org.apache.juddi.v3.error.ErrorMessage;
@@ -98,7 +99,7 @@ public class UDDISecurityImpl extends Au
                Authenticator authenticator = 
AuthenticatorFactory.getAuthenticator();
                
                String publisherId = 
authenticator.authenticate(body.getUserID(), body.getCred());
-
+               
                return getAuthToken(publisherId);
        }
        
@@ -113,7 +114,10 @@ public class UDDISecurityImpl extends Au
                EntityTransaction tx = em.getTransaction();
                try {
                        tx.begin();
-
+                       //Check if this publisher exists 
+                       Publisher publisher = em.find(Publisher.class, 
publisherId);
+                       if (publisher == null)
+                               throw new UnknownUserException(new 
ErrorMessage("errors.auth.InvalidCredentials", publisherId));
 
                        // Generate auth token and store it!
                        String authInfo = AUTH_TOKEN_PREFIX + UUID.randomUUID();



---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to