safebox/guacamole-client
4
0
Fork 0
mirror of https://github.com/gyurix1968/guacamole-client.git synced 2025-09-06 13:17:41 +00:00
Code Issues Packages Projects Releases Wiki Activity

Return the truth in user permissions. Simplify SimpleUserContext.

Browse Source
This commit is contained in:
Michael Jumper
2013-08-22 17:28:36 -07:00
parent 8a5c18f90d
commit 8afc25abcf
3 changed files with 32 additions and 17 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
guacamole-ext/src/main/java/net/sourceforge/guacamole/net/auth/simple/SimpleAuthenticationProvider.java
View File

@@ -41,7 +41,6 @@ import java.util.Map;
import net.sourceforge.guacamole.GuacamoleException; import net.sourceforge.guacamole.GuacamoleException;
import net.sourceforge.guacamole.net.auth.AuthenticationProvider; import net.sourceforge.guacamole.net.auth.AuthenticationProvider;
import net.sourceforge.guacamole.net.auth.Credentials; import net.sourceforge.guacamole.net.auth.Credentials;
import net.sourceforge.guacamole.net.auth.User;
import net.sourceforge.guacamole.net.auth.UserContext; import net.sourceforge.guacamole.net.auth.UserContext;
import net.sourceforge.guacamole.protocol.GuacamoleConfiguration; import net.sourceforge.guacamole.protocol.GuacamoleConfiguration;
@@ -89,11 +88,8 @@ public abstract class SimpleAuthenticationProvider
if (configs == null) if (configs == null)
return null; return null;
// Build new user from credentials
User user = new SimpleUser(credentials.getUsername(), configs);
// Return user context restricted to authorized configs // Return user context restricted to authorized configs
return new SimpleUserContext(user, configs); return new SimpleUserContext(configs);
} }

23
guacamole-ext/src/main/java/net/sourceforge/guacamole/net/auth/simple/SimpleUser.java
View File

@@ -37,12 +37,15 @@ package net.sourceforge.guacamole.net.auth.simple;
* *
* ***** END LICENSE BLOCK ***** */ * ***** END LICENSE BLOCK ***** */
import java.util.Collection;
import java.util.HashSet; import java.util.HashSet;
import java.util.Map; import java.util.Map;
import java.util.Set; import java.util.Set;
import net.sourceforge.guacamole.GuacamoleException; import net.sourceforge.guacamole.GuacamoleException;
import net.sourceforge.guacamole.GuacamoleSecurityException; import net.sourceforge.guacamole.GuacamoleSecurityException;
import net.sourceforge.guacamole.net.auth.AbstractUser; import net.sourceforge.guacamole.net.auth.AbstractUser;
import net.sourceforge.guacamole.net.auth.ConnectionGroup;
import net.sourceforge.guacamole.net.auth.permission.ConnectionGroupPermission;
import net.sourceforge.guacamole.net.auth.permission.ConnectionPermission; import net.sourceforge.guacamole.net.auth.permission.ConnectionPermission;
import net.sourceforge.guacamole.net.auth.permission.ObjectPermission; import net.sourceforge.guacamole.net.auth.permission.ObjectPermission;
import net.sourceforge.guacamole.net.auth.permission.Permission; import net.sourceforge.guacamole.net.auth.permission.Permission;
@@ -72,14 +75,16 @@ public class SimpleUser extends AbstractUser {
* *
* @param username The username to assign to this SimpleUser. * @param username The username to assign to this SimpleUser.
* @param configs All configurations this user has read access to. * @param configs All configurations this user has read access to.
* @param groups All groups this user has read access to.
*/ */
public SimpleUser(String username, public SimpleUser(String username,
Map<String, GuacamoleConfiguration> configs) { Map<String, GuacamoleConfiguration> configs,
Collection<ConnectionGroup> groups) {
// Set username // Set username
setUsername(username); setUsername(username);
// Add permissions // Add connection permissions
for (String identifier : configs.keySet()) { for (String identifier : configs.keySet()) {
// Create permission // Create permission
@@ -93,6 +98,20 @@ public class SimpleUser extends AbstractUser {
} }
// Add group permissions
for (ConnectionGroup group : groups) {
// Create permission
Permission permission = new ConnectionGroupPermission(
ObjectPermission.Type.READ,
group.getIdentifier()
);
// Add to set
permissions.add(permission);
}
} }
@Override @Override

20
guacamole-ext/src/main/java/net/sourceforge/guacamole/net/auth/simple/SimpleUserContext.java
View File

@@ -75,25 +75,25 @@ public class SimpleUserContext implements UserContext {
/** /**
* Creates a new SimpleUserContext which provides access to only those * Creates a new SimpleUserContext which provides access to only those
* configurations within the given Map. The User given must be the user * configurations within the given Map.
* that owns this UserContext, and the Map given must contain only *
* GuacamoleConfigurations that the given User has read access to.
*
* @param self The owner of this UserContext.
* @param configs A Map of all configurations for which the user associated * @param configs A Map of all configurations for which the user associated
* with this UserContext has read access. * with this UserContext has read access.
*/ */
public SimpleUserContext(User self, public SimpleUserContext(Map<String, GuacamoleConfiguration> configs) {
Map<String, GuacamoleConfiguration> configs) {
this.self = self;
this.userDirectory = new SimpleUserDirectory(self);
// Add root group that contains only configurations // Add root group that contains only configurations
this.connectionGroup = new SimpleConnectionGroup("ROOT", "ROOT", this.connectionGroup = new SimpleConnectionGroup("ROOT", "ROOT",
new SimpleConnectionDirectory(configs), new SimpleConnectionDirectory(configs),
new SimpleConnectionGroupDirectory(Collections.EMPTY_LIST)); new SimpleConnectionGroupDirectory(Collections.EMPTY_LIST));
// Build new user from credentials, giving the user an arbitrary name
this.self = new SimpleUser("user",
configs, Collections.singleton(connectionGroup));
// Create user directory for new user
this.userDirectory = new SimpleUserDirectory(self);
} }
@Override @Override