You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@juddi.apache.org by ks...@apache.org on 2012/01/03 20:23:48 UTC
svn commit: r1226927 -
/juddi/trunk/juddi-core/src/main/java/org/apache/juddi/api/impl/UDDISecurityImpl.java
Author: kstam
Date: Tue Jan 3 19:23:47 2012
New Revision: 1226927
URL: http://svn.apache.org/viewvc?rev=1226927&view=rev
Log:
JUDDI-536, checking the publisher exists before handing out a security token.
Modified:
juddi/trunk/juddi-core/src/main/java/org/apache/juddi/api/impl/UDDISecurityImpl.java
Modified: juddi/trunk/juddi-core/src/main/java/org/apache/juddi/api/impl/UDDISecurityImpl.java
URL: http://svn.apache.org/viewvc/juddi/trunk/juddi-core/src/main/java/org/apache/juddi/api/impl/UDDISecurityImpl.java?rev=1226927&r1=1226926&r2=1226927&view=diff
==============================================================================
--- juddi/trunk/juddi-core/src/main/java/org/apache/juddi/api/impl/UDDISecurityImpl.java (original)
+++ juddi/trunk/juddi-core/src/main/java/org/apache/juddi/api/impl/UDDISecurityImpl.java Tue Jan 3 19:23:47 2012
@@ -36,6 +36,7 @@ import org.apache.juddi.api.util.Replica
import org.apache.juddi.api.util.SecurityQuery;
import org.apache.juddi.config.PersistenceManager;
import org.apache.juddi.mapping.MappingModelToApi;
+import org.apache.juddi.model.Publisher;
import org.apache.juddi.v3.auth.Authenticator;
import org.apache.juddi.v3.auth.AuthenticatorFactory;
import org.apache.juddi.v3.error.ErrorMessage;
@@ -98,7 +99,7 @@ public class UDDISecurityImpl extends Au
Authenticator authenticator = AuthenticatorFactory.getAuthenticator();
String publisherId = authenticator.authenticate(body.getUserID(), body.getCred());
-
+
return getAuthToken(publisherId);
}
@@ -113,7 +114,10 @@ public class UDDISecurityImpl extends Au
EntityTransaction tx = em.getTransaction();
try {
tx.begin();
-
+ //Check if this publisher exists
+ Publisher publisher = em.find(Publisher.class, publisherId);
+ if (publisher == null)
+ throw new UnknownUserException(new ErrorMessage("errors.auth.InvalidCredentials", publisherId));
// Generate auth token and store it!
String authInfo = AUTH_TOKEN_PREFIX + UUID.randomUUID();
---------------------------------------------------------------------
To unsubscribe, e-mail: commits-unsubscribe@juddi.apache.org
For additional commands, e-mail: commits-help@juddi.apache.org