You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@juddi.apache.org by ks...@apache.org on 2012/01/03 20:23:48 UTC

svn commit: r1226927 - /juddi/trunk/juddi-core/src/main/java/org/apache/juddi/api/impl/UDDISecurityImpl.java

Author: kstam
Date: Tue Jan  3 19:23:47 2012
New Revision: 1226927

URL: http://svn.apache.org/viewvc?rev=1226927&view=rev
Log:
JUDDI-536, checking the publisher exists before handing out a security token.

Modified:
    juddi/trunk/juddi-core/src/main/java/org/apache/juddi/api/impl/UDDISecurityImpl.java

Modified: juddi/trunk/juddi-core/src/main/java/org/apache/juddi/api/impl/UDDISecurityImpl.java
URL: http://svn.apache.org/viewvc/juddi/trunk/juddi-core/src/main/java/org/apache/juddi/api/impl/UDDISecurityImpl.java?rev=1226927&r1=1226926&r2=1226927&view=diff
==============================================================================
--- juddi/trunk/juddi-core/src/main/java/org/apache/juddi/api/impl/UDDISecurityImpl.java (original)
+++ juddi/trunk/juddi-core/src/main/java/org/apache/juddi/api/impl/UDDISecurityImpl.java Tue Jan  3 19:23:47 2012
@@ -36,6 +36,7 @@ import org.apache.juddi.api.util.Replica
 import org.apache.juddi.api.util.SecurityQuery;
 import org.apache.juddi.config.PersistenceManager;
 import org.apache.juddi.mapping.MappingModelToApi;
+import org.apache.juddi.model.Publisher;
 import org.apache.juddi.v3.auth.Authenticator;
 import org.apache.juddi.v3.auth.AuthenticatorFactory;
 import org.apache.juddi.v3.error.ErrorMessage;
@@ -98,7 +99,7 @@ public class UDDISecurityImpl extends Au
 		Authenticator authenticator = AuthenticatorFactory.getAuthenticator();
 		
 		String publisherId = authenticator.authenticate(body.getUserID(), body.getCred());
-
+		
 		return getAuthToken(publisherId);
 	}
 	
@@ -113,7 +114,10 @@ public class UDDISecurityImpl extends Au
 		EntityTransaction tx = em.getTransaction();
 		try {
 			tx.begin();
-
+			//Check if this publisher exists 
+			Publisher publisher = em.find(Publisher.class, publisherId);
+			if (publisher == null)
+				throw new UnknownUserException(new ErrorMessage("errors.auth.InvalidCredentials", publisherId));
 
 			// Generate auth token and store it!
 			String authInfo = AUTH_TOKEN_PREFIX + UUID.randomUUID();



---------------------------------------------------------------------
To unsubscribe, e-mail: commits-unsubscribe@juddi.apache.org
For additional commands, e-mail: commits-help@juddi.apache.org