/* ************************************************************************ ******************* CANADIAN ASTRONOMY DATA CENTRE ******************* ************** CENTRE CANADIEN DE DONNÉES ASTRONOMIQUES ************** * * (c) 2014. (c) 2014. * Government of Canada Gouvernement du Canada * National Research Council Conseil national de recherches * Ottawa, Canada, K1A 0R6 Ottawa, Canada, K1A 0R6 * All rights reserved Tous droits réservés * * NRC disclaims any warranties, Le CNRC dénie toute garantie * expressed, implied, or énoncée, implicite ou légale, * statutory, of any kind with de quelque nature que ce * respect to the software, soit, concernant le logiciel, * including without limitation y compris sans restriction * any warranty of merchantability toute garantie de valeur * or fitness for a particular marchande ou de pertinence * purpose. NRC shall not be pour un usage particulier. * liable in any event for any Le CNRC ne pourra en aucun cas * damages, whether direct or être tenu responsable de tout * indirect, special or general, dommage, direct ou indirect, * consequential or incidental, particulier ou général, * arising from the use of the accessoire ou fortuit, résultant * software. Neither the name de l'utilisation du logiciel. Ni * of the National Research le nom du Conseil National de * Council of Canada nor the Recherches du Canada ni les noms * names of its contributors may de ses participants ne peuvent * be used to endorse or promote être utilisés pour approuver ou * products derived from this promouvoir les produits dérivés * software without specific prior de ce logiciel sans autorisation * written permission. préalable et particulière * par écrit. * * This file is part of the Ce fichier fait partie du projet * OpenCADC project. OpenCADC. * * OpenCADC is free software: OpenCADC est un logiciel libre ; * you can redistribute it and/or vous pouvez le redistribuer ou le * modify it under the terms of modifier suivant les termes de * the GNU Affero General Public la “GNU Affero General Public * License as published by the License” telle que publiée * Free Software Foundation, par la Free Software Foundation * either version 3 of the : soit la version 3 de cette * License, or (at your option) licence, soit (à votre gré) * any later version. toute version ultérieure. * * OpenCADC is distributed in the OpenCADC est distribué * hope that it will be useful, dans l’espoir qu’il vous * but WITHOUT ANY WARRANTY; sera utile, mais SANS AUCUNE * without even the implied GARANTIE : sans même la garantie * warranty of MERCHANTABILITY implicite de COMMERCIALISABILITÉ * or FITNESS FOR A PARTICULAR ni d’ADÉQUATION À UN OBJECTIF * PURPOSE. See the GNU Affero PARTICULIER. Consultez la Licence * General Public License for Générale Publique GNU Affero * more details. pour plus de détails. * * You should have received Vous devriez avoir reçu une * a copy of the GNU Affero copie de la Licence Générale * General Public License along Publique GNU Affero avec * with OpenCADC. If not, see OpenCADC ; si ce n’est * . pas le cas, consultez : * . * * $Revision: 4 $ * ************************************************************************ */ package ca.nrc.cadc.ac.server.web; import java.io.IOException; import java.security.AccessControlException; import java.security.PrivilegedActionException; import java.security.PrivilegedExceptionAction; import java.util.Set; import javax.security.auth.Subject; import javax.servlet.ServletConfig; import javax.servlet.ServletException; import javax.servlet.http.HttpServlet; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse; import org.apache.log4j.Logger; import ca.nrc.cadc.ac.server.PluginFactory; import ca.nrc.cadc.ac.server.UserPersistence; import ca.nrc.cadc.auth.AuthenticationUtil; import ca.nrc.cadc.auth.HttpPrincipal; import ca.nrc.cadc.log.ServletLogInfo; import ca.nrc.cadc.net.TransientException; import ca.nrc.cadc.util.StringUtil; /** * Servlet to handle password changes. Passwords are an integral part of the * access control system and are handled differently to accommodate stricter * guidelines. *

* This servlet handles POST only. It relies on the Subject being set higher * up by the AccessControlFilter as configured in the web descriptor. */ public class ModifyPasswordServlet extends HttpServlet { private static final Logger log = Logger.getLogger(ModifyPasswordServlet.class); UserPersistence userPersistence; @Override public void init(final ServletConfig config) throws ServletException { super.init(config); PluginFactory pluginFactory = new PluginFactory(); userPersistence = pluginFactory.createUserPersistence(); } /** * Attempt to change password. * * @param request The HTTP Request. * @param response The HTTP Response. * @throws IOException Any errors that are not expected. */ public void doPost(final HttpServletRequest request, final HttpServletResponse response) throws IOException { final long start = System.currentTimeMillis(); final ServletLogInfo logInfo = new ServletLogInfo(request); log.info(logInfo.start()); try { final Subject subject = getSubject(request); logInfo.setSubject(subject); if ((subject == null) || (subject.getPrincipals().isEmpty())) { throw new AccessControlException("Unauthorized"); } else { Subject.doAs(subject, new PrivilegedExceptionAction() { public Object run() throws Exception { Set pset = subject.getPrincipals(HttpPrincipal.class); if (pset.isEmpty()) throw new IllegalStateException("no HttpPrincipal in subject"); HttpPrincipal userID = pset.iterator().next(); String oldPassword = request.getParameter("old_password"); String newPassword = request.getParameter("new_password"); if (StringUtil.hasText(oldPassword)) { if (StringUtil.hasText(newPassword)) { userPersistence.setPassword(userID, oldPassword, newPassword); } else { throw new IllegalArgumentException("Missing new password"); } } else { throw new IllegalArgumentException("Missing old password"); } return null; } }); } } catch (Throwable t) { try { if (t instanceof PrivilegedActionException) { Exception e = ((PrivilegedActionException) t).getException(); if (e != null) { throw e; } } throw t; } catch (IllegalArgumentException e) { log.debug(e.getMessage(), e); response.setContentType("text/plain"); logInfo.setMessage(e.getMessage()); response.setStatus(HttpServletResponse.SC_BAD_REQUEST); } catch (AccessControlException e) { log.debug(e.getMessage(), e); response.setContentType("text/plain"); logInfo.setMessage(e.getMessage()); response.setStatus(HttpServletResponse.SC_UNAUTHORIZED); } catch (TransientException e) { log.debug(e.getMessage(), e); String message = e.getMessage(); logInfo.setMessage(message); logInfo.setSuccess(false); response.setContentType("text/plain"); if (e.getRetryDelay() > 0) response.setHeader("Retry-After", Integer.toString(e.getRetryDelay())); response.getWriter().write("Transient Error: " + message); response.setStatus(503); } catch (Throwable e) { String message = "Internal Server Error: " + e.getMessage(); log.error(message, e); response.setContentType("text/plain"); logInfo.setSuccess(false); logInfo.setMessage(message); response.setStatus(HttpServletResponse.SC_INTERNAL_SERVER_ERROR); } finally { logInfo.setElapsedTime(System.currentTimeMillis() - start); log.info(logInfo.end()); } } } /** * Get and augment the Subject. Tests can override this method. * * @param request Servlet request * @return augmented Subject */ Subject getSubject(final HttpServletRequest request) { return AuthenticationUtil.getSubject(request); } }