1. /*

  2.  * Copyright 2002 Sun Microsystems, Inc. All rights reserved.

  3.  * SUN PROPRIETARY/CONFIDENTIAL. Use is subject to license terms.

  4.  */

  5.  

  6. package javax.security.auth.login;

  7. 

  8. import javax.security.auth.AuthPermission;

  9.  

  10. import java.io.*;

  11. import java.util.*;

  12. import java.net.URL;

  13. 

  14. /**

  15.  * <p> This is an abstract class for representing the configuration of

  16.  * LoginModules under an application.  The <code>Configuration</code> specifies

  17.  * which LoginModules should be used for a particular application, and in what

  18.  * order the LoginModules should be invoked.

  19.  * This abstract class needs to be subclassed to provide an implementation

  20.  * which reads and loads the actual <code>Configuration</code>.

  21.  *

  22.  * <p> When the <code>LoginContext</code> needs to read the Configuration

  23.  * to determine which LoginModules are configured for a particular

  24.  * application, <i>appName</i>, it makes the following calls:

  25.  * <pre>

  26.  *	config = Configuration.getConfiguration();

  27.  *	entries = config.getAppConfigurationEntry(appName);

  28.  * </pre>

  29.  *

  30.  * <p> A login configuration contains the following information.

  31.  * Note that this example only represents the default syntax for the

  32.  * <code>Configuration</code>.  Subclass implementations of this class

  33.  * may implement alternative syntaxes and may retrieve the

  34.  * <code>Configuration</code> from any source such as files, databases,

  35.  * or servers.

  36.  *

  37.  * <pre>

  38.  *      Application {

  39.  *	      Module  Flag    ModuleOptions;

  40.  *	      Module  Flag    ModuleOptions;

  41.  *	      Module  Flag    ModuleOptions;

  42.  *      };

  43.  *      Application {

  44.  *	      Module  Flag    ModuleOptions;

  45.  *	      Module  Flag    ModuleOptions;

  46.  *      };

  47.  *      other {

  48.  *	      Module  Flag    ModuleOptions;

  49.  *	      Module  Flag    ModuleOptions;

  50.  *      };

  51.  * </pre>

  52.  *

  53.  * <p> Each entry in the <code>Configuration</code> is indexed via an

  54.  * application name, <i>Application</i>, and contains a list of

  55.  * LoginModules configured for that application.  Authentication proceeds

  56.  * down the list in the exact order specified.  If an application

  57.  * does not have specific entry, it defaults to the specific entry

  58.  * for "<i>other</i>".

  59.  *

  60.  * <p> The <i>Flag</i> value controls the overall behavior as authentication

  61.  * proceeds down the stack.  The following represents a description of the

  62.  * valid values for <i>Flag</i> and their respective semantics:

  63.  *

  64.  * <pre>

  65.  *      1) Required     - The <code>LoginModule</code> is required to succeed.

  66.  *			If it succeeds or fails, authentication still continues

  67.  *			to proceed down the <code>LoginModule</code> list.

  68.  *

  69.  *      2) Requisite    - The <code>LoginModule</code> is required to succeed.

  70.  *			If it succeeds, authentication continues down the

  71.  *			<code>LoginModule</code> list.  If it fails,

  72.  *			control immediately returns to the application

  73.  *			(authentication does not proceed down the

  74.  *			<code>LoginModule</code> list).

  75.  *

  76.  *      3) Sufficient   - The <code>LoginModule</code> is not required to

  77.  *			succeed.  If it does succeed, control immediately

  78.  *			returns to the application (authentication does not

  79.  *			proceed down the <code>LoginModule</code> list).

  80.  *			If it fails, authentication continues down the

  81.  *			<code>LoginModule</code> list.

  82.  *

  83.  *      4) Optional     - The <code>LoginModule</code> is not required to

  84.  *			succeed.  If it succeeds or fails,

  85.  *			authentication still continues to proceed down the

  86.  *			<code>LoginModule</code> list.

  87.  * </pre>

  88.  *

  89.  * <p> The overall authentication succeeds only if all <i>Required</i> and

  90.  * <i>Requisite</i> LoginModules succeed.  If a <i>Sufficient</i>

  91.  * <code>LoginModule</code> is configured and succeeds,

  92.  * then only the <i>Required</i> and <i>Requisite</i> LoginModules prior to 

  93.  * that <i>Sufficient</i> <code>LoginModule</code> need to have succeeded for

  94.  * the overall authentication to succeed. If no <i>Required</i> or

  95.  * <i>Requisite</i> LoginModules are configured for an application,

  96.  * then at least one <i>Sufficient</i> or <i>Optional</i>

  97.  * <code>LoginModule</code> must succeed.

  98.  *

  99.  * <p> <i>ModuleOptions</i> is a space separated list of

  100.  * <code>LoginModule</code>-specific values which are passed directly to

  101.  * the underlying LoginModules.  Options are defined by the

  102.  * <code>LoginModule</code> itself, and control the behavior within it.

  103.  * For example, a <code>LoginModule</code> may define options to support

  104.  * debugging/testing capabilities.  The correct way to specify options in the

  105.  * <code>Configuration</code> is by using the following key-value pairing:

  106.  * <i>debug=true</i>.  The key and value should be separated by an

  107.  * 'equals' symbol.  Note that there is no limit to the number of

  108.  * options a <code>LoginModule</code> may define.

  109.  *

  110.  * <p> The following represents an example <code>Configuration</code> entry

  111.  * based on the syntax above:

  112.  *

  113.  * <pre>

  114.  *      Login {

  115.  *	      sun.modules.SmartCard   required;

  116.  *	      sun.modules.Kerberos    optional	debug=true;

  117.  *      };

  118.  * </pre>

  119.  *

  120.  * <p> This <code>Configuration</code> specifies that an application named,

  121.  * "Login", requires users to first authenticate to the

  122.  * <i>sun.modules.SmartCard</i> <code>LoginModule</code>, which is

  123.  * required to succeed.  Even if the <i>sun.modules.SmartCard</i>

  124.  * authentication fails (an incorrect pin was entered), the

  125.  * <i>sun.modules.Kerberos</i> <code>LoginModule</code> still gets invoked.

  126.  * This helps hide the source of failure.  Since the <i>sun.modules.Kerberos</i>

  127.  * <code>LoginModule</code> is <i>Optional</i>, the overall

  128.  * authentication succeeds only if the <i>sun.modules.SmartCard</i>

  129.  * <code>LoginModule</code> (<i>Required</i>) succeeds.

  130.  *

  131.  * <p> Also note that the LoginModule-specific option, <i>debug=true</i>,

  132.  * is passed to the <i>sun.modules.Kerberos</i> LoginModule.  This turns on

  133.  * a debugging flag, which outputs helpful debugging information to a file.

  134.  *

  135.  * <p> The default Configuration implementation can be changed by setting the

  136.  * value of the "login.configuration.provider" security property (in the Java

  137.  * security properties file) to the fully qualified name of

  138.  * the desired Configuration implementation class.

  139.  * The Java security properties file is located in the file named

  140.  * <JAVA_HOME>/lib/security/java.security, where <JAVA_HOME>

  141.  * refers to the directory where the JDK was installed.

  142.  *

  143.  * @version 1.43, 01/14/00

  144.  * @see javax.security.auth.login.LoginContext

  145.  */

  146. public abstract class Configuration {

  147. 

  148.     private static final java.util.ResourceBundle rb =

  149. 	java.util.ResourceBundle.getBundle("com.sun.security.auth.Resources");

  150. 

  151.     private static Configuration configuration;

  152.     private static ClassLoader sysClassLoader;

  153. 

  154.     static {

  155. 	sysClassLoader =

  156. 		(ClassLoader)java.security.AccessController.doPrivileged

  157. 		(new java.security.PrivilegedAction() {

  158. 		public Object run() {

  159. 		    return ClassLoader.getSystemClassLoader();

  160. 		}

  161. 	});

  162.     };

  163. 

  164.     /**

  165.      * Sole constructor.  (For invocation by subclass constructors, typically

  166.      * implicit.)

  167.      */

  168.     protected Configuration() { }

  169. 

  170.     /**

  171.      * Get the current Login Configuration.

  172.      *

  173.      * <p>

  174.      *

  175.      * @return the current Login Configuration.

  176.      *

  177.      * @exception SecurityException if the caller does not have permission

  178.      *				to retrieve the Configuration.

  179.      */

  180.     public static Configuration getConfiguration() {

  181. 

  182. 	SecurityManager sm = System.getSecurityManager();

  183. 	if (sm != null)

  184. 	    sm.checkPermission(new AuthPermission("getLoginConfiguration"));

  185. 

  186. 	if (configuration == null) {

  187.  

  188. 	    synchronized(Configuration.class) {

  189.  

  190. 		if (configuration == null) {

  191. 		    String config_class = null;

  192. 		    config_class = (String)

  193. 			java.security.AccessController.doPrivileged

  194. 			(new java.security.PrivilegedAction() {

  195. 			public Object run() {

  196. 			    return java.security.Security.getProperty

  197. 					("login.configuration.provider");

  198. 			}

  199. 		    });

  200. 		    if (config_class == null) {

  201. 			config_class = "com.sun.security.auth.login.ConfigFile";

  202. 		    }

  203.  

  204. 		    try {

  205. 			configuration = (Configuration)Class.forName

  206. 						(config_class,

  207. 						true,

  208. 						sysClassLoader).newInstance();

  209. 		    } catch (Exception e) {

  210. 			throw new SecurityException(rb.getString

  211. 				("unable to instantiate Login Configuration"));

  212. 		    }

  213. 		}

  214. 	    }

  215. 	}

  216.  

  217. 	return configuration;

  218.     }

  219. 

  220.     /**

  221.      * Set the current Login <code>Configuration</code>

  222.      *

  223.      * <p>

  224.      *

  225.      * @param configuration the new <code>Configuration</code>

  226.      *

  227.      * @exception SecurityException if the current thread does not have

  228.      *			Permission to set the <code>Configuration</code>.

  229.      */

  230.     public static void setConfiguration(Configuration configuration) {

  231. 	SecurityManager sm = System.getSecurityManager();

  232. 	if (sm != null)

  233. 	    sm.checkPermission(new AuthPermission("setLoginConfiguration"));

  234. 	Configuration.configuration = configuration;

  235.     }

  236. 

  237.     /**

  238.      * Retrieve an array of AppConfigurationEntries which corresponds to

  239.      *		the configuration of LoginModules for this application.

  240.      *

  241.      * <p>

  242.      *

  243.      * @param applicationName the name used to index the Configuration.

  244.      * 

  245.      * @return an array of AppConfigurationEntries which corresponds to

  246.      *		the configuration of LoginModules for this

  247.      *		application, or null if this application has no configured

  248.      *		LoginModules.

  249.      */

  250.     public abstract AppConfigurationEntry[] getAppConfigurationEntry

  251.     (String applicationName);

  252. 

  253.     /**

  254.      * Refresh and reload the Configuration.

  255.      *

  256.      * <p> This method causes this object to refresh/reload its current

  257.      * Configuration. This is implementation-dependent.

  258.      * For example, if the Configuration object is stored

  259.      * a file, calling <code>refresh</code> will cause the file to be re-read.

  260.      *

  261.      * <p>

  262.      *

  263.      * @exception SecurityException if the caller does not have permission

  264.      *				to refresh the Configuration.

  265.      */

  266.     public abstract void refresh();

  267. }