update the testcases after the kafka 11 changes

Issue-ID: DMAAP-526 Change-Id: I477a8ee05fb3cdd76af726b6ca0d1a69aa9eef93 Signed-off-by: sunil unnava <su622b@att.com>
author: sunil unnava <su622b@att.com> 2018-08-14 09:34:46 -0400
committer: sunil unnava <su622b@att.com> 2018-08-14 09:39:23 -0400
commit: b32effcaf5684d5e2f338a4537b71a2375c534e5 (patch)
tree: e1b80407f414509ffcc766b987ec6a95f7254b4e /src/main/java/com/att/dmf/mr/security/DMaaPAuthenticatorImpl.java
parent: 0823cb186012c8e6b7de3d979dfabb9f838da7c2 (diff)
1 files changed, 133 insertions, 0 deletions
diff --git a/src/main/java/com/att/dmf/mr/security/DMaaPAuthenticatorImpl.java b/src/main/java/com/att/dmf/mr/security/DMaaPAuthenticatorImpl.java
new file mode 100644
index 0000000..1641901
--- /dev/null
+++ b/src/main/java/com/att/dmf/mr/security/DMaaPAuthenticatorImpl.java
@@ -0,0 +1,133 @@
+/*******************************************************************************
+ *  ============LICENSE_START=======================================================
+ *  org.onap.dmaap
+ *  ================================================================================
+ *  Copyright © 2017 AT&T Intellectual Property. All rights reserved.
+ *  ================================================================================
+ *  Licensed under the Apache License, Version 2.0 (the "License");
+ *  you may not use this file except in compliance with the License.
+ *  You may obtain a copy of the License at
+ *        http://www.apache.org/licenses/LICENSE-2.0
+*  
+ *  Unless required by applicable law or agreed to in writing, software
+ *  distributed under the License is distributed on an "AS IS" BASIS,
+ *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ *  See the License for the specific language governing permissions and
+ *  limitations under the License.
+ *  ============LICENSE_END=========================================================
+ *  
+ *  ECOMP is a trademark and service mark of AT&T Intellectual Property.
+ *  
+ *******************************************************************************/
+package com.att.dmf.mr.security;
+
+import java.util.LinkedList;
+
+import javax.servlet.http.HttpServletRequest;
+
+import com.att.dmf.mr.beans.DMaaPContext;
+import com.att.dmf.mr.security.impl.DMaaPOriginalUebAuthenticator;
+import com.att.nsa.security.NsaApiKey;
+import com.att.nsa.security.db.NsaApiDb;
+import com.att.nsa.security.db.simple.NsaSimpleApiKey;
+
+/**
+ * 
+ * @author anowarul.islam
+ *
+ * @param <K>
+ */
+public class DMaaPAuthenticatorImpl<K extends NsaApiKey> implements DMaaPAuthenticator<K> {
+
+	private final LinkedList<DMaaPAuthenticator<K>> fAuthenticators;
+	
+
+
+	// Setting timeout to a large value for testing purpose.
+	// private static final long kDefaultRequestTimeWindow = 1000 * 60 * 10; //
+	// 10 minutes
+	private static final long kDefaultRequestTimeWindow = 1000 * 60 * 10 * 10 * 10 * 10 * 10;
+
+	/**
+	 * Construct the security manager against an API key database
+	 * 
+	 * @param db
+	 *            the API key db
+	 */
+	public DMaaPAuthenticatorImpl(NsaApiDb<K> db) {
+		this(db, kDefaultRequestTimeWindow);
+	}
+
+	
+	
+	
+	/**
+	 * Construct the security manager against an API key database with a
+	 * specific request time window size
+	 * 
+	 * @param db
+	 *            the API key db
+	 * @param authTimeWindowMs
+	 *            the size of the time window for request authentication
+	 */
+	public DMaaPAuthenticatorImpl(NsaApiDb<K> db, long authTimeWindowMs) {
+		fAuthenticators = new LinkedList<DMaaPAuthenticator<K>>();
+
+		fAuthenticators.add(new DMaaPOriginalUebAuthenticator<K>(db, authTimeWindowMs));
+	}
+
+	/**
+	 * Authenticate a user's request. This method returns the API key if the
+	 * user is authentic, null otherwise.
+	 * 
+	 * @param ctx
+	 * @return an api key record, or null
+	 */
+	public K authenticate(DMaaPContext ctx) {
+		final HttpServletRequest req = ctx.getRequest();
+		for (DMaaPAuthenticator<K> a : fAuthenticators) {
+			if (a.qualify(req)) {
+				final K k = a.isAuthentic(req);
+				if (k != null)
+					return k;
+			}
+			// else: this request doesn't look right to the authenticator
+		}
+		return null;
+	}
+
+	/**
+	 * Get the user associated with the incoming request, or null if the user is
+	 * not authenticated.
+	 * 
+	 * @param ctx
+	 * @return
+	 */
+	public static NsaSimpleApiKey getAuthenticatedUser(DMaaPContext ctx) {
+		final DMaaPAuthenticator<NsaSimpleApiKey> m = ctx.getConfigReader().getfSecurityManager();
+		return m.authenticate(ctx);
+	}
+
+	/**
+	 * method by default returning false
+	 * @param req
+	 * @return false
+	 */
+	public boolean qualify(HttpServletRequest req) {
+		return false;
+	}
+/**
+ * method by default returning null
+ * @param req
+ * @return null
+ */
+	public K isAuthentic(HttpServletRequest req) {
+		return null;
+	}
+	
+	public void addAuthenticator ( DMaaPAuthenticator<K> a )
+	{
+		this.fAuthenticators.add(a);
+	}
+
+}
author	sunil unnava <su622b@att.com>	2018-08-14 09:34:46 -0400
committer	sunil unnava <su622b@att.com>	2018-08-14 09:39:23 -0400
commit	b32effcaf5684d5e2f338a4537b71a2375c534e5 (patch)
tree	e1b80407f414509ffcc766b987ec6a95f7254b4e /src/main/java/com/att/dmf/mr/security/DMaaPAuthenticatorImpl.java
parent	0823cb186012c8e6b7de3d979dfabb9f838da7c2 (diff)