From a1a18f77a50804e0127dfa4b0f5240c49c541184 Mon Sep 17 00:00:00 2001 From: Scott Jackson Date: Mon, 2 Jul 2012 21:24:02 -0700 Subject: Initial Commit --- ...serDetailsServiceBasedAuthoritiesPopulator.java | 50 ++++++++++++++++++++++ 1 file changed, 50 insertions(+) create mode 100644 subsonic-main/src/main/java/net/sourceforge/subsonic/ldap/UserDetailsServiceBasedAuthoritiesPopulator.java (limited to 'subsonic-main/src/main/java/net/sourceforge/subsonic/ldap/UserDetailsServiceBasedAuthoritiesPopulator.java') diff --git a/subsonic-main/src/main/java/net/sourceforge/subsonic/ldap/UserDetailsServiceBasedAuthoritiesPopulator.java b/subsonic-main/src/main/java/net/sourceforge/subsonic/ldap/UserDetailsServiceBasedAuthoritiesPopulator.java new file mode 100644 index 00000000..a3b9359e --- /dev/null +++ b/subsonic-main/src/main/java/net/sourceforge/subsonic/ldap/UserDetailsServiceBasedAuthoritiesPopulator.java @@ -0,0 +1,50 @@ +/* + This file is part of Subsonic. + + Subsonic is free software: you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation, either version 3 of the License, or + (at your option) any later version. + + Subsonic is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with Subsonic. If not, see . + + Copyright 2009 (C) Sindre Mehus + */ +package net.sourceforge.subsonic.ldap; + +import org.acegisecurity.GrantedAuthority; +import org.acegisecurity.ldap.LdapDataAccessException; +import org.acegisecurity.providers.ldap.LdapAuthoritiesPopulator; +import org.acegisecurity.userdetails.UserDetailsService; +import org.acegisecurity.userdetails.UserDetails; +import org.acegisecurity.userdetails.ldap.LdapUserDetails; + +/** + * An {@link LdapAuthoritiesPopulator} that retrieves the roles from the + * database using the {@link UserDetailsService} instead of retrieving the roles + * from LDAP. An instance of this class can be configured for the + * {@link org.acegisecurity.providers.ldap.LdapAuthenticationProvider} when + * authentication should be done using LDAP and authorization using the + * information stored in the database. + * + * @author Thomas M. Hofmann + */ +public class UserDetailsServiceBasedAuthoritiesPopulator implements LdapAuthoritiesPopulator { + + private UserDetailsService userDetailsService; + + public GrantedAuthority[] getGrantedAuthorities(LdapUserDetails userDetails) throws LdapDataAccessException { + UserDetails details = userDetailsService.loadUserByUsername(userDetails.getUsername()); + return details.getAuthorities(); + } + + public void setUserDetailsService(UserDetailsService userDetailsService) { + this.userDetailsService = userDetailsService; + } +} \ No newline at end of file -- cgit v1.2.3