Z-Archive » Maybank Projects » M2U UPASS Project

										<delete file="${project.build.outputDirectory}/spring-ldap.xml" />

										<copy

											file="src/main/resources/spring-ldap.xml"

											tofile="${project.build.outputDirectory}/spring-ldap.xml" />

										<delete>

											<fileset dir="${project.build.outputDirectory}" includes="spring-ldap.*.xml" />

										</delete>

import my.com.upass.spring.ldap.MaybankLdapDAO;

import org.springframework.beans.factory.BeanFactory;

import org.springframework.beans.factory.xml.XmlBeanFactory;

import org.springframework.core.io.ClassPathResource;

import org.springframework.core.io.Resource;

	private MaybankLdapDAO maybankLdapDAO;

	protected ModifyUserService modifyUserService;

		Resource resource = new ClassPathResource("spring-ldap.xml");

		BeanFactory factory = new XmlBeanFactory(resource);

		maybankLdapDAO = (MaybankLdapDAO)factory.getBean("maybankLdap");

		modifyUserService =  new ModifyUserService(upc);

			//-- migration period checking : START --

			if(userBean.getHashedPassword() == null){ //password null, so the user haven't get migrated.

				//authenticate to ldap

				if(!maybankLdapDAO.authenticate(userAlias, password)){

					return MinimalConstants.ERR_INVALID_CREDENTIAL;

				}

				//update password to upass

				int responseCode = modifyUserService.modifyUser(userAlias, MinimalConstants.UTYPE_STATE_USER, "", password, MinimalConstants.UID_STATE_ACTIVE);

				if(MinimalConstants.ERR_SUCCESS != responseCode){

					return responseCode;

				}

				//reload profile with password

				userBean = userDao.getUserFromStore(userAlias, txSession);

			}

			//-- migration period checking : END --

package my.com.upass.spring.ldap;

import org.springframework.ldap.core.AuthenticationErrorCallback;

public final class CollectingAuthenticationErrorCallback implements AuthenticationErrorCallback {

	private Exception error;

	public void execute(Exception e) {

		this.error = e;

	}

	public Exception getError() {

		return error;

	}

}

package my.com.upass.spring.ldap;

import java.util.regex.Matcher;

import java.util.regex.Pattern;

public class LdapStatusCodeParser {

	public static String getCode(String ldapExceptionExplanation){

		Pattern pattern = Pattern.compile("^[\\[:a-zA-Z ]+([0-9]+).*");

		Matcher matcher = pattern.matcher(ldapExceptionExplanation);

		if (matcher.find()) {

		    return matcher.group(1);

		}

		return null;

	}

}

package my.com.upass.spring.ldap;

public interface MaybankLdapDAO {

	public boolean isUserExist(String mbbuserid);

	public boolean authenticate(String mbbuserid, String password);

}

package my.com.upass.spring.ldap;

import javax.naming.Name;

import org.apache.commons.logging.Log;

import org.apache.commons.logging.LogFactory;

import org.springframework.ldap.AuthenticationException;

import org.springframework.ldap.NameNotFoundException;

import org.springframework.ldap.core.DistinguishedName;

import org.springframework.ldap.core.LdapTemplate;

public class MaybankLdapDAOImpl implements MaybankLdapDAO{

	private Log logger = LogFactory.getLog(MaybankLdapDAOImpl.class);

	private LdapTemplate ldapTemplate = null;

	private String base;

	private String usernameAttrName;

	public boolean isUserExist(String mbbuserid) {

		Object person = null;

		try {

			person = ldapTemplate.lookup(buildDn(mbbuserid));

		} catch (NameNotFoundException e) {

			//not found

		}

		if(person != null){

			return true;

		}

		return false;

	}

	protected Name buildDn(String mbbuserid) {

		DistinguishedName dn = new DistinguishedName(base);

		dn.add("mbbuserid", mbbuserid);

		return dn;

	}

	public boolean authenticate(String mbbuserid, String password) {

		boolean result = false;

		CollectingAuthenticationErrorCallback errorCallback = new CollectingAuthenticationErrorCallback();

		try {

			result = ldapTemplate.authenticate(base, "("+usernameAttrName+"="+mbbuserid+")", password, errorCallback);

		} catch (NameNotFoundException e) {

			logger.warn("LDAP Error code:"+LdapStatusCodeParser.getCode(e.getExplanation()) + " - " + e.getExplanation());

		}

		if (!result && errorCallback.getError() != null) {

			AuthenticationException e = (AuthenticationException)errorCallback.getError();

			logger.info("LDAP Error code:"+LdapStatusCodeParser.getCode(e.getExplanation()) + " - " + e.getExplanation());

		}

		return result;

	}

	public void setLdapTemplate(LdapTemplate ldapTemplate) {

		this.ldapTemplate = ldapTemplate;

	}

	public void setBase(String base) {

		this.base = base;

	}

	public void setUsernameAttrName(String usernameAttrName) {

		this.usernameAttrName = usernameAttrName;

	}

}

<?xml version="1.0" encoding="UTF-8"?>

<!DOCTYPE beans PUBLIC "-//SPRING//DTD BEAN 2.0//EN" "http://www.springframework.org/dtd/spring-beans-2.0.dtd">

<beans>

    <bean id="contextSource" class="org.springframework.ldap.core.support.LdapContextSource">

        <property name="url" value="ldap://172.31.11.36:389" />

        <!-- property name="url" value="ldaps://172.31.11.36:636" /-->

        <property name="userDn" value="cn=Directory Manager" />

        <property name="password" value="password" />

    </bean>

    <bean id="ldapTemplate" class="org.springframework.ldap.core.LdapTemplate">

        <constructor-arg ref="contextSource" />

    </bean>

    <bean id="maybankLdap" class="my.com.upass.spring.ldap.MaybankLdapDAOImpl">

        <property name="ldapTemplate" ref="ldapTemplate" />

        <property name="base" value="ou=People,o=maybank"/>

        <property name="usernameAttrName" value="mbbuserid"/>

    </bean>

</beans>