Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Glassfish 21219 #46

Merged
merged 4 commits into from
Nov 3, 2014
Merged

Glassfish 21219 #46

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
909f726
GLASSFISH-21148 Fixed parsing principal from metadata
Oct 30, 2014
4258a2d
GLASSFISH-21148 More descriptive exception messages
Oct 30, 2014
eedadf5
GLASSFISH-21219 Using HashMap instead of HashSet
Oct 30, 2014
019a52e
GLASSFISH-21219 Using HashMap instead of HashSet (HA/SSO)
Oct 30, 2014
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
54 changes: 24 additions & 30 deletions ...erver/web/web-core/src/main/java/org/apache/catalina/authenticator/SingleSignOnEntry.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -58,38 +58,39 @@

package org.apache.catalina.authenticator;

import org.apache.catalina.Session;
import org.apache.catalina.core.StandardServer;

import java.security.Principal;
import java.util.HashSet;
import java.util.Set;
import java.util.HashMap;
import java.util.Map;
import java.util.concurrent.atomic.AtomicLong;
import java.util.logging.Level;
import java.util.logging.Logger;

import org.apache.catalina.Session;
import org.apache.catalina.core.StandardServer;

/**
* A private class representing entries in the cache of authenticated users.
* A class representing entries in the cache of authenticated users.
*/
public class SingleSignOnEntry {

private static final Logger log = StandardServer.log;

protected String id = null;
protected final String id;

protected String authType = null;
protected final String authType;

protected Principal principal = null;
/** Reset by HASingleSignOnEntry */
protected Principal principal;

protected Set<Session> sessions = new HashSet<Session>();
protected final Map<String, Session> sessions = new HashMap<String, Session>();

protected String username = null;
protected final String username;

protected String realmName = null;
protected final String realmName;

protected long lastAccessTime;

protected AtomicLong version = null;
protected final AtomicLong version;

public SingleSignOnEntry(String id, long ver,
Principal principal, String authType,
Expand All @@ -107,20 +108,20 @@ public SingleSignOnEntry(String id, long ver,
/**
* Adds the given session to this SingleSignOnEntry if it does not
* already exist.
*
*
* @return true if the session was added, false otherwise
*/
public synchronized boolean addSession(SingleSignOn sso, Session session) {
boolean result = sessions.add(session);
if (result) {
final Session oldEntry = sessions.put(session.getId(), session);
if (oldEntry == null) {
session.addSessionListener(sso);
}

return true;
return oldEntry == null;
}

public synchronized void removeSession(Session session) {
sessions.remove(session);
final Session removed = sessions.remove(session.getId());
log.warning("session " + session.getId() + "found (and removed): " + removed);
}


Expand All @@ -132,7 +133,7 @@ public synchronized void removeSession(Session session) {
* associated with it, and false otherwise
*/
public synchronized boolean isEmpty() {
return (sessions.size() == 0);
return sessions.isEmpty();
}


Expand All @@ -141,23 +142,16 @@ public synchronized boolean isEmpty() {
*
*/
public synchronized void expireSessions() {
for (Session session: sessions) {
for (Session session: sessions.values()) {
if (log.isLoggable(Level.FINE)) {

log.log(Level.FINE, " Invalidating session " + session);
}

//6406580 START
/*
// Invalidate this session
session.expire();
*/

// Invalidate this session
// if it is not already invalid(ated)
if( (session).getIsValid() ) {
if(session.getIsValid() ) {
session.expire();
}
//6406580 END
}
}

Expand Down
115 changes: 56 additions & 59 deletions ...rver/web/web-ha/src/main/java/org/glassfish/web/ha/authenticator/HASingleSignOnEntry.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -41,20 +41,25 @@
package org.glassfish.web.ha.authenticator;

import com.sun.enterprise.container.common.spi.util.JavaEEIOUtils;

import org.apache.catalina.Container;
import org.apache.catalina.core.StandardContext;

import org.apache.catalina.Session;
import org.apache.catalina.authenticator.SingleSignOn;
import org.apache.catalina.authenticator.SingleSignOnEntry;
import org.glassfish.web.ha.session.management.HAStoreBase;

import java.io.*;
import java.security.Principal;
import java.util.logging.Level;
import java.util.logging.Logger;

/**
* @author Shing Wai Chan
*/
public class HASingleSignOnEntry extends SingleSignOnEntry {
private static final Logger logger = HAStoreBase._logger;

protected long maxIdleTime;

protected JavaEEIOUtils ioUtils;
Expand All @@ -73,63 +78,41 @@ public HASingleSignOnEntry(Container container, HASingleSignOnEntryMetadata m,
m.getLastAccessTime(), m.getMaxIdleTime(), m.getVersion(),
ioUtils);

ByteArrayInputStream bais = null;
BufferedInputStream bis = null;
ObjectInputStream ois = null;
try {
bais = new ByteArrayInputStream(m.getPrincipalBytes());
bis = new BufferedInputStream(bais);
ois = ioUtils.createObjectInputStream(bis, true, this.getClass().getClassLoader());
this.principal = (Principal)ois.readObject();
} catch(Exception ex) {
throw new IllegalStateException(ex);
} finally {
if (bais != null) {
try {
bais.close();
} catch(IOException ex) {
}
}
if (bis != null) {
try {
bis.close();
} catch(IOException ex) {
}
}
if (ois != null) {
try {
ois.close();
} catch(IOException ex) {
}
}
}
// GLASSFISH-21148: constructor called with null - don't forget to update metadata!
this.principal = parsePrincipal(m);
this.metadata.principalBytes = m.getPrincipalBytes() == null ? null : m.getPrincipalBytes().clone();

for (HASessionData data: m.getHASessionDataSet()) {
StandardContext context = (StandardContext)container.findChild(data.getContextPath());
Session session = null;
try {
session = context.getManager().findSession(data.getSessionId());
} catch(IOException ex) {
throw new IllegalStateException(ex);
throw new IllegalStateException("Cannot find the session: " + data.getSessionId(), ex);
}
if (session != null) {
sessions.put(data.getSessionId(), session);
}
sessions.add(session);
}
logger.log(Level.FINER, "Loaded HA SSO entry from metadata. Principal: {}", this.principal);
}

// TODO: javadoc: difference between principal.getName and userName?
public HASingleSignOnEntry(String id, Principal principal, String authType,
String username, String realmName,
long lastAccessTime, long maxIdleTime, long version,
JavaEEIOUtils ioUtils) {

super(id, version, principal, authType, username, realmName);
this.lastAccessTime = lastAccessTime;
this.maxIdleTime = maxIdleTime;
this.ioUtils = ioUtils;

metadata = new HASingleSignOnEntryMetadata(
this.metadata = new HASingleSignOnEntryMetadata(
id, version, convertToByteArray(principal), authType,
username, realmName,
lastAccessTime, maxIdleTime);
logger.log(Level.FINER, "Created HA SSO entry. Principal: {}", this.principal);
}

public HASingleSignOnEntryMetadata getMetadata() {
Expand Down Expand Up @@ -171,39 +154,53 @@ public long incrementAndGetVersion() {
return ver;
}

// convert a Serializable object into byte array
private byte[] convertToByteArray(Object obj) {
ByteArrayOutputStream baos = null;
/** convert a principal into byte array */
private byte[] convertToByteArray(Principal obj) {
ByteArrayOutputStream baos = new ByteArrayOutputStream();
BufferedOutputStream bos = null;
ObjectOutputStream oos = null;
try {
baos = new ByteArrayOutputStream();
bos = new BufferedOutputStream(baos);
oos = ioUtils.createObjectOutputStream(bos, true);
oos.writeObject(obj);
oos.flush();
return baos.toByteArray();
} catch(Exception ex) {
throw new IllegalStateException(ex);
throw new IllegalStateException("Could not convert principal to byte array", ex);
} finally {
if (baos != null) {
try {
baos.close();
} catch(Exception ex) {
}
}
if (bos != null) {
try {
bos.close();
} catch(Exception ex) {
}
}
if (oos != null) {
try {
oos.close();
} catch(Exception ex) {
}
}
closeSilently(baos);
closeSilently(bos);
closeSilently(oos);
}
}

/** Parse a principal from metadata */
private Principal parsePrincipal(HASingleSignOnEntryMetadata m) {
ByteArrayInputStream bais = null;
BufferedInputStream bis = null;
ObjectInputStream ois = null;
try {
bais = new ByteArrayInputStream(m.getPrincipalBytes());
bis = new BufferedInputStream(bais);
ois = ioUtils.createObjectInputStream(bis, true, this.getClass().getClassLoader());
return (Principal) ois.readObject();
} catch (Exception ex) {
throw new IllegalStateException("Could not parse principal from HA-SSO Metadata", ex);
} finally {
closeSilently(bais);
closeSilently(bis);
closeSilently(ois);
}
}

return baos.toByteArray();
private void closeSilently(Closeable closeable) {
if (closeable == null) {
return;
}
try {
closeable.close();
} catch(Exception ex) {
// nothing
}
}
}