/* * CDDL HEADER START * * The contents of this file are subject to the terms of the * Common Development and Distribution License, Version 1.0 only * (the "License"). You may not use this file except in compliance * with the License. * * You can obtain a copy of the license at * trunk/opends/resource/legal-notices/OpenDS.LICENSE * or https://OpenDS.dev.java.net/OpenDS.LICENSE. * See the License for the specific language governing permissions * and limitations under the License. * * When distributing Covered Code, include this CDDL HEADER in each * file and include the License file at * trunk/opends/resource/legal-notices/OpenDS.LICENSE. If applicable, * add the following below this CDDL HEADER, with the fields enclosed * by brackets "[]" replaced with your own identifying information: * Portions Copyright [yyyy] [name of copyright owner] * * CDDL HEADER END * * * Copyright 2009 Sun Microsystems, Inc. */ package org.opends.sdk; import java.util.concurrent.CancellationException; import java.util.concurrent.CountDownLatch; import java.util.concurrent.TimeUnit; import java.util.concurrent.TimeoutException; import org.opends.sdk.requests.*; import org.opends.sdk.responses.BindResult; import org.opends.sdk.responses.CompareResult; import org.opends.sdk.responses.Result; import org.opends.sdk.util.Validator; /** * An authenticated connection factory can be used to create * pre-authenticated connections to a Directory Server. *

* The connections returned by an authenticated connection factory * support all operations with the exception of Bind requests. Attempts * to perform a Bind will result in an {@code * UnsupportedOperationException}. *

* In addition, the returned connections support retrieval of the * {@code BindResult} returned from the initial Bind request, or last * rebind. *

* Support for connection re-authentication is provided through the * {@link #setRebindAllowed} method which, if set to {@code true}, * causes subsequent connections created using the factory to support * the {@code rebind} method. *

* If the Bind request fails for some reason (e.g. invalid credentials), * then the connection attempt will fail and an {@code * ErrorResultException} will be thrown. */ public final class AuthenticatedConnectionFactory implements ConnectionFactory { // We implement the factory using the pimpl idiom in order have // cleaner Javadoc which does not expose implementation methods from // AbstractConnectionFactory. private static final class Impl extends AbstractConnectionFactory implements ConnectionFactory { private final BindRequest request; private final ConnectionFactory parentFactory; private boolean allowRebinds = false; private Impl(ConnectionFactory factory, BindRequest request) throws NullPointerException { Validator.ensureNotNull(factory, request); this.parentFactory = factory; // FIXME: should do a defensive copy. this.request = request; } /** * {@inheritDoc} */ public

ConnectionFuture getAsynchronousConnection( ConnectionResultHandler handler, P p) { ConnectionFutureImpl

future = new ConnectionFutureImpl

( allowRebinds ? request : null, handler, p); future.connectFuture = parentFactory.getAsynchronousConnection( future, null); return future; } /** * {@inheritDoc} */ public AuthenticatedConnection getConnection() throws ErrorResultException { return new AuthenticatedConnection( blockingGetAsynchronousConnection()); } } private final Impl impl; /** * An authenticated synchronous connection supports all operations * except Bind operations. */ public static final class AuthenticatedConnection extends SynchronousConnection { private final AuthenticatedAsynchronousConnection connection; private AuthenticatedConnection( AuthenticatedAsynchronousConnection connection) { super(connection); this.connection = connection; } /** * Bind operations are not supported by pre-authenticated * connections. This method will always throw {@code * UnsupportedOperationException}. */ public BindResult bind(BindRequest request) throws UnsupportedOperationException { throw new UnsupportedOperationException(); } /** * Bind operations are not supported by pre-authenticated * connections. This method will always throw {@code * UnsupportedOperationException}. */ public BindResult bind(String name, String password) throws UnsupportedOperationException { throw new UnsupportedOperationException(); } /** * Re-authenticates to the Directory Server using the bind request * associated with this connection. If re-authentication fails for * some reason then this connection will be automatically closed. * * @return The result of the operation. * @throws ErrorResultException * If the result code indicates that the request failed * for some reason. * @throws InterruptedException * If the current thread was interrupted while waiting. * @throws UnsupportedOperationException * If this connection does not support rebind operations. * @throws IllegalStateException * If this connection has already been closed, i.e. if * {@code isClosed() == true}. */ public BindResult rebind() throws ErrorResultException, InterruptedException, UnsupportedOperationException, IllegalStateException { if (connection.request == null) { throw new UnsupportedOperationException(); } return super.bind(connection.request); } /** * Returns an unmodifiable view of the Bind result which was * returned from the server after authentication. * * @return The Bind result which was returned from the server after * authentication. */ public BindResult getAuthenticatedBindResult() { return connection.getAuthenticatedBindResult(); } } /** * An authenticated asynchronous connection supports all operations * except Bind operations. */ public static final class AuthenticatedAsynchronousConnection implements AsynchronousConnection { private final BindRequest request; private volatile BindResult result; private final AsynchronousConnection connection; private AuthenticatedAsynchronousConnection( AsynchronousConnection connection, BindRequest request, BindResult result) { this.connection = connection; this.request = request; this.result = result; } /** * Returns an unmodifiable view of the Bind result which was * returned from the server after authentication. * * @return The Bind result which was returned from the server after * authentication. */ public BindResult getAuthenticatedBindResult() { return result; } public void abandon(AbandonRequest request) throws UnsupportedOperationException, IllegalStateException, NullPointerException { connection.abandon(request); } public

ResultFuture add(AddRequest request, ResultHandler handler, P p) throws UnsupportedOperationException, IllegalStateException, NullPointerException { return connection.add(request, handler, p); } public void addConnectionEventListener( ConnectionEventListener listener) throws IllegalStateException, NullPointerException { connection.addConnectionEventListener(listener); } /** * Bind operations are not supported by pre-authenticated * connections. This method will always throw {@code * UnsupportedOperationException}. */ public

ResultFuture bind(BindRequest request, ResultHandler handler, P p) throws UnsupportedOperationException, IllegalStateException, NullPointerException { throw new UnsupportedOperationException(); } public void close() { connection.close(); } public void close(UnbindRequest request) throws NullPointerException { connection.close(request); } public

ResultFuture compare( CompareRequest request, ResultHandler handler, P p) throws UnsupportedOperationException, IllegalStateException, NullPointerException { return connection.compare(request, handler, p); } public

ResultFuture delete(DeleteRequest request, ResultHandler handler, P p) throws UnsupportedOperationException, IllegalStateException, NullPointerException { return connection.delete(request, handler, p); } public ResultFuture extendedRequest( ExtendedRequest request, ResultHandler handler, P p) throws UnsupportedOperationException, IllegalStateException, NullPointerException { return connection.extendedRequest(request, handler, p); } public

ResultFuture modify(ModifyRequest request, ResultHandler handler, P p) throws UnsupportedOperationException, IllegalStateException, NullPointerException { return connection.modify(request, handler, p); } public

ResultFuture modifyDN(ModifyDNRequest request, ResultHandler handler, P p) throws UnsupportedOperationException, IllegalStateException, NullPointerException { return connection.modifyDN(request, handler, p); } /** * Re-authenticates to the Directory Server using the bind request * associated with this connection. If re-authentication fails for * some reason then this connection will be automatically closed. * * @param

* The type of the additional parameter to the handler's * methods. * @param handler * A result handler which can be used to asynchronously * process the operation result when it is received, may be * {@code null}. * @param p * Optional additional handler parameter. * @return A future representing the result of the operation. * @throws UnsupportedOperationException * If this connection does not support rebind operations. * @throws IllegalStateException * If this connection has already been closed, i.e. if * {@code isClosed() == true}. */ public

ResultFuture rebind( ResultHandler handler, P p) throws UnsupportedOperationException, IllegalStateException { if (request == null) { throw new UnsupportedOperationException(); } // Wrap the client handler so that we can update the connection // state. final ResultHandler clientHandler = handler; final P clientParameter = p; ResultHandler handlerWrapper = new ResultHandler() { public void handleErrorResult(Void p, ErrorResultException error) { // This connection is now unauthenticated so prevent // further use. connection.close(); if (clientHandler != null) { clientHandler.handleErrorResult(clientParameter, error); } } public void handleResult(Void p, BindResult result) { // Save the result. AuthenticatedAsynchronousConnection.this.result = result; if (clientHandler != null) { clientHandler.handleResult(clientParameter, result); } } }; return connection.bind(request, handlerWrapper, null); } public void removeConnectionEventListener( ConnectionEventListener listener) throws NullPointerException { connection.removeConnectionEventListener(listener); } public

ResultFuture search(SearchRequest request, ResultHandler resultHandler, SearchResultHandler

searchResulthandler, P p) throws UnsupportedOperationException, IllegalStateException, NullPointerException { return connection.search(request, resultHandler, searchResulthandler, p); } } /** * Creates a new authenticated connection factory which will obtain * connections using the provided connection factory and immediately * perform the provided Bind request. * * @param factory * The connection factory to use for connecting to the * Directory Server. * @param request * The Bind request to use for authentication. * @throws NullPointerException * If {@code factory} or {@code request} was {@code null}. */ public AuthenticatedConnectionFactory(ConnectionFactory factory, BindRequest request) throws NullPointerException { impl = new Impl(factory, request); } private static final class ConnectionFutureImpl

implements ConnectionFuture, ConnectionResultHandler, ResultHandler { private volatile AuthenticatedAsynchronousConnection authenticatedConnection; private volatile AsynchronousConnection connection; private volatile ErrorResultException exception; private volatile ConnectionFuture connectFuture; private volatile ResultFuture bindFuture; private final CountDownLatch latch = new CountDownLatch(1); private final ConnectionResultHandler handler; private final P p; private boolean cancelled; private final BindRequest request; private ConnectionFutureImpl( BindRequest request, ConnectionResultHandler handler, P p) { this.request = request; this.handler = handler; this.p = p; } public boolean cancel(boolean mayInterruptIfRunning) { cancelled = connectFuture.cancel(mayInterruptIfRunning) || bindFuture != null && bindFuture.cancel(mayInterruptIfRunning); if (cancelled) { latch.countDown(); } return cancelled; } public AuthenticatedAsynchronousConnection get() throws InterruptedException, ErrorResultException { latch.await(); if (cancelled) { throw new CancellationException(); } if (exception != null) { throw exception; } return authenticatedConnection; } public AuthenticatedAsynchronousConnection get(long timeout, TimeUnit unit) throws InterruptedException, TimeoutException, ErrorResultException { latch.await(timeout, unit); if (cancelled) { throw new CancellationException(); } if (exception != null) { throw exception; } return authenticatedConnection; } public boolean isCancelled() { return cancelled; } public boolean isDone() { return latch.getCount() == 0; } public void handleConnection(Void v, AsynchronousConnection connection) { this.connection = connection; this.bindFuture = this.connection.bind(request, this, null); } public void handleConnectionError(Void v, ErrorResultException error) { exception = error; latch.countDown(); } public void handleResult(Void v, BindResult result) { // FIXME: should make the result unmodifiable. authenticatedConnection = new AuthenticatedAsynchronousConnection( connection, request, result); latch.countDown(); if (handler != null) { handler.handleConnection(p, authenticatedConnection); } } public void handleErrorResult(Void v, ErrorResultException error) { // Ensure that the connection is closed. try { connection.close(); } catch (Exception e) { // Ignore. } exception = error; latch.countDown(); if (handler != null) { handler.handleConnectionError(p, exception); } } } /** * Specifies whether or not rebind requests are to be supported by * connections created by this authenticated connection factory. *

* Rebind requests are invoked using the connection's {@code rebind} * method which will throw an {@code UnsupportedOperationException} if * rebinds are not supported (the default). * * @param allowRebinds * {@code true} if the {@code rebind} operation is to be * supported, otherwise {@code false}. * @return A reference to this connection factory. */ public AuthenticatedConnectionFactory setRebindAllowed( boolean allowRebinds) { impl.allowRebinds = allowRebinds; return this; } /** * Indicates whether or not rebind requests are to be supported by * connections created by this authenticated connection factory. *

* Rebind requests are invoked using the connection's {@code rebind} * method which will throw an {@code UnsupportedOperationException} if * rebinds are not supported (the default). * * @return allowRebinds {@code true} if the {@code rebind} operation * is to be supported, otherwise {@code false}. */ public boolean isRebindAllowed() { return impl.allowRebinds; } public

ConnectionFuture getAsynchronousConnection( ConnectionResultHandler handler, P p) { return impl.getAsynchronousConnection(handler, p); } public AuthenticatedConnection getConnection() throws ErrorResultException { return impl.getConnection(); } }