/*
 * JBoss, Home of Professional Open Source.
 * Copyright 2014 Red Hat, Inc., and individual contributors
 * as indicated by the @author tags.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 *  Unless required by applicable law or agreed to in writing, software
 *  distributed under the License is distributed on an "AS IS" BASIS,
 *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 *  See the License for the specific language governing permissions and
 *  limitations under the License.
 */

package io.undertow.security.impl;

import java.util.Collections;
import java.util.Iterator;
import java.util.Map;
import java.util.concurrent.ConcurrentHashMap;

import io.undertow.security.idm.Account;
import io.undertow.server.session.SecureRandomSessionIdGenerator;
import io.undertow.server.session.Session;
import io.undertow.server.session.SessionManager;
import io.undertow.util.CopyOnWriteMap;
import org.jboss.logging.Logger;

Author:Stuart Douglas, Paul Ferraro
/** * @author Stuart Douglas * @author Paul Ferraro */
public class InMemorySingleSignOnManager implements SingleSignOnManager { private static final Logger log = Logger.getLogger(InMemorySingleSignOnManager.class); private static final SecureRandomSessionIdGenerator SECURE_RANDOM_SESSION_ID_GENERATOR = new SecureRandomSessionIdGenerator(); private final Map<String, SingleSignOn> ssoEntries = new ConcurrentHashMap<>(); @Override public SingleSignOn findSingleSignOn(String ssoId) { return this.ssoEntries.get(ssoId); } @Override public SingleSignOn createSingleSignOn(Account account, String mechanism) { String id = SECURE_RANDOM_SESSION_ID_GENERATOR.createSessionId(); SingleSignOn entry = new SimpleSingleSignOnEntry(id, account, mechanism); this.ssoEntries.put(id, entry); if(log.isTraceEnabled()) { log.tracef("Creating SSO ID %s for Principal %s and Roles %s.", id, account.getPrincipal().getName(), account.getRoles().toString()); } return entry; } @Override public void removeSingleSignOn(SingleSignOn sso) { if(log.isTraceEnabled()) { log.tracef("Removing SSO ID %s.", sso.getId()); } this.ssoEntries.remove(sso.getId()); } private static class SimpleSingleSignOnEntry implements SingleSignOn { private final String id; private final Account account; private final String mechanismName; private final Map<SessionManager, Session> sessions = new CopyOnWriteMap<>(); SimpleSingleSignOnEntry(String id, Account account, String mechanismName) { this.id = id; this.account = account; this.mechanismName = mechanismName; } @Override public String getId() { return this.id; } @Override public Account getAccount() { return this.account; } @Override public String getMechanismName() { return this.mechanismName; } @Override public Iterator<Session> iterator() { return Collections.unmodifiableCollection(this.sessions.values()).iterator(); } @Override public boolean contains(Session session) { return this.sessions.containsKey(session.getSessionManager()); } @Override public Session getSession(SessionManager manager) { return this.sessions.get(manager); } @Override public void add(Session session) { this.sessions.put(session.getSessionManager(), session); } @Override public void remove(Session session) { this.sessions.remove(session.getSessionManager()); } @Override public void close() { // Do nothing } } }