org.alfresco.filesys.auth.cifs

Class AlfrescoCifsAuthenticator

java.lang.Object

org.alfresco.jlan.server.auth.CifsAuthenticator

org.alfresco.filesys.auth.cifs.CifsAuthenticatorBase

org.alfresco.filesys.auth.cifs.AlfrescoCifsAuthenticator

All Implemented Interfaces:

org.alfresco.jlan.server.auth.ICifsAuthenticator, ActivateableBean, org.springframework.beans.factory.DisposableBean, org.springframework.beans.factory.InitializingBean

public class AlfrescoCifsAuthenticator
extends CifsAuthenticatorBase

Alfresco Authenticator Class

The Alfresco authenticator implementation enables user level security mode using the Alfresco authentication component.

Note: Switching off encrypted password support will cause later NT4 service pack releases and Win2000 to refuse to connect to the server without a registry update on the client.

Author:

gkspencer

Field Summary

Fields inherited from class org.alfresco.filesys.auth.cifs.CifsAuthenticatorBase

logger, m_md4Encoder

Fields inherited from class org.alfresco.jlan.server.auth.CifsAuthenticator

GUEST_USERNAME, m_config, m_random

Fields inherited from interface org.alfresco.jlan.server.auth.ICifsAuthenticator

AUTH_ACCDISABLED, AUTH_ALLOW, AUTH_BADPASSWORD, AUTH_BADUSER, AUTH_DISALLOW, AUTH_GUEST, AUTH_PASSEXPIRED, LANMAN, NoAccess, NTLM1, NTLM2, ReadOnly, SHARE_MODE, STANDARD_CHALLENGE_LEN, STANDARD_PASSWORD_LEN, USER_MODE, Writeable

Constructor Summary

Constructors

Constructor and Description
AlfrescoCifsAuthenticator() Default Constructor

Method Summary

Modifier and Type	Method and Description
int	authenticateShareConnect(org.alfresco.jlan.server.auth.ClientInfo client, org.alfresco.jlan.server.core.SharedDevice share, String sharePwd, org.alfresco.jlan.server.SrvSession sess) Authenticate a connection to a share.
int	authenticateUser(org.alfresco.jlan.server.auth.ClientInfo client, org.alfresco.jlan.server.SrvSession sess, int alg) Authenticate a user
org.alfresco.jlan.server.auth.AuthContext	getAuthContext(org.alfresco.jlan.smb.server.SMBSrvSession sess) Return an authentication context for the new session
protected boolean	validateAuthenticationMode() Validate that the authentication component supports the required mode

Methods inherited from class org.alfresco.filesys.auth.cifs.CifsAuthenticatorBase

afterPropertiesSet, checkForAdminUserName, destroy, doGuestLogon, doInTransaction, getAuthenticationComponent, getAuthenticationService, getAuthorityService, getHomeFolderForUser, getNodeService, getNTLMAuthenticator, getPersonService, initialize, initialize, isActive, mapUserNameToPerson, setActive, setAuthenticationComponent, setAuthenticationService, setAuthorityService, setCurrentUser, setDiskInterface, setNodeService, setPersonService, setTransactionService

Methods inherited from class org.alfresco.jlan.server.auth.CifsAuthenticator

allowGuest, authenticateUserPlainText, closeAuthenticator, convertPassword, generateEncryptedPassword, generateNegotiateResponse, getAccessMode, getCIFSConfig, getEnabledDialects, getEncryptionKeyLength, getEncryptor, getGuestUserName, getsecurityConfig, getSecurityMode, getServerCapabilities, getStatusAsString, getUserDetails, hasDebug, hasExtendedSecurity, hasSessionCleanup, mapClientAddressToDomain, mapUnknownUserToGuest, processSessionSetup, setAccessMode, setAllowGuest, setConfig, setDebug, setExtendedSecurity, setGuestUserName, setMapToGuest, setSecurityMode, setSessionCleanup, toString, validatePassword

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

Constructor Detail

AlfrescoCifsAuthenticator

public AlfrescoCifsAuthenticator()

Default Constructor

Default to user mode security with encrypted password support.

Method Detail

validateAuthenticationMode

protected boolean validateAuthenticationMode()

Validate that the authentication component supports the required mode

Overrides:

validateAuthenticationMode in class CifsAuthenticatorBase

Returns:

boolean

authenticateUser

public int authenticateUser(org.alfresco.jlan.server.auth.ClientInfo client,
                            org.alfresco.jlan.server.SrvSession sess,
                            int alg)

Authenticate a user

Specified by:

authenticateUser in interface org.alfresco.jlan.server.auth.ICifsAuthenticator

Overrides:

authenticateUser in class org.alfresco.jlan.server.auth.CifsAuthenticator

Parameters:

client - Client information

sess - Server session

alg - Encryption algorithm

authenticateShareConnect

public int authenticateShareConnect(org.alfresco.jlan.server.auth.ClientInfo client,
                                    org.alfresco.jlan.server.core.SharedDevice share,
                                    String sharePwd,
                                    org.alfresco.jlan.server.SrvSession sess)

Authenticate a connection to a share.

Specified by:

authenticateShareConnect in interface org.alfresco.jlan.server.auth.ICifsAuthenticator

Overrides:

authenticateShareConnect in class org.alfresco.jlan.server.auth.CifsAuthenticator

Parameters:

client - User/client details from the tree connect request.

share - Shared device the client wants to connect to.

sharePwd - Share password.

sess - Server session.

Returns:

int Granted file permission level or disallow status if negative. See the FilePermission class.

getAuthContext

public org.alfresco.jlan.server.auth.AuthContext getAuthContext(org.alfresco.jlan.smb.server.SMBSrvSession sess)

Return an authentication context for the new session

Overrides:

getAuthContext in class org.alfresco.jlan.server.auth.CifsAuthenticator

Returns:

AuthContext