| /* |
| * Copyright (c) 1997, 2017, Oracle and/or its affiliates. All rights reserved. |
| * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. |
| * |
| * This code is free software; you can redistribute it and/or modify it |
| * under the terms of the GNU General Public License version 2 only, as |
| * published by the Free Software Foundation. Oracle designates this |
| * particular file as subject to the "Classpath" exception as provided |
| * by Oracle in the LICENSE file that accompanied this code. |
| * |
| * This code is distributed in the hope that it will be useful, but WITHOUT |
| * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or |
| * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License |
| * version 2 for more details (a copy is included in the LICENSE file that |
| * accompanied this code). |
| * |
| * You should have received a copy of the GNU General Public License version |
| * 2 along with this work; if not, write to the Free Software Foundation, |
| * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. |
| * |
| * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA |
| * or visit www.oracle.com if you need additional information or have any |
| * questions. |
| */ |
| |
| package com.sun.istack.internal.tools; |
| |
| import java.io.BufferedReader; |
| import java.io.File; |
| import java.io.FileInputStream; |
| import java.io.FileNotFoundException; |
| import java.io.IOException; |
| import java.io.InputStreamReader; |
| import java.io.UnsupportedEncodingException; |
| import java.lang.reflect.Field; |
| import java.lang.reflect.Method; |
| import java.net.Authenticator; |
| import java.net.Authenticator.RequestorType; |
| import java.net.MalformedURLException; |
| import java.net.PasswordAuthentication; |
| import java.net.URL; |
| import java.net.URLDecoder; |
| import java.net.URLEncoder; |
| import java.security.AccessController; |
| import java.security.PrivilegedAction; |
| import java.security.PrivilegedActionException; |
| import java.security.PrivilegedExceptionAction; |
| import java.util.ArrayList; |
| import java.util.List; |
| import java.util.logging.Level; |
| import java.util.logging.Logger; |
| import java.util.regex.Pattern; |
| import org.xml.sax.Locator; |
| import org.xml.sax.helpers.LocatorImpl; |
| |
| /** |
| * @author Vivek Pandey |
| * @author Lukas Jungmann |
| */ |
| public class DefaultAuthenticator extends Authenticator { |
| |
| private static final Logger LOGGER = Logger.getLogger(DefaultAuthenticator.class.getName()); |
| private static DefaultAuthenticator instance; |
| private static Authenticator systemAuthenticator = getCurrentAuthenticator(); |
| private String proxyUser; |
| private String proxyPasswd; |
| private final List<AuthInfo> authInfo = new ArrayList<>(); |
| private static int counter = 0; |
| |
| DefaultAuthenticator() { |
| //try undocumented but often used properties |
| if (System.getProperty("http.proxyUser") != null) { |
| proxyUser = System.getProperty("http.proxyUser"); |
| } else { |
| proxyUser = System.getProperty("proxyUser"); |
| } |
| if (System.getProperty("http.proxyPassword") != null) { |
| proxyPasswd = System.getProperty("http.proxyPassword"); |
| } else { |
| proxyPasswd = System.getProperty("proxyPassword"); |
| } |
| } |
| |
| public static synchronized DefaultAuthenticator getAuthenticator() { |
| if (instance == null) { |
| instance = new DefaultAuthenticator(); |
| Authenticator.setDefault(instance); |
| } |
| counter++; |
| return instance; |
| } |
| |
| public static synchronized void reset() { |
| --counter; |
| if (instance != null && counter == 0) { |
| Authenticator.setDefault(systemAuthenticator); |
| } |
| } |
| |
| @Override |
| protected PasswordAuthentication getPasswordAuthentication() { |
| //If user sets proxy user and passwd and the RequestType is from proxy server then create |
| // PasswordAuthentication using proxyUser and proxyPasswd; |
| if ((getRequestorType() == RequestorType.PROXY) && proxyUser != null && proxyPasswd != null) { |
| return new PasswordAuthentication(proxyUser, proxyPasswd.toCharArray()); |
| } |
| for (AuthInfo auth : authInfo) { |
| if (auth.matchingHost(getRequestingURL())) { |
| return new PasswordAuthentication(auth.getUser(), auth.getPassword().toCharArray()); |
| } |
| } |
| return null; |
| } |
| |
| /** |
| * Proxy authorization string in form of username:password. |
| * |
| * @param proxyAuth |
| */ |
| public void setProxyAuth(String proxyAuth) { |
| if (proxyAuth == null) { |
| this.proxyUser = null; |
| this.proxyPasswd = null; |
| } else { |
| int i = proxyAuth.indexOf(':'); |
| if (i < 0) { |
| this.proxyUser = proxyAuth; |
| this.proxyPasswd = ""; |
| } else if (i == 0) { |
| this.proxyUser = ""; |
| this.proxyPasswd = proxyAuth.substring(1); |
| } else { |
| this.proxyUser = proxyAuth.substring(0, i); |
| this.proxyPasswd = proxyAuth.substring(i + 1); |
| } |
| } |
| } |
| |
| public void setAuth(File f, Receiver l) { |
| Receiver listener = l == null ? new DefaultRImpl() : l; |
| BufferedReader in = null; |
| FileInputStream fi = null; |
| InputStreamReader is = null; |
| try { |
| String text; |
| LocatorImpl locator = new LocatorImpl(); |
| locator.setSystemId(f.getAbsolutePath()); |
| try { |
| fi = new FileInputStream(f); |
| is = new InputStreamReader(fi, "UTF-8"); |
| in = new BufferedReader(is); |
| } catch (UnsupportedEncodingException | FileNotFoundException e) { |
| listener.onError(e, locator); |
| return; |
| } |
| try { |
| int lineno = 1; |
| locator.setSystemId(f.getCanonicalPath()); |
| while ((text = in.readLine()) != null) { |
| locator.setLineNumber(lineno++); |
| //ignore empty lines and treat those starting with '#' as comments |
| if ("".equals(text.trim()) || text.startsWith("#")) { |
| continue; |
| } |
| try { |
| AuthInfo ai = parseLine(text); |
| authInfo.add(ai); |
| } catch (Exception e) { |
| listener.onParsingError(text, locator); |
| } |
| } |
| } catch (IOException e) { |
| listener.onError(e, locator); |
| LOGGER.log(Level.SEVERE, e.getMessage(), e); |
| } |
| } finally { |
| try { |
| if (in != null) { |
| in.close(); |
| } |
| if (is != null) { |
| is.close(); |
| } |
| if (fi != null) { |
| fi.close(); |
| } |
| } catch (IOException ex) { |
| LOGGER.log(Level.SEVERE, null, ex); |
| } |
| } |
| } |
| |
| private AuthInfo parseLine(String text) throws Exception { |
| URL url; |
| try { |
| url = new URL(text); |
| } catch (MalformedURLException mue) { |
| //possible cause of this can be that password contains |
| //character which has to be encoded in URL, |
| //such as '@', ')', '#' and few others |
| //so try to recreate the URL with encoded string |
| //between 2nd ':' and last '@' |
| int i = text.indexOf(':', text.indexOf(':') + 1) + 1; |
| int j = text.lastIndexOf('@'); |
| String encodedUrl = |
| text.substring(0, i) |
| + URLEncoder.encode(text.substring(i, j), "UTF-8") |
| + text.substring(j); |
| url = new URL(encodedUrl); |
| } |
| |
| String authinfo = url.getUserInfo(); |
| |
| if (authinfo != null) { |
| int i = authinfo.indexOf(':'); |
| |
| if (i >= 0) { |
| String user = authinfo.substring(0, i); |
| String password = authinfo.substring(i + 1); |
| return new AuthInfo( |
| new URL(url.getProtocol(), url.getHost(), url.getPort(), url.getFile()), |
| user, URLDecoder.decode(password, "UTF-8")); |
| } |
| } |
| throw new Exception(); |
| } |
| |
| static Authenticator getCurrentAuthenticator() { |
| try { |
| return AccessController.doPrivileged(new PrivilegedExceptionAction<Authenticator>() { |
| @Override |
| public Authenticator run() throws Exception { |
| Method method = Authenticator.class.getMethod("getDefault"); |
| return (Authenticator) method.invoke(null); |
| } |
| |
| }); |
| } catch (PrivilegedActionException pae) { |
| if (LOGGER.isLoggable(Level.FINE)) { |
| LOGGER.log(Level.FINE, null, pae); |
| } |
| Exception ex = pae.getException(); |
| if (!(ex instanceof NoSuchMethodException)) { |
| // if Authenticator.getDefault has not been found, |
| // we likely didn't get through sec, so return null |
| // and don't care about JDK version we're on |
| return null; |
| } |
| // or we're on JDK <9, so let's continue the old way... |
| } |
| |
| final Field f = getTheAuthenticator(); |
| if (f == null) { |
| return null; |
| } |
| |
| try { |
| AccessController.doPrivileged(new PrivilegedAction<Void>() { |
| @Override |
| public Void run() { |
| f.setAccessible(true); |
| return null; |
| } |
| }); |
| return (Authenticator) f.get(null); |
| } catch (IllegalAccessException | IllegalArgumentException ex) { |
| return null; |
| } finally { |
| AccessController.doPrivileged(new PrivilegedAction<Void>() { |
| @Override |
| public Void run() { |
| f.setAccessible(false); |
| return null; |
| } |
| }); |
| } |
| } |
| |
| private static Field getTheAuthenticator() { |
| try { |
| return Authenticator.class.getDeclaredField("theAuthenticator"); |
| } catch (NoSuchFieldException | SecurityException ex) { |
| return null; |
| } |
| } |
| |
| public static interface Receiver { |
| |
| void onParsingError(String line, Locator loc); |
| |
| void onError(Exception e, Locator loc); |
| } |
| |
| private static class DefaultRImpl implements Receiver { |
| |
| @Override |
| public void onParsingError(String line, Locator loc) { |
| System.err.println(getLocationString(loc) + ": " + line); |
| } |
| |
| @Override |
| public void onError(Exception e, Locator loc) { |
| System.err.println(getLocationString(loc) + ": " + e.getMessage()); |
| LOGGER.log(Level.SEVERE, e.getMessage(), e); |
| } |
| |
| private String getLocationString(Locator l) { |
| return "[" + l.getSystemId() + "#" + l.getLineNumber() + "]"; |
| } |
| } |
| |
| /** |
| * Represents authorization information needed by |
| * {@link DefaultAuthenticator} to authenticate access to remote resources. |
| * |
| * @author Vivek Pandey |
| * @author Lukas Jungmann |
| */ |
| final static class AuthInfo { |
| |
| private final String user; |
| private final String password; |
| private final Pattern urlPattern; |
| |
| public AuthInfo(URL url, String user, String password) { |
| String u = url.toExternalForm().replaceFirst("\\?", "\\\\?"); |
| this.urlPattern = Pattern.compile(u.replace("*", ".*"), Pattern.CASE_INSENSITIVE); |
| this.user = user; |
| this.password = password; |
| } |
| |
| public String getUser() { |
| return user; |
| } |
| |
| public String getPassword() { |
| return password; |
| } |
| |
| /** |
| * Returns if the requesting host and port are associated with this |
| * {@link AuthInfo} |
| */ |
| public boolean matchingHost(URL requestingURL) { |
| return urlPattern.matcher(requestingURL.toExternalForm()).matches(); |
| } |
| } |
| } |