1 /* 2 * Licensed to the Apache Software Foundation (ASF) under one 3 * or more contributor license agreements. See the NOTICE file 4 * distributed with this work for additional information 5 * regarding copyright ownership. The ASF licenses this file 6 * to you under the Apache License, Version 2.0 (the 7 * "License"); you may not use this file except in compliance 8 * with the License. You may obtain a copy of the License at 9 * 10 * http://www.apache.org/licenses/LICENSE-2.0 11 * 12 * Unless required by applicable law or agreed to in writing, 13 * software distributed under the License is distributed on an 14 * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY 15 * KIND, either express or implied. See the License for the 16 * specific language governing permissions and limitations 17 * under the License. 18 * 19 */ 20 package org.apache.directory.server.core.authn; 21 22 23 import javax.naming.NamingException; 24 25 import org.apache.directory.server.core.interceptor.context.BindOperationContext; 26 import org.apache.directory.shared.ldap.constants.AuthenticationLevel; 27 28 29 /** 30 * An {@link Authenticator} that handles SASL connections (X.501 authentication 31 * level <tt>'strong'</tt>). The principal has been authenticated during SASL 32 * negotiation; therefore, no additional authentication is necessary in this 33 * {@link Authenticator}. 34 * 35 * @author <a href="mailto:dev@directory.apache.org">Apache Directory Project</a> 36 * @version $Rev$, $Date$ 37 */ 38 public class StrongAuthenticator extends AbstractAuthenticator 39 { 40 /** 41 * Creates a new instance of SaslAuthenticator. 42 */ 43 public StrongAuthenticator() 44 { 45 super( AuthenticationLevel.STRONG.toString() ); 46 } 47 48 49 /** 50 * User has already been authenticated during SASL negotiation. Set the authentication level 51 * to strong and return an {@link LdapPrincipal}. 52 */ 53 public LdapPrincipal authenticate( BindOperationContext opContext ) throws NamingException 54 { 55 // Possibly check if user account is disabled, other account checks. 56 return new LdapPrincipal( opContext.getDn(), AuthenticationLevel.STRONG ); 57 } 58 }