001 /** 002 * Licensed to the Apache Software Foundation (ASF) under one or more 003 * contributor license agreements. See the NOTICE file distributed with 004 * this work for additional information regarding copyright ownership. 005 * The ASF licenses this file to You under the Apache License, Version 2.0 006 * (the "License"); you may not use this file except in compliance with 007 * the License. You may obtain a copy of the License at 008 * 009 * http://www.apache.org/licenses/LICENSE-2.0 010 * 011 * Unless required by applicable law or agreed to in writing, software 012 * distributed under the License is distributed on an "AS IS" BASIS, 013 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 014 * See the License for the specific language governing permissions and 015 * limitations under the License. 016 */ 017 018 package org.apache.activemq.security; 019 020 import java.security.Principal; 021 import java.security.cert.X509Certificate; 022 import java.util.Set; 023 024 import javax.security.auth.Subject; 025 026 /** 027 * Extends the SecurityContext to provide a username which is the 028 * Distinguished Name from the certificate. 029 * 030 */ 031 public class JaasCertificateSecurityContext extends SecurityContext { 032 033 private Subject subject; 034 private X509Certificate[] certs; 035 036 public JaasCertificateSecurityContext(String userName, Subject subject, X509Certificate[] certs) { 037 super(userName); 038 this.subject = subject; 039 this.certs = certs; 040 } 041 042 public Set<Principal> getPrincipals() { 043 return subject.getPrincipals(); 044 } 045 046 public String getUserName() { 047 if (certs != null && certs.length > 0) { 048 return certs[0].getSubjectDN().getName(); 049 } 050 return super.getUserName(); 051 } 052 053 }