X-Git-Url: https://gerrit.onap.org/r/gitweb?a=blobdiff_plain;f=src%2Fmain%2Fjava%2Forg%2Fonap%2Fdmaap%2Fcommonauth%2Fkafka%2Fbase%2Fauthorization%2FCadi3AAFProvider.java;h=56fd1bbe1a1874a1d445d7aaf517f3bd78e4217e;hb=refs%2Fchanges%2F53%2F103353%2F1;hp=da0182985df652f0a3529c3a276746db36e4f4d7;hpb=d1118202d8eb04babd7fa1151a5d01d85c6e93dd;p=dmaap%2Fkafka11aaf.git diff --git a/src/main/java/org/onap/dmaap/commonauth/kafka/base/authorization/Cadi3AAFProvider.java b/src/main/java/org/onap/dmaap/commonauth/kafka/base/authorization/Cadi3AAFProvider.java index da01829..56fd1bb 100644 --- a/src/main/java/org/onap/dmaap/commonauth/kafka/base/authorization/Cadi3AAFProvider.java +++ b/src/main/java/org/onap/dmaap/commonauth/kafka/base/authorization/Cadi3AAFProvider.java @@ -44,17 +44,20 @@ public class Cadi3AAFProvider implements AuthorizationProvider { private static PropAccess access; private static AAFCon aafcon; - private static final String CADI_PROPERTIES = "/opt/kafka/config/cadi.properties"; + private static final String CADI_PROPERTIES = "/etc/kafka/data/cadi.properties"; private static final String AAF_LOCATOR_ENV = "aaf_locate_url"; private static String apiKey = null; private static String kafkaUsername = null; private static AAFAuthn aafAuthn; private static AbsAAFLur aafLur; - + private static boolean enableCadi = false; private static final Logger logger = LoggerFactory.getLogger(Cadi3AAFProvider.class); static { + if (System.getenv("enableCadi") != null && System.getenv("enableCadi").equals("true")) { + enableCadi = true; + } Configuration config = Configuration.getConfiguration(); try { if (config == null) { @@ -86,6 +89,11 @@ public class Cadi3AAFProvider implements AuthorizationProvider { return kafkaUsername; } + public static boolean isCadiEnabled() { + + return enableCadi; + } + public static AAFAuthn getAafAuthn() throws CadiException { if (aafAuthn == null) { throw new CadiException("Cadi is uninitialized in Cadi3AAFProvider.getAafAuthn()"); @@ -172,25 +180,32 @@ public class Cadi3AAFProvider implements AuthorizationProvider { public String authenticate(String userId, String password) throws Exception { logger.info("^Event received with username " + userId); - if (userId.equals(kafkaUsername)) { - if (password.equals(apiKey)) { - logger.info("by passes the authentication for the admin " + kafkaUsername); - return null; - } else { - String errorMessage = "Authentication failed for user " + kafkaUsername; - logger.error(errorMessage); - return errorMessage; - } - } + boolean enableCadi = System.getenv("enableCadi") == null ? true : false; + if (!enableCadi) { + return null; + } else { + if (userId.equals(kafkaUsername)) { + if (password.equals(apiKey)) { + logger.info("by passes the authentication for the admin " + kafkaUsername); + return null; + } else { + String errorMessage = "Authentication failed for user " + kafkaUsername; + logger.error(errorMessage); + return errorMessage; + } - String aafResponse = aafAuthn.validate(userId, password); - logger.info("aafResponse=" + aafResponse + " for " + userId); + } - if (aafResponse != null) { - logger.error("Authentication failed for user ." + userId); + String aafResponse = aafAuthn.validate(userId, password); + logger.info("aafResponse=" + aafResponse + " for " + userId); + + if (aafResponse != null) { + logger.error("Authentication failed for user ." + userId); + } + return aafResponse; } - return aafResponse; + } }