Source File: From Openfire with Apache License 2.0 | 6 votes |
private void initLdapManager(boolean posix, boolean flattenNestedGroups) { final Map<String, String> properties = new HashMap<>(); properties.put("", "localhost"); properties.put("ldap.port", "" + LDAP_SERVER_PORT); properties.put("ldap.sslEnabled", "false" ); properties.put("ldap.startTlsEnabled", "false" ); properties.put("ldap.baseDN", "dc=mobikat,dc=net"); properties.put("ldap.adminDN", EmbeddedLdapRuleBuilder.DEFAULT_BIND_DSN); properties.put("ldap.adminPassword", EmbeddedLdapRuleBuilder.DEFAULT_BIND_CREDENTIALS); properties.put("ldap.usernameField", "uid"); properties.put("ldap.nameField", "cn"); properties.put("ldap.searchFilter", "(objectClass=inetOrgPerson)"); properties.put("ldap.groupNameField", "cn"); properties.put("ldap.groupMemberField", posix ? "memberUid" : "uniqueMember"); properties.put("ldap.groupSearchFilter", posix ? "(objectClass=posixGroup)" : "(objectClass=groupOfUniqueNames)"); if (posix) properties.put("ldap.posixMode", "true"); if (flattenNestedGroups) properties.put("ldap.flattenNestedGroups", "true"); LdapManager.setInstance(new LdapManager(properties)); UserManager.setProvider(new LdapUserProvider()); UserManager.getInstance().clearCaches(); }
Source File: From Openfire with Apache License 2.0 | 6 votes |
private void populateResponseFields(DataForm form, List<String> accounts) { FormField jidField = form.addField(); jidField.setVariable("accountjids"); FormField emailField = form.addField(); emailField.setVariable("email"); FormField nameField = form.addField(); nameField.setVariable("name"); UserManager manager = UserManager.getInstance(); for(String account : accounts) { User user; try { JID jid = new JID(account); user = manager.getUser(jid.getNode()); } catch (Exception ex) { continue; } jidField.addValue(account); emailField.addValue(user.getEmail()); nameField.addValue(user.getName()); } }
Source File: From Openfire with Apache License 2.0 | 6 votes |
public Iterator<Element> getUserItems(String name, JID senderJID) {
List<Element> answer = new ArrayList<>();
try {
User user = UserManager.getInstance().getUser(name);
RosterItem item = user.getRoster().getRosterItem(senderJID);
// If the requesting entity is subscribed to the account's presence then
// answer the user's "available resources"
if (item.getSubStatus() == RosterItem.SUB_FROM ||
item.getSubStatus() == RosterItem.SUB_BOTH) {
for (Session session : SessionManager.getInstance().getSessions(name)) {
Element element = DocumentHelper.createElement("item");
element.addAttribute("jid", session.getAddress().toString());
return answer.iterator();
catch (UserNotFoundException e) {
return answer.iterator();
Source File: From Openfire with Apache License 2.0 | 6 votes |
/** * Checks to see if the user exists; if not, a new user is created. * * @param username the username. */ // @VisibleForTesting protected void createUser(String username) { // See if the user exists in the database. If not, automatically create them. UserManager userManager = UserManager.getInstance(); try { userManager.getUser(username); } catch (UserNotFoundException unfe) { try { Log.debug("JDBCAuthProvider: Automatically creating new user account for " + username); UserManager.getUserProvider().createUser(username, StringUtils.randomString(8), null, null); } catch (UserAlreadyExistsException uaee) { // Ignore. } } }
Source File: From Openfire with Apache License 2.0 | 6 votes |
* Checks if a particular JID is allowed to create rooms.
* @param jid The jid for which to check (cannot be null).
* @return true if the JID is allowed to create a room, otherwise false.
private boolean isAllowedToCreate(final JID jid) {
// If room creation is not restricted, everyone is allowed to create a room.
if (!isRoomCreationRestricted()) {
return true;
final JID bareJID = jid.asBareJID();
// System administrators are always allowed to create rooms.
if (sysadmins.includes(bareJID)) {
return true;
// If the JID of the user has explicitly been given permission, room creation is allowed.
if (allowedToCreate.includes(bareJID)) {
return true;
// Verify the policy that allows all local, registered users to create rooms.
return allRegisteredUsersAllowedToCreate && UserManager.getInstance().isRegisteredUser(bareJID);
Source File: From Openfire with Apache License 2.0 | 5 votes |
* This method is similar to {@link #getAffectedUsers(Group)} except that it receives
* some group properties. The group properties are passed as parameters since the called of this
* method may want to obtain the related users of the group based in some properties values.
* This is useful when the group is being edited and some properties has changed and we need to
* obtain the related users of the group based on the previous group state.
private Collection<JID> getAffectedUsers(Group group, String showInRoster, String groupNames) {
// Answer an empty collection if the group is not being shown in users' rosters
if (!"onlyGroup".equals(showInRoster) && !"everybody".equals(showInRoster)) {
return new ArrayList<>();
// Add the users of the group
Collection<JID> users = new HashSet<>(group.getMembers());
// Check if anyone can see this shared group
if ("everybody".equals(showInRoster)) {
// Add all users in the system
for (String username : UserManager.getInstance().getUsernames()) {
users.add(server.createJID(username, null, true));
// Add all logged users. We don't need to add all users in the system since only the
// logged ones will be affected.
else {
// Add the users that may see the group
Collection<Group> groupList = parseGroups(groupNames);
for (Group groupInList : groupList) {
return users;
Source File: From Openfire with Apache License 2.0 | 5 votes |
@Test public void testConnection() throws Exception { initLdapManager(false, false); LdapManager ldapManager = LdapManager.getInstance(); assertEquals("cn=admins,ou=groups,dc=mobikat,dc=net", ldapManager.findGroupAbsoluteDN("admins").toString()); UserManager userManager = UserManager.getInstance(); User user = userManager.getUser(""); assertNotNull(user); assertEquals("James Bond", user.getName()); }
Source File: From Openfire with Apache License 2.0 | 5 votes |
* Constructs a new LDAP group provider.
public LdapGroupProvider() {
manager = LdapManager.getInstance();
userManager = UserManager.getInstance();
standardAttributes = new String[3];
standardAttributes[0] = manager.getGroupNameField();
standardAttributes[1] = manager.getGroupDescriptionField();
standardAttributes[2] = manager.getGroupMemberField();
Source File: From Openfire with Apache License 2.0 | 5 votes |
public PEPService create(JID owner) {
// Return an error if the packet is from an anonymous, unregistered user
// or remote user
if (!XMPPServer.getInstance().isLocal(owner)
|| !UserManager.getInstance().isRegisteredUser(owner.getNode())) {
throw new IllegalArgumentException(
"Request must be initiated by a local, registered user, but is not: "
+ owner);
PEPService pepService = null;
final JID bareJID = owner.asBareJID();
final Lock lock = pepServices.getLock(bareJID);
try {
if (pepServices.get(bareJID) != null) {
pepService = pepServices.get(bareJID).get();
if (pepService == null) {
pepService = new PEPService(XMPPServer.getInstance(), bareJID);
pepServices.put(bareJID, CacheableOptional.of(pepService));
if (Log.isDebugEnabled()) {
Log.debug("PEPService created for : " + bareJID);
} finally {
return pepService;
Source File: From Openfire with Apache License 2.0 | 5 votes |
public IQ handleIQ(IQ packet) throws UnauthorizedException, PacketException {
IQ replyPacket = IQ.createResultIQ(packet);
Element child = packet.getChildElement();
Element dataElement = child.elementIterator().next();
if ( !XMPPServer.getInstance().isLocal( packet.getFrom()) || !UserManager.getInstance().isRegisteredUser( packet.getFrom()) ) {
replyPacket.getError().setText( "Service available only to locally registered users." );
return replyPacket;
if (dataElement != null) {
if (IQ.Type.get.equals(packet.getType())) {
Element dataStored = privateStorage.get(packet.getFrom().getNode(), dataElement);
else {
if (privateStorage.isEnabled()) {
privateStorage.add(packet.getFrom().getNode(), dataElement);
} else {
else {
replyPacket.setChildElement("query", "jabber:iq:private");
return replyPacket;
Source File: From Openfire with Apache License 2.0 | 5 votes |
public void setCanChangePassword(boolean allowed)
if ( allowed && UserManager.getUserProvider().isReadOnly() )
Log.warn( "Allowing password changes has no effect, as the user provider for this system is read-only." );
canChangePassword = allowed;
JiveGlobals.setProperty("register.password", canChangePassword ? "true" : "false");
Source File: From Openfire with Apache License 2.0 | 5 votes |
public void setInbandRegEnabled(boolean allowed)
if ( allowed && UserManager.getUserProvider().isReadOnly() )
Log.warn( "Enabling in-band registration has no effect, as the user provider for this system is read-only." );
registrationEnabled = allowed;
JiveGlobals.setProperty("register.inband", registrationEnabled ? "true" : "false");
Source File: From Openfire with Apache License 2.0 | 5 votes |
Collection<JID> getSharedUsersForRoster(Group group, Roster roster) {
String showInRoster = group.getProperties().get("sharedRoster.showInRoster");
String groupNames = group.getProperties().get("sharedRoster.groupList");
// Answer an empty collection if the group is not being shown in users' rosters
if (!"onlyGroup".equals(showInRoster) && !"everybody".equals(showInRoster)) {
return new ArrayList<>();
// Add the users of the group
Collection<JID> users = new HashSet<>(group.getMembers());
// If the user of the roster belongs to the shared group then we should return
// users that need to be in the roster with subscription "from"
if (group.isUser(roster.getUsername())) {
// Check if anyone can see this shared group
if ("everybody".equals(showInRoster)) {
// Add all users in the system
for (String username : UserManager.getInstance().getUsernames()) {
users.add(server.createJID(username, null, true));
else {
// Add the users that may see the group
Collection<Group> groupList = parseGroups(groupNames);
for (Group groupInList : groupList) {
return users;
Source File: From openfire-ofmeet-plugin with Apache License 2.0 | 5 votes |
/** * Attemt to create an XMPP user that will represent the SIP contact that is pulled into a Meet. */ private static void ensureJigasiUser() { final OFMeetConfig config = new OFMeetConfig(); final String userId = config.getJigasiXmppUserId().get(); // Ensure that the user exists. final UserManager userManager = XMPPServer.getInstance().getUserManager(); if ( !userManager.isRegisteredUser( userId ) ) { "No pre-existing jigasi user '{}' detected. Generating one.", userId ); if ( UserManager.getUserProvider().isReadOnly() ) { "The user provider on this system is read only. Cannot create a Jigasi user account." ); return; } String password = config.getJigasiXmppPassword().get(); if ( password == null || password.isEmpty() ) { password = StringUtils.randomString( 40 ); } try { userManager.createUser( userId, password, "Jigasi User (generated)", null ); config.getJigasiXmppPassword().set( password ); } catch ( Exception e ) { Log.error( "Unable to provision a jigasi user.", e ); } } }
Source File: From Openfire with Apache License 2.0 | 5 votes |
public void userDeleting(User user, Map<String,Object> params) {
// Shared public groups that have a presence subscription of type FROM
// for the deleted user should no longer have a reference to the deleted user
JID userJID = server.createJID(user.getUsername(), null);
// Shared public groups that are public should have a presence subscription
// of type FROM for the new user
for (Group group : getPublicSharedGroups()) {
// Get group members of public group
Collection<JID> users = new HashSet<>(group.getMembers());
// Update the roster of each group member to include a subscription of type FROM
for (JID userToUpdate : users) {
// Get the roster to update
Roster roster = null;
if (server.isLocal(userToUpdate)) {
// Check that the user exists, if not then continue with the next user
try {
catch (UserNotFoundException e) {
roster = rosterCache.get(userToUpdate.getNode());
// Only update rosters in memory
if (roster != null) {
roster.deleteSharedUser(group, userJID);
if (!server.isLocal(userToUpdate)) {
// Unsusbcribe from the presence of the remote user. This is only necessary for
// remote users and may only work with remote users that **automatically**
// accept presence subscription requests
sendSubscribeRequest(userJID, userToUpdate, false);
Source File: From Openfire with Apache License 2.0 | 5 votes |
* @see org.jivesoftware.openfire.vcard.DefaultVCardProvider#updateVCard(java.lang.String, org.dom4j.Element)
public Element updateVCard(String username, Element vCard) throws NotFoundException {
// make sure some properties have not been overridden
Element nickNameNode = vCard.element("NICKNAME");
Element displayNameNode = vCard.element("FN");
Element nameNode = vCard.element("N");
Element lastNameNode = nameNode.element("FAMILY");
Element firstnameNode = nameNode.element("GIVEN");
Element emailNode = vCard.element("EMAIL").element("USERID");
CrowdUserProvider userProvider = (CrowdUserProvider) UserManager.getUserProvider();
try {
User user = userProvider.getCrowdUser(username);
} catch (UserNotFoundException unfe) {
LOG.error("Unable to find user:" + String.valueOf(username) + " for updating its vcard", unfe);
if (LOG.isDebugEnabled()) {
LOG.debug("updatevcard:" + vCard.asXML());
return super.updateVCard(username, vCard);
Example #17
Source File: From Openfire with Apache License 2.0 | 5 votes |
@Override public void execute(SessionData data, Element command) { Element note = command.addElement("note"); // Check if groups cannot be modified (backend is read-only) if (UserManager.getUserProvider().isReadOnly()) { note.addAttribute("type", "error"); note.setText("Users are read only. Changing password is not allowed."); return; } JID account = new JID(data.getData().get("accountjid").get(0)); String newPassword = data.getData().get("password").get(0); if (!XMPPServer.getInstance().isLocal(account)) { note.addAttribute("type", "error"); note.setText("Cannot change password of remote user."); return; } // Get requested group User user; try { user = UserManager.getInstance().getUser(account.getNode()); } catch (UserNotFoundException e) { // Group not found note.addAttribute("type", "error"); note.setText("User does not exists."); return; } // Set the new passowrd of the user user.setPassword(newPassword); // Answer that the operation was successful note.addAttribute("type", "info"); note.setText("Operation finished successfully"); }
Source File: From Openfire with Apache License 2.0 | 5 votes |
public void execute(SessionData sessionData, Element command) {
Element note = command.addElement("note");
Map<String, List<String>> data = sessionData.getData();
// Gets the username
String username;
try {
username = get(data, "username", 0);
catch (NullPointerException npe) {
note.addAttribute("type", "error");
note.setText("Username required parameter.");
// Sends the event
User user;
try {
// Gets current user
user = UserManager.getInstance().getUser(username);
Map<String, Object> params = Collections.emptyMap();
UserEventDispatcher.dispatchEvent(user, UserEventDispatcher.EventType.user_deleting, params);
} catch (UserNotFoundException e) {
// It's ok, user doesn't exist, so deleting it is nothing
// Answer that the operation was successful
note.addAttribute("type", "info");
note.setText("Operation finished successfully");
Source File: From Openfire with Apache License 2.0 | 5 votes |
public void execute(SessionData sessionData, Element command) {
Element note = command.addElement("note");
Map<String, List<String>> data = sessionData.getData();
// Get the username
String username;
try {
username = get(data, "username", 0);
catch (NullPointerException npe) {
note.addAttribute("type", "error");
note.setText("Username required parameter.");
// Sends the event
User user;
try {
// Loads the new user
user = UserManager.getUserProvider().loadUser(username);
// Fire event.
Map<String, Object> params = Collections.emptyMap();
UserEventDispatcher.dispatchEvent(user, UserEventDispatcher.EventType.user_created, params);
} catch (UserNotFoundException e) {
note.addAttribute("type", "error");
note.setText("User not found.");
// Answer that the operation was successful
note.addAttribute("type", "info");
note.setText("Operation finished successfully");
Source File: From Openfire with Apache License 2.0 | 5 votes |
* A new user has been created so members of public shared groups need to have
* their rosters updated. Members of public shared groups need to have a roster
* item with subscription FROM for the new user since the new user can see them.
* @param newUser the newly created user.
* @param params event parameters.
public void userCreated(User newUser, Map<String,Object> params) {
JID newUserJID = server.createJID(newUser.getUsername(), null);
// Shared public groups that are public should have a presence subscription
// of type FROM for the new user
for (Group group : getPublicSharedGroups()) {
// Get group members of public group
Collection<JID> users = new HashSet<>(group.getMembers());
// Update the roster of each group member to include a subscription of type FROM
for (JID userToUpdate : users) {
// Get the roster to update
Roster roster = null;
if (server.isLocal(userToUpdate)) {
// Check that the user exists, if not then continue with the next user
try {
catch (UserNotFoundException e) {
roster = rosterCache.get(userToUpdate.getNode());
// Only update rosters in memory
if (roster != null) {
roster.addSharedUser(group, newUserJID);
if (!server.isLocal(userToUpdate)) {
// Susbcribe to the presence of the remote user. This is only necessary for
// remote users and may only work with remote users that **automatically**
// accept presence subscription requests
sendSubscribeRequest(newUserJID, userToUpdate, true);
Source File: From Openfire with Apache License 2.0 | 4 votes |
public boolean hasPermission(JID requester) {
return (super.hasPermission(requester) || InternalComponentManager.getInstance().hasComponent(requester))
&& !UserManager.getUserProvider().isReadOnly();
Example #22
Source File: From openfire-ofmeet-plugin with Apache License 2.0 | 4 votes |
private static void ensureFocusUser()
final OFMeetConfig config = new OFMeetConfig();
// Ensure that the 'focus' user exists.
final UserManager userManager = XMPPServer.getInstance().getUserManager();
if ( !userManager.isRegisteredUser( "focus" ) )
{ "No pre-existing 'focus' user detected. Generating one." );
String password = config.getFocusPassword();
if ( password == null || password.isEmpty() )
password = StringUtils.randomString( 40 );
"Focus User (generated)",
config.setFocusPassword( password );
catch ( Exception e )
Log.error( "Unable to provision a 'focus' user.", e );
// Ensure that the 'focus' user can grant permissions in persistent MUCs by making it a sysadmin of the conference service(s).
final JID focusUserJid = new JID( "focus@" + XMPPServer.getInstance().getServerInfo().getXMPPDomain() );
for ( final MultiUserChatService mucService : XMPPServer.getInstance().getMultiUserChatManager().getMultiUserChatServices() )
if ( !mucService.isSysadmin( focusUserJid ) )
{ "Adding 'focus' user as a sysadmin to the '{}' MUC service.", mucService.getServiceName() );
mucService.addSysadmin( focusUserJid );
Example #23
Source File: From openfire-ofmeet-plugin with Apache License 2.0 | 4 votes |
public static void processMeeting(JSONObject meeting, String username, String videourl)
{"OfMeet Plugin - processMeeting " + username + " " + meeting);
try {
UserManager userManager = XMPPServer.getInstance().getUserManager();
User user = userManager.getUser(username);
Date start = new Date(meeting.getLong("startTime"));
Date end = new Date(meeting.getLong("endTime"));
String name = user.getName();
String email = user.getEmail();
String description = meeting.getString("description");
String title = meeting.getString("title");
String room = meeting.getString("room");
String audiourl = videourl + "#config.startWithVideoMuted=true";
String template = JiveGlobals.getProperty("", "Dear [name],\n\nYou have an online meeting from [start] to [end]\n\n[description]\n\nTo join, please click\n[videourl]\nFor audio only with no webcan, please click\n[audiourl]\n\nAdministrator - [domain]");
HashMap variables = new HashMap<String, String>();
String domain = XMPPServer.getInstance().getServerInfo().getXMPPDomain();
variables.put("name", name);
variables.put("email", email);
variables.put("start", start.toString());
variables.put("end", end.toString());
variables.put("description", description);
variables.put("title", title);
variables.put("room", room);
variables.put("videourl", videourl);
variables.put("audiourl", audiourl);
variables.put("domain", domain);
if (email != null)
sendEmail(name, email, title, replaceTokens(template, variables), null);
if (SessionManager.getInstance().getSessions(username).size() > 0)
// send invitation to user session as chat message with url
org.xmpp.packet.Message message = new org.xmpp.packet.Message();
message.setTo(username + "@" + domain);
SessionManager.getInstance().userBroadcast(username, message);
SecurityAuditManager.getInstance().logEvent(username, "sent email - " + title, description);
catch (Exception e) {
Log.error("processMeeting error", e);
Example #24
public UserManager getUserManager() {
return getXMPPServer().getUserManager();
Source File: From Openfire with Apache License 2.0 | 4 votes |
public boolean hasPermission(JID requester) {
return super.hasPermission(requester) && !UserManager.getUserProvider().isReadOnly();
Example #26
public boolean hasPermission(JID requester) {
return (super.hasPermission(requester) || InternalComponentManager.getInstance().hasComponent(requester))
&& !UserManager.getUserProvider().isReadOnly();
Source File: From Openfire with Apache License 2.0 | 4 votes |
public void storeOffline(Message message) {
if (message != null) {
// Do nothing if the message was sent to the server itself, an anonymous user or a non-existent user
// Also ignore message carbons
JID recipientJID = message.getTo();
if (recipientJID == null || serverAddress.equals(recipientJID) ||
recipientJID.getNode() == null ||
message.getExtension("received", "urn:xmpp:carbons:2") != null ||
!UserManager.getInstance().isRegisteredUser(recipientJID.getNode())) {
// Do not store messages if communication is blocked
PrivacyList list =
if (list != null && list.shouldBlockPacket(message)) {
Message result = message.createCopy();
XMPPServer.getInstance().getRoutingTable().routePacket(message.getFrom(), result, true);
// 8.5.2. localpart@domainpart
// No Available or Connected Resources
if (recipientJID.getResource() == null) {
if (message.getType() == Message.Type.headline || message.getType() == Message.Type.error) {
// For a message stanza of type "headline" or "error", the server MUST silently ignore the message.
// // For a message stanza of type "groupchat", the server MUST return an error to the sender, which SHOULD be <service-unavailable/>.
else if (message.getType() == Message.Type.groupchat) {
} else {
// 8.5.3. localpart@domainpart/resourcepart
// Message
// For a message stanza of type "normal", "groupchat", or "headline", the server MUST either (a) silently ignore the stanza
// or (b) return an error stanza to the sender, which SHOULD be <service-unavailable/>.
if (message.getType() == Message.Type.normal || message.getType() == Message.Type.groupchat || message.getType() == Message.Type.headline) {
// Depending on the OfflineMessageStragey, we may silently ignore or bounce
if (type == Type.bounce) {
// Either bounce or silently ignore, never store such messages
// For a message stanza of type "error", the server MUST silently ignore the stanza.
else if (message.getType() == Message.Type.error) {
switch (type) {
case bounce:
case store:
case store_and_bounce:
if (underQuota(message)) {
else {
Log.debug( "Unable to store, as user is over storage quota. Bouncing message instead: " + message.toXML() );
case store_and_drop:
if (underQuota(message)) {
} else {
Log.debug( "Unable to store, as user is over storage quota. Silently dropping message: " + message.toXML() );
case drop:
// Drop essentially means silently ignore/do nothing
Source File: From Openfire with Apache License 2.0 | 4 votes |
/** * Authorize the authenticated used to the requested username. This uses the * selected the selected AuthenticationProviders. * * @param username The requested username. * @param principal The authenticated principal. * @return true if the user is authorized. */ public static boolean authorize(String username, String principal) { for (AuthorizationPolicy ap : authorizationPolicies) { if (Log.isDebugEnabled()) { Log.debug("AuthorizationManager: Trying "".authorize("+username+" , "+principal+")"); } if (ap.authorize(username, principal)) { // Authorized.. but do you exist? try { UserManager.getUserProvider().loadUser(username); } catch (UserNotFoundException nfe) { if (Log.isDebugEnabled()) { Log.debug("AuthorizationManager: User " + username + " not found " + nfe.toString()); } // Should we add the user? if(JiveGlobals.getBooleanProperty("xmpp.auth.autoadd",false)) { if (UserManager.getUserProvider().isReadOnly()) { return false; } if (UserManager.getUserProvider().isNameRequired() || UserManager.getUserProvider().isEmailRequired()) { // If these are required, there's no way we can arbitrarily auto-create this account. return false; } try { UserManager.getInstance().createUser(username, StringUtils.randomString(8), null, null); if (Log.isDebugEnabled()) {"AuthorizationManager: User "+username+" created."); } return true; } catch (UserAlreadyExistsException uaee) { // Somehow the user got created in this very short timeframe.. // To be safe, lets fail here. The user can always try again. if (Log.isDebugEnabled()) { Log.error("AuthorizationManager: User " + username + " already exists while attempting to add user."); } return false; } } return false; } // User exists return true; } } // Not authorized. return false; }
Source File: From Openfire with Apache License 2.0 | 4 votes |
* @see org.jivesoftware.openfire.vcard.DefaultVCardProvider#loadVCard(java.lang.String)
public Element loadVCard(String username) {
if (LOG.isDebugEnabled()) {
LOG.debug("loadvcard:" + username);
if (MUTEX.containsKey(username)) {
// preventing looping
return null;
try {
MUTEX.put(username, username);
Element vcard = super.loadVCard(username);
if (vcard == null) {
CrowdUserProvider userProvider = (CrowdUserProvider) UserManager.getUserProvider();
try {
User user = userProvider.getCrowdUser(username);
String str = VCARD_TEMPLATE.replace("@displayname@", user.displayName)
.replace("@lastname@", user.lastName)
.replace("@firstname@", user.firstName)
.replace("@nickname@", username);
SAXReader xmlReader = new SAXReader();
vcard = StringReader(str)).getRootElement();
} catch (UserNotFoundException unfe) {
LOG.error("Unable to find user:" + String.valueOf(username) + " for loading its vcard", unfe);
return null;
} catch (DocumentException de) {
LOG.error("vcard parsing error", de);
return null;
if (LOG.isDebugEnabled()) {
LOG.debug(vcard != null ? vcard.asXML() : "vcard is null");
// store this new vcard
if (vcard != null) {
try {
createVCard(username, vcard);
} catch (AlreadyExistsException aee) {
LOG.error("Unable to create and store a new vcard for user:" + username + "; one already exists", aee);
return vcard;
} catch (RuntimeException re) {
LOG.error("Failure occured when loading a vcard for user:" + username, re);
throw re;
} finally {
Source File: From Openfire with Apache License 2.0 | 4 votes |
@Override public void authenticate(String username, String password) throws UnauthorizedException { if (username.contains("@")) { // Check that the specified domain matches the server's domain int index = username.indexOf("@"); String domain = username.substring(index + 1); if (domain.equals(XMPPServer.getInstance().getServerInfo().getXMPPDomain())) { username = username.substring(0, index); } else { // Unknown domain. Return authentication failed. throw new UnauthorizedException(); } } try { // Some native authentication mechanisms appear to not handle high load // very well. Therefore, synchronize access to Shaj to throttle auth checks. synchronized (this) { if (!Shaj.checkPassword(domain, username, password)) { throw new UnauthorizedException(); } } } catch (UnauthorizedException ue) { throw ue; } catch (Exception e) { throw new UnauthorizedException(e); } // See if the user exists in the database. If not, automatically create them. UserManager userManager = UserManager.getInstance(); try { userManager.getUser(username); } catch (UserNotFoundException unfe) { try { Log.debug("Automatically creating new user account for " + username); // Create user; use a random password for better safety in the future. // Note that we have to go to the user provider directly -- because the // provider is read-only, UserManager will usually deny access to createUser. UserProvider provider = UserManager.getUserProvider(); if (!(provider instanceof NativeUserProvider)) { Log.error("Error: not using NativeUserProvider so authentication with " + "NativeAuthProvider will likely fail. Using: " + provider.getClass().getName()); } UserManager.getUserProvider().createUser(username, StringUtils.randomString(8), null, null); } catch (UserAlreadyExistsException uaee) { // Ignore. } } }