AuthorizationServicesConnector.cs 5.1 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122
  1. /*
  2. * Copyright (c) Contributors, http://opensimulator.org/
  3. * See CONTRIBUTORS.TXT for a full list of copyright holders.
  4. *
  5. * Redistribution and use in source and binary forms, with or without
  6. * modification, are permitted provided that the following conditions are met:
  7. * * Redistributions of source code must retain the above copyright
  8. * notice, this list of conditions and the following disclaimer.
  9. * * Redistributions in binary form must reproduce the above copyright
  10. * notice, this list of conditions and the following disclaimer in the
  11. * documentation and/or other materials provided with the distribution.
  12. * * Neither the name of the OpenSimulator Project nor the
  13. * names of its contributors may be used to endorse or promote products
  14. * derived from this software without specific prior written permission.
  15. *
  16. * THIS SOFTWARE IS PROVIDED BY THE DEVELOPERS ``AS IS'' AND ANY
  17. * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
  18. * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
  19. * DISCLAIMED. IN NO EVENT SHALL THE CONTRIBUTORS BE LIABLE FOR ANY
  20. * DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
  21. * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
  22. * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
  23. * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
  24. * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
  25. * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
  26. */
  27. using log4net;
  28. using System;
  29. using System.Collections.Generic;
  30. using System.IO;
  31. using System.Reflection;
  32. using Nini.Config;
  33. using OpenSim.Framework;
  34. using OpenSim.Services.Interfaces;
  35. using OpenMetaverse;
  36. namespace OpenSim.Services.Connectors
  37. {
  38. public class AuthorizationServicesConnector
  39. {
  40. private static readonly ILog m_log =
  41. LogManager.GetLogger(
  42. MethodBase.GetCurrentMethod().DeclaringType);
  43. private string m_ServerURI = String.Empty;
  44. private bool m_ResponseOnFailure = true;
  45. public AuthorizationServicesConnector()
  46. {
  47. }
  48. public AuthorizationServicesConnector(string serverURI)
  49. {
  50. m_ServerURI = serverURI.TrimEnd('/');
  51. }
  52. public AuthorizationServicesConnector(IConfigSource source)
  53. {
  54. Initialise(source);
  55. }
  56. public virtual void Initialise(IConfigSource source)
  57. {
  58. IConfig authorizationConfig = source.Configs["AuthorizationService"];
  59. if (authorizationConfig == null)
  60. {
  61. //m_log.Info("[AUTHORIZATION CONNECTOR]: AuthorizationService missing from OpenSim.ini");
  62. throw new Exception("Authorization connector init error");
  63. }
  64. string serviceURI = authorizationConfig.GetString("AuthorizationServerURI",
  65. String.Empty);
  66. if (serviceURI.Length == 0)
  67. {
  68. m_log.Error("[AUTHORIZATION CONNECTOR]: No Server URI named in section AuthorizationService");
  69. throw new Exception("Authorization connector init error");
  70. }
  71. m_ServerURI = serviceURI;
  72. // this dictates what happens if the remote service fails, if the service fails and the value is true
  73. // the user is authorized for the region.
  74. bool responseOnFailure = authorizationConfig.GetBoolean("ResponseOnFailure",true);
  75. m_ResponseOnFailure = responseOnFailure;
  76. m_log.Info("[AUTHORIZATION CONNECTOR]: AuthorizationService initialized");
  77. }
  78. public bool IsAuthorizedForRegion(string userID, string firstname, string surname, string email, string regionName, string regionID, out string message)
  79. {
  80. // do a remote call to the authorization server specified in the AuthorizationServerURI
  81. m_log.InfoFormat("[AUTHORIZATION CONNECTOR]: IsAuthorizedForRegion checking {0} at remote server {1}", userID, m_ServerURI);
  82. string uri = m_ServerURI;
  83. AuthorizationRequest req = new AuthorizationRequest(userID, firstname, surname, email, regionName, regionID);
  84. AuthorizationResponse response;
  85. try
  86. {
  87. response = SynchronousRestObjectRequester.MakeRequest<AuthorizationRequest, AuthorizationResponse>("POST", uri, req);
  88. }
  89. catch (Exception e)
  90. {
  91. m_log.WarnFormat("[AUTHORIZATION CONNECTOR]: Unable to send authorize {0} for region {1} error thrown during comms with remote server. Reason: {2}", userID, regionID, e.Message);
  92. message = e.Message;
  93. return m_ResponseOnFailure;
  94. }
  95. if (response == null)
  96. {
  97. message = "Null response";
  98. return m_ResponseOnFailure;
  99. }
  100. m_log.DebugFormat("[AUTHORIZATION CONNECTOR] response from remote service was {0}", response.Message);
  101. message = response.Message;
  102. return response.IsAuthorized;
  103. }
  104. }
  105. }