Skip to content
GitLab
Projects
Groups
Snippets
Help
Loading...
Help
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in
Toggle navigation
A
appinventor-sources
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Analytics
Analytics
Repository
Value Stream
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Commits
Open sidebar
xpstem
appinventor-sources
Commits
0ead97ab
Commit
0ead97ab
authored
Jul 29, 2012
by
hal
Browse files
Options
Browse Files
Download
Plain Diff
Merge pull request #74 from jisqyv/addidmap
Add a "fixids" (CSV file in WEB-INF) to map one Google ID to another.
parents
cf5332f6
a779555b
Changes
2
Show whitespace changes
Inline
Side-by-side
Showing
2 changed files
with
134 additions
and
0 deletions
+134
-0
appinventor/appengine/src/com/google/appinventor/server/IdMap.java
...or/appengine/src/com/google/appinventor/server/IdMap.java
+131
-0
appinventor/appengine/src/com/google/appinventor/server/OdeAuthFilter.java
...gine/src/com/google/appinventor/server/OdeAuthFilter.java
+3
-0
No files found.
appinventor/appengine/src/com/google/appinventor/server/IdMap.java
0 → 100644
View file @
0ead97ab
// -*- mode: java; c-basic-offset: 2; -*-
// Copyright (c) 2012 The Massachusetts Institute of Technology.
// This work is licensed under a Creative Commons Attribution 3.0 Unported License.
package
com.google.appinventor.server
;
import
com.google.appinventor.server.flags.Flag
;
import
com.google.appinventor.server.util.CsvParser
;
import
com.google.common.annotations.VisibleForTesting
;
import
com.google.common.base.Preconditions
;
import
java.io.FileInputStream
;
import
java.io.FileNotFoundException
;
import
java.io.IOException
;
import
java.util.HashSet
;
import
java.util.HashMap
;
import
java.util.Iterator
;
import
java.util.List
;
import
java.util.Set
;
import
java.util.logging.Level
;
import
java.util.logging.Logger
;
import
java.util.regex.Matcher
;
import
java.util.regex.Pattern
;
/**
* Implementation of the fixid list. Google stores e-mail addresses
* in a case senstive way, yet in many instances displays them only in
* lower case. We have at least one instance of a person somehow getting
* their apps signed using the lower case version.
*
* This code permits us to establish a "fixid" list which maps one
* Google ID, specified by their email address, into another. This
* facility can effectively permit one user to login as another. The
* mapping is implemented as a file in the application instead of as a
* table in the datastore in order to reduce the probability of it
* being abused.
*
* The list itself is called "fixid" and it lives in the WEB-INF
* directory. Each line consists of two tuples separated by a comma.
* entries may be quoted, but do not have to be. The first is the
* email address to map and the other is what it maps to.
*
* @author jis@mit.edu (Jeffrey I. Schiller)
*
* Based on code from Whitelist.java authored by kerr@google.com (Debby Wallach)
*
*/
public
class
IdMap
{
private
static
final
Logger
LOG
=
Logger
.
getLogger
(
IdMap
.
class
.
getName
());
private
static
final
boolean
DEBUG
=
true
;
// When running on appengine, the application is running in a way that
// the rootPath should not be set to anything. This flag needs to be
// set for testing.
@VisibleForTesting
public
static
final
Flag
<
String
>
rootPath
=
Flag
.
createFlag
(
"root.path"
,
""
);
private
String
pathTofixId
=
rootPath
.
get
()
+
"WEB-INF/fixids"
;
private
boolean
validfixId
;
private
final
HashMap
<
String
,
String
>
addresses
=
new
HashMap
<
String
,
String
>();
IdMap
()
{
validfixId
=
false
;
try
{
parseToMap
(
new
CsvParser
(
new
FileInputStream
(
pathTofixId
)));
if
(
addresses
.
size
()
==
0
)
{
LOG
.
severe
(
"fixid list contained no entries."
);
}
else
{
if
(
DEBUG
)
{
logfixIdContents
();
}
validfixId
=
true
;
}
}
catch
(
FileNotFoundException
e
)
{
LOG
.
severe
(
"No fixid list found."
);
}
catch
(
SecurityException
e
)
{
LOG
.
severe
(
"Fixid list found, but wrong permission."
);
}
catch
(
IOException
e
)
{
LOG
.
log
(
Level
.
SEVERE
,
"Unexpected fixid list error"
,
e
);
}
catch
(
Exception
e
)
{
LOG
.
log
(
Level
.
SEVERE
,
"Error parsing fixids file."
,
e
);
}
}
// If an entry doesn't exist, we are an identity function
public
String
get
(
String
email
)
{
if
(!
validfixId
)
{
if
(
DEBUG
)
LOG
.
info
(
"IdMap.get called for "
+
email
+
" but no valid map exists."
);
// If we have not loaded a valid fixid list, no mappings
return
email
;
}
String
retval
=
addresses
.
get
(
email
);
if
(
DEBUG
)
{
if
(
retval
==
null
)
{
LOG
.
info
(
"No mapping found for "
+
email
);
}
else
{
LOG
.
info
(
"Mapping "
+
email
+
" to "
+
retval
);
}
}
if
(
retval
==
null
)
return
email
;
return
retval
;
}
private
void
logfixIdContents
()
{
LOG
.
info
(
"fixid list contains "
+
addresses
.
size
()
+
" entries."
);
String
delimiter
=
""
;
for
(
String
key
:
addresses
.
keySet
())
{
LOG
.
info
(
"Contents: "
+
key
+
" => "
+
addresses
.
get
(
key
));
}
}
private
void
parseToMap
(
CsvParser
parser
)
{
/*
* expected file format:
* "emailaddress1","emailaddress2"
*
*/
while
(
parser
.
hasNext
())
{
List
<
String
>
line
=
parser
.
next
();
String
key
=
line
.
get
(
0
).
trim
();
String
value
=
line
.
get
(
1
).
trim
();
addresses
.
put
(
key
,
value
);
}
}
}
appinventor/appengine/src/com/google/appinventor/server/OdeAuthFilter.java
View file @
0ead97ab
// -*- mode: java; c-basic-offset: 2; -*-
// Copyright 2008 Google Inc. All Rights Reserved.
package
com.google.appinventor.server
;
...
...
@@ -42,6 +43,7 @@ public class OdeAuthFilter implements Filter {
// Note that if no whitelist exists, then no whitelist will be used.
private
static
final
Whitelist
whitelist
=
new
Whitelist
();
private
static
final
IdMap
idmap
=
new
IdMap
();
// Whether this server should use a whitelist to determine who can
// access it. Value is specified in the <system-properties> section
...
...
@@ -125,6 +127,7 @@ public class OdeAuthFilter implements Filter {
if
(
apiUser
!=
null
)
{
String
userId
=
apiUser
.
getUserId
();
String
email
=
apiUser
.
getEmail
();
email
=
idmap
.
get
(
email
);
// Map the user.
User
user
=
storageIo
.
getUser
(
userId
,
email
);
user
.
setIsAdmin
(
userService
.
isUserAdmin
());
if
(!
email
.
equals
(
user
.
getUserEmail
()))
{
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment