001/** 002 * Licensed to the Apache Software Foundation (ASF) under one or more 003 * contributor license agreements. See the NOTICE file distributed with 004 * this work for additional information regarding copyright ownership. 005 * The ASF licenses this file to You under the Apache License, Version 2.0 006 * (the "License"); you may not use this file except in compliance with 007 * the License. You may obtain a copy of the License at 008 * 009 * http://www.apache.org/licenses/LICENSE-2.0 010 * 011 * Unless required by applicable law or agreed to in writing, software 012 * distributed under the License is distributed on an "AS IS" BASIS, 013 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 014 * See the License for the specific language governing permissions and 015 * limitations under the License. 016 */ 017package org.apache.activemq.security; 018 019import java.util.concurrent.CopyOnWriteArrayList; 020 021import org.apache.activemq.broker.Broker; 022import org.apache.activemq.broker.BrokerFilter; 023import org.apache.activemq.broker.ConnectionContext; 024import org.apache.activemq.command.ActiveMQDestination; 025import org.apache.activemq.command.ConnectionInfo; 026 027public abstract class AbstractAuthenticationBroker extends BrokerFilter implements AuthenticationBroker { 028 029 protected final CopyOnWriteArrayList<SecurityContext> securityContexts = 030 new CopyOnWriteArrayList<SecurityContext>(); 031 032 public AbstractAuthenticationBroker(Broker next) { 033 super(next); 034 } 035 036 @Override 037 public void removeDestination(ConnectionContext context, ActiveMQDestination destination, long timeout) throws Exception { 038 next.removeDestination(context, destination, timeout); 039 040 for (SecurityContext sc : securityContexts) { 041 sc.getAuthorizedReadDests().remove(destination); 042 sc.getAuthorizedWriteDests().remove(destination); 043 } 044 } 045 046 @Override 047 public void removeConnection(ConnectionContext context, ConnectionInfo info, Throwable error) throws Exception { 048 super.removeConnection(context, info, error); 049 if (securityContexts.remove(context.getSecurityContext())) { 050 context.setSecurityContext(null); 051 } 052 } 053 054 public void refresh() { 055 for (SecurityContext sc : securityContexts) { 056 sc.getAuthorizedReadDests().clear(); 057 sc.getAuthorizedWriteDests().clear(); 058 } 059 } 060}