User Service Plugin update to 2.0.0

- New restfull API (see readme). The plugin is backward compatible. - Added new requst to get all or specific users - The user is now extendible with key / values properties - Added new requst to get roster entries of a specific users - Added new requst to get group names of a specific users - Added new request to add user to a group or remove a user from a group

User Service Plugin update to 2.0.0
- New restfull API (see readme). The plugin is backward compatible. - Added new requst to get all or specific users - The user is now extendible with key / values properties - Added new requst to get roster entries of a specific users - Added new requst to get group names of a specific users - Added new request to add user to a group or remove a user from a group
49ebcaac · Roman S · e40e4daf · 49ebcaac · 49ebcaac · 49ebcaac
Commit 49ebcaac authored Oct 05, 2014 by Roman S
38 changed files
--- a/src/plugins/userservice/changelog.html
+++ b/src/plugins/userservice/changelog.html
@@ -43,6 +43,16 @@
 <h1>
 User Service Plugin Changelog
 </h1>
+<p><b>2.0.0</b> -- October 4th, 2014</p>
+<ul>
+    <li>New restfull API (see readme). The plugin is backward compatible.</li>
+    <li>Added new requst to get all or specific users</li>
+    <li>The user is now extendible with key / values properties</li>
+    <li>Added new requst to get roster entries of a specific users</li>
+    <li>Added new requst to get group names of a specific users</li>
+    <li>Added new request to add user to a group or remove a user from a group</li>
+</ul>
+
 <p><b>1.4.4</b> -- May 5th, 2014</p>
 <ul>
    <li>Added new requests grouplist and usergrouplist</li>

--- a/src/plugins/userservice/lib/asm-3.1.jar
+++ b/src/plugins/userservice/lib/asm-3.1.jar
--- a/src/plugins/userservice/lib/jackson-core-asl-1.9.2.jar
+++ b/src/plugins/userservice/lib/jackson-core-asl-1.9.2.jar
--- a/src/plugins/userservice/lib/jackson-jaxrs-1.9.2.jar
+++ b/src/plugins/userservice/lib/jackson-jaxrs-1.9.2.jar
--- a/src/plugins/userservice/lib/jackson-mapper-asl-1.9.2.jar
+++ b/src/plugins/userservice/lib/jackson-mapper-asl-1.9.2.jar
--- a/src/plugins/userservice/lib/jackson-xc-1.9.2.jar
+++ b/src/plugins/userservice/lib/jackson-xc-1.9.2.jar
--- a/src/plugins/userservice/lib/jersey-bundle-1.18.jar
+++ b/src/plugins/userservice/lib/jersey-bundle-1.18.jar
--- a/src/plugins/userservice/lib/jersey-servlet-1.18.jar
+++ b/src/plugins/userservice/lib/jersey-servlet-1.18.jar
--- a/src/plugins/userservice/lib/jettison-1.1.jar
+++ b/src/plugins/userservice/lib/jettison-1.1.jar
--- a/src/plugins/userservice/lib/jsr311-api-1.1.1.jar
+++ b/src/plugins/userservice/lib/jsr311-api-1.1.1.jar
--- a/src/plugins/userservice/plugin.xml
+++ b/src/plugins/userservice/plugin.xml
@@ -4,9 +4,9 @@
    <class>org.jivesoftware.openfire.plugin.UserServicePlugin</class>
    <name>User Service</name>
    <description>Allows administration of users via HTTP requests.</description>
-    <author>Justin Hunt</author>
-    <version>1.4.4</version>
-    <date>26/05/2014</date>
+    <author>Roman Soldatow, Justin Hunt</author>
+    <version>2.0.0</version>
+    <date>10/04/2014</date>
    <minServerVersion>3.9.0</minServerVersion>
    
    <adminconsole>		

--- a/src/plugins/userservice/readme.html
+++ b/src/plugins/userservice/readme.html
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/entity/RosterEntities.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/entity/RosterEntities.java
+package org.jivesoftware.openfire.entity;
+
+import java.util.List;
+
+import javax.xml.bind.annotation.XmlElement;
+import javax.xml.bind.annotation.XmlRootElement;
+
+/**
+ * The Class RosterEntities.
+ */
+@XmlRootElement(name = "roster")
+public class RosterEntities {
+
+	/** The roster. */
+	List<RosterItemEntity> roster;
+
+	/**
+	 * Instantiates a new roster entities.
+	 */
+	public RosterEntities() {
+
+	}
+
+	/**
+	 * Instantiates a new roster entities.
+	 *
+	 * @param roster
+	 *            the roster
+	 */
+	public RosterEntities(List<RosterItemEntity> roster) {
+		this.roster = roster;
+	}
+
+	/**
+	 * Gets the roster.
+	 *
+	 * @return the roster
+	 */
+	@XmlElement(name = "rosterItem")
+	public List<RosterItemEntity> getRoster() {
+		return roster;
+	}
+
+	/**
+	 * Sets the roster.
+	 *
+	 * @param roster
+	 *            the new roster
+	 */
+	public void setRoster(List<RosterItemEntity> roster) {
+		this.roster = roster;
+	}
+
+}
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/entity/RosterItemEntity.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/entity/RosterItemEntity.java
+package org.jivesoftware.openfire.entity;
+
+import java.util.List;
+
+import javax.xml.bind.annotation.XmlElement;
+import javax.xml.bind.annotation.XmlElementWrapper;
+import javax.xml.bind.annotation.XmlRootElement;
+import javax.xml.bind.annotation.XmlType;
+
+/**
+ * The Class RosterItemEntity.
+ */
+@XmlRootElement(name = "rosterItem")
+@XmlType(propOrder = { "jid", "nickname", "subscriptionType", "groups" })
+public class RosterItemEntity {
+
+	/** The jid. */
+	private String jid;
+
+	/** The nickname. */
+	private String nickname;
+
+	/** The subscription type. */
+	private int subscriptionType;
+
+	/** The groups. */
+	private List<String> groups;
+
+	/**
+	 * Instantiates a new roster item entity.
+	 */
+	public RosterItemEntity() {
+
+	}
+
+	/**
+	 * Instantiates a new roster item entity.
+	 *
+	 * @param jid
+	 *            the jid
+	 * @param nickname
+	 *            the nickname
+	 * @param subscriptionType
+	 *            the subscription type
+	 */
+	public RosterItemEntity(String jid, String nickname, int subscriptionType) {
+		this.jid = jid;
+		this.nickname = nickname;
+		this.subscriptionType = subscriptionType;
+	}
+
+	/**
+	 * Gets the jid.
+	 *
+	 * @return the jid
+	 */
+	@XmlElement
+	public String getJid() {
+		return jid;
+	}
+
+	/**
+	 * Sets the jid.
+	 *
+	 * @param jid
+	 *            the new jid
+	 */
+	public void setJid(String jid) {
+		this.jid = jid;
+	}
+
+	/**
+	 * Gets the nickname.
+	 *
+	 * @return the nickname
+	 */
+	@XmlElement
+	public String getNickname() {
+		return nickname;
+	}
+
+	/**
+	 * Sets the nickname.
+	 *
+	 * @param nickname
+	 *            the new nickname
+	 */
+	public void setNickname(String nickname) {
+		this.nickname = nickname;
+	}
+
+	/**
+	 * Gets the subscription type.
+	 *
+	 * @return the subscription type
+	 */
+	@XmlElement
+	public int getSubscriptionType() {
+		return subscriptionType;
+	}
+
+	/**
+	 * Sets the subscription type.
+	 *
+	 * @param subscriptionType
+	 *            the new subscription type
+	 */
+	public void setSubscriptionType(int subscriptionType) {
+		this.subscriptionType = subscriptionType;
+	}
+
+	/**
+	 * Gets the groups.
+	 *
+	 * @return the groups
+	 */
+	@XmlElement(name = "group")
+	@XmlElementWrapper(name = "groups")
+	public List<String> getGroups() {
+		return groups;
+	}
+
+	/**
+	 * Sets the groups.
+	 *
+	 * @param groups
+	 *            the new groups
+	 */
+	public void setGroups(List<String> groups) {
+		this.groups = groups;
+	}
+}
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/entity/UserEntities.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/entity/UserEntities.java
+package org.jivesoftware.openfire.entity;
+
+import java.util.List;
+
+import javax.xml.bind.annotation.XmlElement;
+import javax.xml.bind.annotation.XmlRootElement;
+
+/**
+ * The Class UserEntities.
+ */
+@XmlRootElement(name = "users")
+public class UserEntities {
+
+	/** The users. */
+	List<UserEntity> users;
+
+	/**
+	 * Instantiates a new user entities.
+	 */
+	public UserEntities() {
+
+	}
+
+	/**
+	 * Instantiates a new user entities.
+	 *
+	 * @param users
+	 *            the users
+	 */
+	public UserEntities(List<UserEntity> users) {
+		this.users = users;
+	}
+
+	/**
+	 * Gets the users.
+	 *
+	 * @return the users
+	 */
+	@XmlElement(name = "user")
+	public List<UserEntity> getUsers() {
+		return users;
+	}
+
+	/**
+	 * Sets the users.
+	 *
+	 * @param users
+	 *            the new users
+	 */
+	public void setUsers(List<UserEntity> users) {
+		this.users = users;
+	}
+
+}
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/entity/UserEntity.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/entity/UserEntity.java
+package org.jivesoftware.openfire.entity;
+
+import java.util.List;
+
+import javax.xml.bind.annotation.XmlElement;
+import javax.xml.bind.annotation.XmlElementWrapper;
+import javax.xml.bind.annotation.XmlRootElement;
+import javax.xml.bind.annotation.XmlType;
+
+/**
+ * The Class UserEntity.
+ */
+@XmlRootElement(name = "user")
+@XmlType(propOrder = { "username", "name", "email", "password", "properties" })
+public class UserEntity {
+
+	/** The username. */
+	private String username;
+
+	/** The name. */
+	private String name;
+
+	/** The email. */
+	private String email;
+
+	/** The password. */
+	private String password;
+
+	/** The properties. */
+	private List<UserProperty> properties;
+
+	/**
+	 * Instantiates a new user entity.
+	 */
+	public UserEntity() {
+
+	}
+
+	/**
+	 * Instantiates a new user entity.
+	 *
+	 * @param username
+	 *            the username
+	 * @param name
+	 *            the name
+	 * @param email
+	 *            the email
+	 */
+	public UserEntity(String username, String name, String email) {
+		this.username = username;
+		this.name = name;
+		this.email = email;
+	}
+
+	/**
+	 * Gets the username.
+	 *
+	 * @return the username
+	 */
+	@XmlElement
+	public String getUsername() {
+		return username;
+	}
+
+	/**
+	 * Sets the username.
+	 *
+	 * @param username
+	 *            the new username
+	 */
+	public void setUsername(String username) {
+		this.username = username;
+	}
+
+	/**
+	 * Gets the name.
+	 *
+	 * @return the name
+	 */
+	@XmlElement
+	public String getName() {
+		return name;
+	}
+
+	/**
+	 * Sets the name.
+	 *
+	 * @param name
+	 *            the new name
+	 */
+	public void setName(String name) {
+		this.name = name;
+	}
+
+	/**
+	 * Gets the email.
+	 *
+	 * @return the email
+	 */
+	@XmlElement
+	public String getEmail() {
+		return email;
+	}
+
+	/**
+	 * Sets the email.
+	 *
+	 * @param email
+	 *            the new email
+	 */
+	public void setEmail(String email) {
+		this.email = email;
+	}
+
+	/**
+	 * Gets the password.
+	 *
+	 * @return the password
+	 */
+	public String getPassword() {
+		return password;
+	}
+
+	/**
+	 * Sets the password.
+	 *
+	 * @param password
+	 *            the new password
+	 */
+	public void setPassword(String password) {
+		this.password = password;
+	}
+
+	/**
+	 * Gets the properties.
+	 *
+	 * @return the properties
+	 */
+	@XmlElement(name = "property")
+	@XmlElementWrapper(name = "properties")
+	public List<UserProperty> getProperties() {
+		return properties;
+	}
+
+	/**
+	 * Sets the properties.
+	 *
+	 * @param properties
+	 *            the new properties
+	 */
+	public void setProperties(List<UserProperty> properties) {
+		this.properties = properties;
+	}
+}
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/entity/UserGroupsEntity.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/entity/UserGroupsEntity.java
+package org.jivesoftware.openfire.entity;
+
+import java.util.List;
+
+import javax.xml.bind.annotation.XmlElement;
+import javax.xml.bind.annotation.XmlRootElement;
+
+/**
+ * The Class UserGroupsEntity.
+ */
+@XmlRootElement(name = "groups")
+public class UserGroupsEntity {
+
+	/** The group names. */
+	private List<String> groupNames;
+
+	/**
+	 * Instantiates a new user groups entity.
+	 */
+	public UserGroupsEntity() {
+
+	}
+
+	/**
+	 * Instantiates a new user groups entity.
+	 *
+	 * @param groupNames
+	 *            the group names
+	 */
+	public UserGroupsEntity(List<String> groupNames) {
+		this.groupNames = groupNames;
+	}
+
+	/**
+	 * Gets the group names.
+	 *
+	 * @return the group names
+	 */
+	@XmlElement(name = "groupname")
+	public List<String> getGroupNames() {
+		return groupNames;
+	}
+
+	/**
+	 * Sets the group names.
+	 *
+	 * @param groupNames
+	 *            the new group names
+	 */
+	public void setGroupNames(List<String> groupNames) {
+		this.groupNames = groupNames;
+	}
+
+}
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/entity/UserProperty.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/entity/UserProperty.java
+package org.jivesoftware.openfire.entity;
+
+import javax.xml.bind.annotation.XmlAttribute;
+
+/**
+ * The Class UserProperty.
+ */
+public class UserProperty {
+
+	/** The key. */
+	private String key;
+
+	/** The value. */
+	private String value;
+
+	/**
+	 * Instantiates a new user property.
+	 */
+	public UserProperty() {
+
+	}
+
+	/**
+	 * Instantiates a new user property.
+	 *
+	 * @param key
+	 *            the key
+	 * @param value
+	 *            the value
+	 */
+	public UserProperty(String key, String value) {
+		this.key = key;
+		this.value = value;
+	}
+
+	/**
+	 * Gets the key.
+	 *
+	 * @return the key
+	 */
+	@XmlAttribute
+	public String getKey() {
+		return key;
+	}
+
+	/**
+	 * Sets the key.
+	 *
+	 * @param key
+	 *            the new key
+	 */
+	public void setKey(String key) {
+		this.key = key;
+	}
+
+	/**
+	 * Gets the value.
+	 *
+	 * @return the value
+	 */
+	@XmlAttribute
+	public String getValue() {
+		return value;
+	}
+
+	/**
+	 * Sets the value.
+	 *
+	 * @param value
+	 *            the new value
+	 */
+	public void setValue(String value) {
+		this.value = value;
+	}
+
+}
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/exceptions/ErrorResponse.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/exceptions/ErrorResponse.java
+package org.jivesoftware.openfire.exceptions;
+
+import javax.xml.bind.annotation.XmlRootElement;
+
+/**
+ * The Class ErrorResponse.
+ */
+@XmlRootElement(name = "error")
+public class ErrorResponse {
+
+	/** The ressource. */
+	private String ressource;
+
+	/** The message. */
+	private String message;
+
+	/** The exception. */
+	private String exception;
+
+	/** The exception stack. */
+	private String exceptionStack;
+
+	/**
+	 * Gets the ressource.
+	 *
+	 * @return the ressource
+	 */
+	public String getRessource() {
+		return ressource;
+	}
+
+	/**
+	 * Sets the ressource.
+	 *
+	 * @param ressource
+	 *            the new ressource
+	 */
+	public void setRessource(String ressource) {
+		this.ressource = ressource;
+	}
+
+	/**
+	 * Gets the message.
+	 *
+	 * @return the message
+	 */
+	public String getMessage() {
+		return message;
+	}
+
+	/**
+	 * Sets the message.
+	 *
+	 * @param message
+	 *            the new message
+	 */
+	public void setMessage(String message) {
+		this.message = message;
+	}
+
+	/**
+	 * Gets the exception.
+	 *
+	 * @return the exception
+	 */
+	public String getException() {
+		return exception;
+	}
+
+	/**
+	 * Sets the exception.
+	 *
+	 * @param exception
+	 *            the new exception
+	 */
+	public void setException(String exception) {
+		this.exception = exception;
+	}
+
+	/**
+	 * Gets the exception stack.
+	 *
+	 * @return the exception stack
+	 */
+	public String getExceptionStack() {
+		return exceptionStack;
+	}
+
+	/**
+	 * Sets the exception stack.
+	 *
+	 * @param exceptionStack
+	 *            the new exception stack
+	 */
+	public void setExceptionStack(String exceptionStack) {
+		this.exceptionStack = exceptionStack;
+	}
+}
\ No newline at end of file
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/exceptions/ExceptionType.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/exceptions/ExceptionType.java
+package org.jivesoftware.openfire.exceptions;
+
+/**
+ * The Class ExceptionType.
+ */
+public final class ExceptionType {
+
+	/** The Constant SHARED_GROUP_EXCEPTION. */
+	public static final String SHARED_GROUP_EXCEPTION = "SharedGroupException";
+
+	/** The Constant PROPERTY_NOT_FOUND. */
+	public static final String PROPERTY_NOT_FOUND = "PropertyNotFoundException";
+
+	/** The Constant USER_ALREADY_EXISTS_EXCEPTION. */
+	public static final String USER_ALREADY_EXISTS_EXCEPTION = "UserAlreadyExistsException";
+
+	/** The Constant USER_NOT_FOUND_EXCEPTION. */
+	public static final String USER_NOT_FOUND_EXCEPTION = "UserNotFoundException";
+
+	/** The Constant GROUP_ALREADY_EXISTS. */
+	public static final String GROUP_ALREADY_EXISTS = "GroupAlreadyExistsException";
+
+	/** The Constant GROUP_NOT_FOUND. */
+	public static final String GROUP_NOT_FOUND = "GroupNotFoundException";
+
+	/**
+	 * Instantiates a new exception type.
+	 */
+	private ExceptionType() {
+	}
+}
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/exceptions/ServiceException.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/exceptions/ServiceException.java
+package org.jivesoftware.openfire.exceptions;
+
+import javax.ws.rs.core.Response.Status;
+
+/**
+ * The Class MUCServiceException.
+ */
+public class ServiceException extends Exception {
+
+	/** The Constant serialVersionUID. */
+	private static final long serialVersionUID = 4351720088030656859L;
+
+	/** The ressource. */
+	private String ressource;
+
+	/** The exception. */
+	private String exception;
+
+	/** The status. */
+	private Status status;
+
+	/**
+	 * Instantiates a new mUC service exception.
+	 *
+	 * @param msg
+	 *            the msg
+	 * @param ressource
+	 *            the ressource
+	 * @param exception
+	 *            the exception
+	 * @param status
+	 *            the status
+	 */
+	public ServiceException(String msg, String ressource, String exception, Status status) {
+		super(msg);
+		this.ressource = ressource;
+		this.exception = exception;
+		this.status = status;
+	}
+
+	/**
+	 * Instantiates a new service exception.
+	 *
+	 * @param msg
+	 *            the msg
+	 * @param ressource
+	 *            the ressource
+	 * @param exception
+	 *            the exception
+	 * @param status
+	 *            the status
+	 * @param cause
+	 *            the cause
+	 */
+	public ServiceException(String msg, String ressource, String exception, Status status, Throwable cause) {
+		super(msg, cause);
+		this.ressource = ressource;
+		this.exception = exception;
+		this.status = status;
+	}
+
+	/**
+	 * Gets the ressource.
+	 * 
+	 * @return the ressource
+	 */
+	public String getRessource() {
+		return ressource;
+	}
+
+	/**
+	 * Sets the ressource.
+	 * 
+	 * @param ressource
+	 *            the new ressource
+	 */
+	public void setRessource(String ressource) {
+		this.ressource = ressource;
+	}
+
+	/**
+	 * Gets the exception.
+	 * 
+	 * @return the exception
+	 */
+	public String getException() {
+		return exception;
+	}
+
+	/**
+	 * Sets the exception.
+	 * 
+	 * @param exception
+	 *            the new exception
+	 */
+	public void setException(String exception) {
+		this.exception = exception;
+	}
+
+	/**
+	 * Gets the status.
+	 *
+	 * @return the status
+	 */
+	public Status getStatus() {
+		return status;
+	}
+
+	/**
+	 * Sets the status.
+	 *
+	 * @param status
+	 *            the new status
+	 */
+	public void setStatus(Status status) {
+		this.status = status;
+	}
+}
\ No newline at end of file
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/AuthFilter.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/AuthFilter.java
+package org.jivesoftware.openfire.plugin;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.Response.Status;
+
+import org.jivesoftware.openfire.XMPPServer;
+import org.jivesoftware.openfire.admin.AdminManager;
+import org.jivesoftware.openfire.auth.AuthFactory;
+import org.jivesoftware.openfire.auth.ConnectionException;
+import org.jivesoftware.openfire.auth.InternalUnauthenticatedException;
+import org.jivesoftware.openfire.auth.UnauthorizedException;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import com.sun.jersey.spi.container.ContainerRequest;
+import com.sun.jersey.spi.container.ContainerRequestFilter;
+
+/**
+ * The Class AuthFilter.
+ */
+public class AuthFilter implements ContainerRequestFilter {
+
+	/** The log. */
+	private static Logger LOG = LoggerFactory.getLogger(AuthFilter.class);
+
+	/** The http request. */
+	@Context
+	private HttpServletRequest httpRequest;
+
+	/** The plugin. */
+	private UserServicePlugin plugin = (UserServicePlugin) XMPPServer.getInstance().getPluginManager()
+			.getPlugin("userservice");
+
+	/*
+	 * (non-Javadoc)
+	 * 
+	 * @see
+	 * com.sun.jersey.spi.container.ContainerRequestFilter#filter(com.sun.jersey
+	 * .spi.container.ContainerRequest)
+	 */
+	@Override
+	public ContainerRequest filter(ContainerRequest containerRequest) throws WebApplicationException {
+		if (!plugin.isEnabled()) {
+			throw new WebApplicationException(Status.FORBIDDEN);
+		}
+
+		if (!plugin.getAllowedIPs().isEmpty()) {
+			// Get client's IP address
+			String ipAddress = httpRequest.getHeader("x-forwarded-for");
+			if (ipAddress == null) {
+				ipAddress = httpRequest.getHeader("X_FORWARDED_FOR");
+				if (ipAddress == null) {
+					ipAddress = httpRequest.getHeader("X-Forward-For");
+					if (ipAddress == null) {
+						ipAddress = httpRequest.getRemoteAddr();
+					}
+				}
+			}
+			if (!plugin.getAllowedIPs().contains(ipAddress)) {
+				LOG.warn("User service rejected service to IP address: " + ipAddress);
+				throw new WebApplicationException(Status.UNAUTHORIZED);
+			}
+		}
+
+		// Get the authentification passed in HTTP headers parameters
+		String auth = containerRequest.getHeaderValue("authorization");
+
+		if (auth == null) {
+			throw new WebApplicationException(Status.UNAUTHORIZED);
+		}
+
+		// HTTP Basic Auth or Shared Secret key
+		if (plugin.isHttpBasicAuth()) {
+			String[] usernameAndPassword = BasicAuth.decode(auth);
+
+			// If username or password fail
+			if (usernameAndPassword == null || usernameAndPassword.length != 2) {
+				throw new WebApplicationException(Status.UNAUTHORIZED);
+			}
+
+			boolean userAdmin = AdminManager.getInstance().isUserAdmin(usernameAndPassword[0], true);
+
+			if (!userAdmin) {
+				throw new WebApplicationException(Status.UNAUTHORIZED);
+			}
+
+			try {
+				AuthFactory.authenticate(usernameAndPassword[0], usernameAndPassword[1]);
+			} catch (UnauthorizedException e) {
+				LOG.warn("Wrong HTTP Basic Auth authorization", e);
+				throw new WebApplicationException(Status.UNAUTHORIZED);
+			} catch (ConnectionException e) {
+				throw new WebApplicationException(Status.UNAUTHORIZED);
+			} catch (InternalUnauthenticatedException e) {
+				throw new WebApplicationException(Status.UNAUTHORIZED);
+			}
+		} else {
+			if (!auth.equals(plugin.getSecret())) {
+				LOG.warn("Wrong secret key authorization. Provided key: " + auth);
+				throw new WebApplicationException(Status.UNAUTHORIZED);
+			}
+		}
+		return containerRequest;
+	}
+}
\ No newline at end of file
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/BasicAuth.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/BasicAuth.java
+package org.jivesoftware.openfire.plugin;
+
+import javax.xml.bind.DatatypeConverter;
+
+public class BasicAuth {
+	/**
+	 * Decode the basic auth and convert it to array login/password
+	 * 
+	 * @param auth
+	 *            The string encoded authentification
+	 * @return The login (case 0), the password (case 1)
+	 */
+	public static String[] decode(String auth) {
+		// Replacing "Basic THE_BASE_64" to "THE_BASE_64" directly
+		auth = auth.replaceFirst("[B|b]asic ", "");
+
+		// Decode the Base64 into byte[]
+		byte[] decodedBytes = DatatypeConverter.parseBase64Binary(auth);
+
+		// If the decode fails in any case
+		if (decodedBytes == null || decodedBytes.length == 0) {
+			return null;
+		}
+
+		// Now we can convert the byte[] into a splitted array :
+		// - the first one is login,
+		// - the second one password
+		return new String(decodedBytes).split(":", 2);
+	}
+}
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/JerseyWrapper.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/JerseyWrapper.java
+package org.jivesoftware.openfire.plugin;
+
+import java.util.HashMap;
+import java.util.Map;
+
+import javax.servlet.ServletConfig;
+import javax.servlet.ServletException;
+
+import org.jivesoftware.admin.AuthCheckFilter;
+import org.jivesoftware.openfire.plugin.service.UserGroupService;
+import org.jivesoftware.openfire.plugin.service.UserLockoutService;
+import org.jivesoftware.openfire.plugin.service.UserRosterService;
+import org.jivesoftware.openfire.plugin.service.UserService;
+import org.jivesoftware.openfire.plugin.service.UserServiceLegacy;
+import org.jivesoftware.openfire.plugin.service.UserServiceProperties;
+
+import com.sun.jersey.api.core.PackagesResourceConfig;
+import com.sun.jersey.spi.container.servlet.ServletContainer;
+
+/**
+ * The Class JerseyWrapper.
+ */
+public class JerseyWrapper extends ServletContainer {
+
+	/** The Constant AUTHFILTER. */
+	private static final String AUTHFILTER = "org.jivesoftware.openfire.plugin.AuthFilter";
+
+	/** The Constant CONTAINER_REQUEST_FILTERS. */
+	private static final String CONTAINER_REQUEST_FILTERS = "com.sun.jersey.spi.container.ContainerRequestFilters";
+
+	/** The Constant RESOURCE_CONFIG_CLASS_KEY. */
+	private static final String RESOURCE_CONFIG_CLASS_KEY = "com.sun.jersey.config.property.resourceConfigClass";
+
+	/** The Constant RESOURCE_CONFIG_CLASS. */
+	private static final String RESOURCE_CONFIG_CLASS = "com.sun.jersey.api.core.PackagesResourceConfig";
+
+	/** The Constant SCAN_PACKAGE_DEFAULT. */
+	private static final String SCAN_PACKAGE_DEFAULT = JerseyWrapper.class.getPackage().getName();
+
+	/** The Constant serialVersionUID. */
+	private static final long serialVersionUID = 1L;
+
+	/** The Constant SERVLET_URL. */
+	private static final String SERVLET_URL = "userService/*";
+
+	/** The config. */
+	private static Map<String, Object> config;
+
+	/** The prc. */
+	private static PackagesResourceConfig prc;
+
+	static {
+		config = new HashMap<String, Object>();
+		config.put(RESOURCE_CONFIG_CLASS_KEY, RESOURCE_CONFIG_CLASS);
+		prc = new PackagesResourceConfig(SCAN_PACKAGE_DEFAULT);
+		prc.setPropertiesAndFeatures(config);
+		prc.getProperties().put(CONTAINER_REQUEST_FILTERS, AUTHFILTER);
+
+		prc.getClasses().add(UserServiceLegacy.class);
+		prc.getClasses().add(UserService.class);
+		prc.getClasses().add(UserRosterService.class);
+		prc.getClasses().add(UserGroupService.class);
+		prc.getClasses().add(UserServiceProperties.class);
+		prc.getClasses().add(UserLockoutService.class);
+
+		prc.getClasses().add(RESTExceptionMapper.class);
+	}
+
+	/**
+	 * Instantiates a new jersey wrapper.
+	 */
+	public JerseyWrapper() {
+		super(prc);
+	}
+
+	/*
+	 * (non-Javadoc)
+	 * 
+	 * @see javax.servlet.GenericServlet#init(javax.servlet.ServletConfig)
+	 */
+	@Override
+	public void init(ServletConfig servletConfig) throws ServletException {
+		super.init(servletConfig);
+		// Exclude this servlet from requering the user to login
+		AuthCheckFilter.addExclude(SERVLET_URL);
+	}
+
+	/*
+	 * (non-Javadoc)
+	 * 
+	 * @see com.sun.jersey.spi.container.servlet.ServletContainer#destroy()
+	 */
+	@Override
+	public void destroy() {
+		super.destroy();
+		// Release the excluded URL
+		AuthCheckFilter.removeExclude(SERVLET_URL);
+	}
+}
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/PropertyDAO.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/PropertyDAO.java
+package org.jivesoftware.openfire.plugin;
+
+import java.sql.Connection;
+import java.sql.PreparedStatement;
+import java.sql.ResultSet;
+import java.sql.SQLException;
+import java.util.ArrayList;
+import java.util.List;
+
+import javax.ws.rs.core.Response;
+
+import org.jivesoftware.database.DbConnectionManager;
+import org.jivesoftware.openfire.exceptions.ExceptionType;
+import org.jivesoftware.openfire.exceptions.ServiceException;
+
+/**
+ * The Class PropertyDAO.
+ */
+public class PropertyDAO {
+
+	/** The Constant LOAD_PROPERTY. */
+	private final static String LOAD_PROPERTY = "SELECT username FROM ofUserProp WHERE name=? AND propValue=?";
+
+	/** The Constant LOAD_PROPERTY_BY_KEY. */
+	private final static String LOAD_PROPERTY_BY_KEY = "SELECT username FROM ofUserProp WHERE name=?";
+
+	/**
+	 * Gets the username by property key and or value.
+	 *
+	 * @param propertyName
+	 *            the property name
+	 * @param propertyValue
+	 *            the property value (can be null)
+	 * @return the username by property
+	 * @throws ServiceException
+	 *             the service exception
+	 */
+	public static List<String> getUsernameByProperty(String propertyName, String propertyValue) throws ServiceException {
+		List<String> usernames = new ArrayList<String>();
+		Connection con = null;
+		PreparedStatement pstmt = null;
+		ResultSet rs = null;
+		try {
+			con = DbConnectionManager.getConnection();
+			// Load property by key and value
+			if (propertyValue != null) {
+				pstmt = con.prepareStatement(LOAD_PROPERTY);
+				pstmt.setString(1, propertyName);
+				pstmt.setString(2, propertyValue);
+			} else {
+				// Load property by key
+				pstmt = con.prepareStatement(LOAD_PROPERTY_BY_KEY);
+				pstmt.setString(1, propertyName);
+			}
+			rs = pstmt.executeQuery();
+			while (rs.next()) {
+				usernames.add(rs.getString(1));
+			}
+		} catch (SQLException sqle) {
+			throw new ServiceException("Could not get username by property", propertyName,
+					ExceptionType.PROPERTY_NOT_FOUND, Response.Status.NOT_FOUND, sqle);
+		} finally {
+			DbConnectionManager.closeConnection(rs, pstmt, con);
+		}
+		return usernames;
+	}
+}
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/RESTExceptionMapper.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/RESTExceptionMapper.java
+package org.jivesoftware.openfire.plugin;
+
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.ext.ExceptionMapper;
+import javax.ws.rs.ext.Provider;
+
+import org.jivesoftware.openfire.exceptions.ErrorResponse;
+import org.jivesoftware.openfire.exceptions.ServiceException;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+/**
+ * The Class RESTExceptionMapper.
+ */
+@Provider
+public class RESTExceptionMapper implements ExceptionMapper<ServiceException> {
+
+	/** The log. */
+	private static Logger LOG = LoggerFactory.getLogger(RESTExceptionMapper.class);
+
+	/**
+	 * Instantiates a new REST exception mapper.
+	 */
+	public RESTExceptionMapper() {
+	}
+
+	/*
+	 * (non-Javadoc)
+	 * 
+	 * @see javax.ws.rs.ext.ExceptionMapper#toResponse(java.lang.Throwable)
+	 */
+	public Response toResponse(ServiceException exception) {
+		ErrorResponse errorResponse = new ErrorResponse();
+		errorResponse.setRessource(exception.getRessource());
+		errorResponse.setMessage(exception.getMessage());
+		errorResponse.setException(exception.getException());
+		LOG.error(
+				exception.getException() + ": " + exception.getMessage() + " with ressource "
+						+ exception.getRessource(), exception.getException());
+		return Response.status(exception.getStatus()).entity(errorResponse).type(MediaType.APPLICATION_XML).build();
+	}
+
+}
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/UserServicePlugin.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/UserServicePlugin.java
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/UserServicePluginNG.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/UserServicePluginNG.java
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/service/UserGroupService.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/service/UserGroupService.java
+package org.jivesoftware.openfire.plugin.service;
+
+import javax.annotation.PostConstruct;
+import javax.ws.rs.DELETE;
+import javax.ws.rs.GET;
+import javax.ws.rs.POST;
+import javax.ws.rs.Path;
+import javax.ws.rs.PathParam;
+import javax.ws.rs.Produces;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+
+import org.jivesoftware.openfire.entity.UserGroupsEntity;
+import org.jivesoftware.openfire.exceptions.ServiceException;
+import org.jivesoftware.openfire.plugin.UserServicePluginNG;
+
+@Path("userService/users/{username}/groups")
+public class UserGroupService {
+
+	private UserServicePluginNG plugin;
+
+	@PostConstruct
+	public void init() {
+		plugin = UserServicePluginNG.getInstance();
+	}
+
+	@GET
+	@Produces(MediaType.APPLICATION_XML)
+	public UserGroupsEntity getUserGroups(@PathParam("username") String username) throws ServiceException {
+		return new UserGroupsEntity(plugin.getUserGroups(username));
+	}
+
+	@POST
+	public Response addUserToGroups(@PathParam("username") String username, UserGroupsEntity userGroupsEntity)
+			throws ServiceException {
+		plugin.addUserToGroups(username, userGroupsEntity);
+		return Response.status(Response.Status.CREATED).build();
+	}
+
+	@DELETE
+	public Response deleteUserFromGroups(@PathParam("username") String username, UserGroupsEntity userGroupsEntity)
+			throws ServiceException {
+		plugin.deleteUserFromGroups(username, userGroupsEntity);
+		return Response.status(Response.Status.OK).build();
+	}
+}
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/service/UserLockoutService.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/service/UserLockoutService.java
+package org.jivesoftware.openfire.plugin.service;
+
+import javax.annotation.PostConstruct;
+import javax.ws.rs.DELETE;
+import javax.ws.rs.POST;
+import javax.ws.rs.Path;
+import javax.ws.rs.PathParam;
+import javax.ws.rs.core.Response;
+
+import org.jivesoftware.openfire.exceptions.ServiceException;
+import org.jivesoftware.openfire.plugin.UserServicePluginNG;
+
+@Path("userService/lockouts")
+public class UserLockoutService {
+
+	private UserServicePluginNG plugin;
+
+	@PostConstruct
+	public void init() {
+		plugin = UserServicePluginNG.getInstance();
+	}
+
+	@POST
+	@Path("/{username}")
+	public Response disableUser(@PathParam("username") String username) throws ServiceException {
+		plugin.disableUser(username);
+		return Response.status(Response.Status.CREATED).build();
+	}
+
+	@DELETE
+	@Path("/{username}")
+	public Response enableUser(@PathParam("username") String username) throws ServiceException {
+		plugin.enableUser(username);
+		return Response.status(Response.Status.OK).build();
+	}
+}
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/service/UserRosterService.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/service/UserRosterService.java
+package org.jivesoftware.openfire.plugin.service;
+
+import javax.annotation.PostConstruct;
+import javax.ws.rs.DELETE;
+import javax.ws.rs.GET;
+import javax.ws.rs.POST;
+import javax.ws.rs.PUT;
+import javax.ws.rs.Path;
+import javax.ws.rs.PathParam;
+import javax.ws.rs.Produces;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+
+import org.jivesoftware.openfire.SharedGroupException;
+import org.jivesoftware.openfire.entity.RosterEntities;
+import org.jivesoftware.openfire.entity.RosterItemEntity;
+import org.jivesoftware.openfire.exceptions.ExceptionType;
+import org.jivesoftware.openfire.exceptions.ServiceException;
+import org.jivesoftware.openfire.plugin.UserServicePluginNG;
+import org.jivesoftware.openfire.user.UserAlreadyExistsException;
+import org.jivesoftware.openfire.user.UserNotFoundException;
+
+@Path("userService/users/{username}/roster")
+public class UserRosterService {
+
+	private static final String COULD_NOT_UPDATE_THE_ROSTER = "Could not update the roster";
+
+	private static final String COULD_NOT_CREATE_ROSTER_ITEM = "Could not create roster item";
+
+	private UserServicePluginNG plugin;
+
+	@PostConstruct
+	public void init() {
+		plugin = UserServicePluginNG.getInstance();
+	}
+
+	@GET
+	@Produces(MediaType.APPLICATION_XML)
+	public RosterEntities getUserRoster(@PathParam("username") String username) throws ServiceException {
+		return plugin.getRosterEntities(username);
+	}
+
+	@POST
+	public Response createRoster(@PathParam("username") String username, RosterItemEntity rosterItemEntity)
+			throws ServiceException {
+		try {
+			plugin.addRosterItem(username, rosterItemEntity);
+		} catch (UserNotFoundException e) {
+			throw new ServiceException(COULD_NOT_CREATE_ROSTER_ITEM, "", ExceptionType.USER_NOT_FOUND_EXCEPTION,
+					Response.Status.NOT_FOUND, e);
+		} catch (UserAlreadyExistsException e) {
+			throw new ServiceException(COULD_NOT_CREATE_ROSTER_ITEM, "", ExceptionType.USER_ALREADY_EXISTS_EXCEPTION,
+					Response.Status.BAD_REQUEST, e);
+		} catch (SharedGroupException e) {
+			throw new ServiceException(COULD_NOT_CREATE_ROSTER_ITEM, "", ExceptionType.SHARED_GROUP_EXCEPTION,
+					Response.Status.BAD_REQUEST, e);
+		}
+		return Response.status(Response.Status.CREATED).build();
+	}
+
+	@DELETE
+	@Path("/{rosterJid}")
+	public Response deleteRoster(@PathParam("username") String username, @PathParam("rosterJid") String rosterJid)
+			throws ServiceException {
+		try {
+			plugin.deleteRosterItem(username, rosterJid);
+		} catch (SharedGroupException e) {
+			throw new ServiceException("Could not delete the roster item", rosterJid,
+					ExceptionType.SHARED_GROUP_EXCEPTION, Response.Status.BAD_REQUEST, e);
+		}
+		return Response.status(Response.Status.OK).build();
+	}
+
+	@PUT
+	@Path("/{rosterJid}")
+	public Response updateRoster(@PathParam("username") String username, @PathParam("rosterJid") String rosterJid,
+			RosterItemEntity rosterItemEntity) throws ServiceException {
+		try {
+			plugin.updateRosterItem(username, rosterJid, rosterItemEntity);
+		} catch (UserNotFoundException e) {
+			throw new ServiceException(COULD_NOT_UPDATE_THE_ROSTER, rosterJid, ExceptionType.USER_NOT_FOUND_EXCEPTION,
+					Response.Status.NOT_FOUND, e);
+		} catch (SharedGroupException e) {
+			throw new ServiceException(COULD_NOT_UPDATE_THE_ROSTER, rosterJid, ExceptionType.SHARED_GROUP_EXCEPTION,
+					Response.Status.BAD_REQUEST, e);
+		} catch (UserAlreadyExistsException e) {
+			throw new ServiceException(COULD_NOT_UPDATE_THE_ROSTER, rosterJid,
+					ExceptionType.USER_ALREADY_EXISTS_EXCEPTION, Response.Status.BAD_REQUEST, e);
+		}
+		return Response.status(Response.Status.OK).build();
+	}
+}
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/service/UserService.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/service/UserService.java
+package org.jivesoftware.openfire.plugin.service;
+
+import javax.annotation.PostConstruct;
+import javax.ws.rs.DELETE;
+import javax.ws.rs.GET;
+import javax.ws.rs.POST;
+import javax.ws.rs.PUT;
+import javax.ws.rs.Path;
+import javax.ws.rs.PathParam;
+import javax.ws.rs.Produces;
+import javax.ws.rs.QueryParam;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+
+import org.jivesoftware.openfire.entity.UserEntities;
+import org.jivesoftware.openfire.entity.UserEntity;
+import org.jivesoftware.openfire.exceptions.ServiceException;
+import org.jivesoftware.openfire.plugin.UserServicePluginNG;
+
+@Path("userService/users")
+public class UserService {
+
+	private UserServicePluginNG plugin;
+
+	@PostConstruct
+	public void init() {
+		plugin = UserServicePluginNG.getInstance();
+	}
+
+	@GET
+	@Produces(MediaType.APPLICATION_XML)
+	public UserEntities getUsers(@QueryParam("search") String userSearch) {
+		return plugin.getUserEntities(userSearch);
+	}
+
+	@POST
+	public Response createUser(UserEntity userEntity) throws ServiceException {
+		plugin.createUser(userEntity);
+		return Response.status(Response.Status.CREATED).build();
+	}
+
+	@GET
+	@Path("/{username}")
+	@Produces(MediaType.APPLICATION_XML)
+	public UserEntity getUser(@PathParam("username") String username) throws ServiceException {
+		return plugin.getUserEntity(username);
+	}
+
+	@PUT
+	@Path("/{username}")
+	public Response updateUser(@PathParam("username") String username, UserEntity userEntity) throws ServiceException {
+		plugin.updateUser(username, userEntity);
+		return Response.status(Response.Status.OK).build();
+	}
+
+	@DELETE
+	@Path("/{username}")
+	public Response deleteUser(@PathParam("username") String username) throws ServiceException {
+		plugin.deleteUser(username);
+		return Response.status(Response.Status.OK).build();
+	}
+}
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/service/UserServiceLegacy.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/service/UserServiceLegacy.java
+package org.jivesoftware.openfire.plugin.service;
+
+import gnu.inet.encoding.Stringprep;
+
+import java.io.IOException;
+import java.io.PrintWriter;
+
+import javax.annotation.PostConstruct;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.GET;
+import javax.ws.rs.POST;
+import javax.ws.rs.Path;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.Response;
+
+import org.apache.log4j.Logger;
+import org.jivesoftware.admin.AuthCheckFilter;
+import org.jivesoftware.openfire.SharedGroupException;
+import org.jivesoftware.openfire.XMPPServer;
+import org.jivesoftware.openfire.plugin.UserServicePlugin;
+import org.jivesoftware.openfire.user.UserAlreadyExistsException;
+import org.jivesoftware.openfire.user.UserNotFoundException;
+import org.xmpp.packet.JID;
+
+@Path("userService")
+public class UserServiceLegacy {
+	private static Logger Log = Logger.getLogger(UserServiceLegacy.class);
+
+	@Context
+	private HttpServletRequest request;
+
+	@Context
+	private HttpServletResponse response;
+
+	private UserServicePlugin plugin;
+
+	@PostConstruct
+	public void init() {
+		plugin = (UserServicePlugin) XMPPServer.getInstance().getPluginManager().getPlugin("userservice");
+		// Exclude this servlet from requiring the user to login
+		AuthCheckFilter.addExclude("userService/userservice");
+	}
+
+	@POST
+	@Path("/userservice")
+	public void userSerivcePostRequest() throws IOException {
+		userSerivceRequest();
+	}
+
+	@GET
+	@Path("/userservice")
+	public Response userSerivceRequest() throws IOException {
+		// Printwriter for writing out responses to browser
+		PrintWriter out = response.getWriter();
+
+		if (!plugin.getAllowedIPs().isEmpty()) {
+			// Get client's IP address
+			String ipAddress = request.getHeader("x-forwarded-for");
+			if (ipAddress == null) {
+				ipAddress = request.getHeader("X_FORWARDED_FOR");
+				if (ipAddress == null) {
+					ipAddress = request.getHeader("X-Forward-For");
+					if (ipAddress == null) {
+						ipAddress = request.getRemoteAddr();
+					}
+				}
+			}
+			if (!plugin.getAllowedIPs().contains(ipAddress)) {
+				Log.warn("User service rejected service to IP address: " + ipAddress);
+				replyError("RequestNotAuthorised", response, out);
+				return Response.status(200).build();
+			}
+		}
+
+		String username = request.getParameter("username");
+		String password = request.getParameter("password");
+		String name = request.getParameter("name");
+		String email = request.getParameter("email");
+		String type = request.getParameter("type");
+		String secret = request.getParameter("secret");
+		String groupNames = request.getParameter("groups");
+		String item_jid = request.getParameter("item_jid");
+		String sub = request.getParameter("subscription");
+		// No defaults, add, delete, update only
+		// type = type == null ? "image" : type;
+
+		// Check that our plugin is enabled.
+		if (!plugin.isEnabled()) {
+			Log.warn("User service plugin is disabled: " + request.getQueryString());
+			replyError("UserServiceDisabled", response, out);
+			return Response.status(200).build();
+		}
+
+		// Check this request is authorised
+		if (secret == null || !secret.equals(plugin.getSecret())) {
+			Log.warn("An unauthorised user service request was received: " + request.getQueryString());
+			replyError("RequestNotAuthorised", response, out);
+			return Response.status(200).build();
+		}
+
+		// Some checking is required on the username
+		if (username == null && !"grouplist".equals(type)) {
+			replyError("IllegalArgumentException", response, out);
+			return Response.status(200).build();
+		}
+
+		if ((type.equals("add_roster") || type.equals("update_roster") || type.equals("delete_roster"))
+				&& (item_jid == null || !(sub == null || sub.equals("-1") || sub.equals("0") || sub.equals("1")
+						|| sub.equals("2") || sub.equals("3")))) {
+			replyError("IllegalArgumentException", response, out);
+			return Response.status(200).build();
+		}
+
+		// Check the request type and process accordingly
+		try {
+			if ("grouplist".equals(type)) {
+				String message = "";
+				for (String groupname : plugin.getAllGroups()) {
+					message += "<groupname>" + groupname + "</groupname>";
+				}
+				replyMessage(message, response, out);
+			} else {
+				username = username.trim().toLowerCase();
+				username = JID.escapeNode(username);
+				username = Stringprep.nodeprep(username);
+				if ("add".equals(type)) {
+					plugin.createUser(username, password, name, email, groupNames);
+					replyMessage("ok", response, out);
+				} else if ("delete".equals(type)) {
+					plugin.deleteUser(username);
+					replyMessage("ok", response, out);
+				} else if ("enable".equals(type)) {
+					plugin.enableUser(username);
+					replyMessage("ok", response, out);
+				} else if ("disable".equals(type)) {
+					plugin.disableUser(username);
+					replyMessage("ok", response, out);
+				} else if ("update".equals(type)) {
+					plugin.updateUser(username, password, name, email, groupNames);
+					replyMessage("ok", response, out);
+				} else if ("add_roster".equals(type)) {
+					plugin.addRosterItem(username, item_jid, name, sub, groupNames);
+					replyMessage("ok", response, out);
+				} else if ("update_roster".equals(type)) {
+					plugin.updateRosterItem(username, item_jid, name, sub, groupNames);
+					replyMessage("ok", response, out);
+				} else if ("delete_roster".equals(type)) {
+					plugin.deleteRosterItem(username, item_jid);
+					replyMessage("ok", response, out);
+				} else if ("usergrouplist".equals(type)) {
+					String message = "";
+					for (String groupname : plugin.getUserGroups(username)) {
+						message += "<groupname>" + groupname + "</groupname>";
+					}
+					replyMessage(message, response, out);
+				} else {
+					Log.warn("The userService servlet received an invalid request of type: " + type);
+					// TODO Do something
+				}
+			}
+		} catch (UserAlreadyExistsException e) {
+			replyError("UserAlreadyExistsException", response, out);
+		} catch (UserNotFoundException e) {
+			replyError("UserNotFoundException", response, out);
+		} catch (IllegalArgumentException e) {
+
+			replyError("IllegalArgumentException", response, out);
+		} catch (SharedGroupException e) {
+
+			replyError("SharedGroupException", response, out);
+		} catch (Exception e) {
+			replyError(e.toString(), response, out);
+		}
+		return Response.status(200).build();
+	}
+
+	private void replyMessage(String message, HttpServletResponse response, PrintWriter out) {
+		response.setContentType("text/xml");
+		out.println("<result>" + message + "</result>");
+		out.flush();
+	}
+
+	private void replyError(String error, HttpServletResponse response, PrintWriter out) {
+		response.setContentType("text/xml");
+		out.println("<error>" + error + "</error>");
+		out.flush();
+	}
+}
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/service/UserServiceProperties.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/service/UserServiceProperties.java
+package org.jivesoftware.openfire.plugin.service;
+
+import javax.annotation.PostConstruct;
+import javax.ws.rs.GET;
+import javax.ws.rs.Path;
+import javax.ws.rs.PathParam;
+import javax.ws.rs.Produces;
+import javax.ws.rs.core.MediaType;
+
+import org.jivesoftware.openfire.entity.UserEntities;
+import org.jivesoftware.openfire.exceptions.ServiceException;
+import org.jivesoftware.openfire.plugin.UserServicePluginNG;
+
+@Path("userService/properties")
+public class UserServiceProperties {
+
+	private UserServicePluginNG plugin;
+
+	@PostConstruct
+	public void init() {
+		plugin = UserServicePluginNG.getInstance();
+	}
+
+	@GET
+	@Produces(MediaType.APPLICATION_XML)
+	@Path("/{key}")
+	public UserEntities getUsersByPropertyKey(@PathParam("key") String key) throws ServiceException {
+		return plugin.getUserEntitiesByProperty(key, null);
+	}
+
+	@GET
+	@Produces(MediaType.APPLICATION_XML)
+	@Path("/{key}/{value}")
+	public UserEntities getUsersByPropertyKeyValue(@PathParam("key") String key, @PathParam("value") String value)
+			throws ServiceException {
+		return plugin.getUserEntitiesByProperty(key, value);
+	}
+}
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/userService/UserServiceServlet.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/plugin/userService/UserServiceServlet.java
-/**
- * $RCSfile$
- * $Revision: 1710 $
- * $Date: 2005-07-26 11:56:14 -0700 (Tue, 26 Jul 2005) $
- *
- * Copyright (C) 2004-2008 Jive Software. All rights reserved.
- *
- * Licensed under the Apache License, Version 2.0 (the "License");
- * you may not use this file except in compliance with the License.
- * You may obtain a copy of the License at
- *
- *     http://www.apache.org/licenses/LICENSE-2.0
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" BASIS,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- */
-
-package org.jivesoftware.openfire.plugin.userService;
-
-import gnu.inet.encoding.Stringprep;
-
-import java.io.IOException;
-import java.io.PrintWriter;
-
-import javax.servlet.ServletConfig;
-import javax.servlet.ServletException;
-import javax.servlet.http.HttpServlet;
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-
-import org.jivesoftware.admin.AuthCheckFilter;
-import org.jivesoftware.openfire.SharedGroupException;
-import org.jivesoftware.openfire.XMPPServer;
-import org.jivesoftware.openfire.plugin.UserServicePlugin;
-import org.jivesoftware.openfire.user.UserAlreadyExistsException;
-import org.jivesoftware.openfire.user.UserNotFoundException;
-import org.jivesoftware.util.Log;
-import org.xmpp.packet.JID;
-
-
-/**
- * Servlet that addition/deletion/modification of the users info in the system.
- * Use the <b>type</b>
- * parameter to specify the type of action. Possible values are <b>add</b>,<b>delete</b> and
- * <b>update</b>. <p>
- * <p/>
- * The request <b>MUST</b> include the <b>secret</b> parameter. This parameter will be used
- * to authenticate the request. If this parameter is missing from the request then
- * an error will be logged and no action will occur.
- *
- * @author Justin Hunt
- */
-public class UserServiceServlet extends HttpServlet {
-
-    private UserServicePlugin plugin;
-
-
-    @Override
-	public void init(ServletConfig servletConfig) throws ServletException {
-        super.init(servletConfig);
-        plugin = (UserServicePlugin) XMPPServer.getInstance().getPluginManager().getPlugin("userservice");
- 
-        // Exclude this servlet from requiring the user to login
-        AuthCheckFilter.addExclude("userService/userservice");
-    }
-
-    @Override
-	protected void doGet(HttpServletRequest request, HttpServletResponse response)
-            throws ServletException, IOException
-    {
-        // Printwriter for writing out responses to browser
-        PrintWriter out = response.getWriter();
-
-        if (!plugin.getAllowedIPs().isEmpty()) {
-            // Get client's IP address
-            String ipAddress = request.getHeader("x-forwarded-for");
-            if (ipAddress == null) {
-                ipAddress = request.getHeader("X_FORWARDED_FOR");
-                if (ipAddress == null) {
-                    ipAddress = request.getHeader("X-Forward-For");
-                    if (ipAddress == null) {
-                        ipAddress = request.getRemoteAddr();
-                    }
-                }
-            }
-            if (!plugin.getAllowedIPs().contains(ipAddress)) {
-                Log.warn("User service rejected service to IP address: " + ipAddress);
-                replyError("RequestNotAuthorised",response, out);
-                return;
-            }
-        }
-
-        String username = request.getParameter("username");
-        String password = request.getParameter("password");
-        String name = request.getParameter("name");
-        String email = request.getParameter("email");
-        String type = request.getParameter("type");
-        String secret = request.getParameter("secret");
-        String groupNames = request.getParameter("groups");
-        String item_jid = request.getParameter("item_jid");
-        String sub = request.getParameter("subscription");
-        //No defaults, add, delete, update only
-        //type = type == null ? "image" : type;
-       
-       // Check that our plugin is enabled.
-        if (!plugin.isEnabled()) {
-            Log.warn("User service plugin is disabled: " + request.getQueryString());
-            replyError("UserServiceDisabled",response, out);
-            return;
-        }
-       
-        // Check this request is authorised
-        if (secret == null || !secret.equals(plugin.getSecret())){
-            Log.warn("An unauthorised user service request was received: " + request.getQueryString());
-            replyError("RequestNotAuthorised",response, out);
-            return;
-         }
-
-        // Some checking is required on the username
-        if (username == null && !"grouplist".equals(type)){
-            replyError("IllegalArgumentException",response, out);
-            return;
-        }
-
-        if ((type.equals("add_roster") || type.equals("update_roster") || type.equals("delete_roster")) &&
-        	(item_jid == null || !(sub == null || sub.equals("-1") || sub.equals("0") ||
-        	sub.equals("1") || sub.equals("2") || sub.equals("3")))) {
-            replyError("IllegalArgumentException",response, out);
-            return;
-        }
-
-        // Check the request type and process accordingly
-        try {
-            if ("grouplist".equals(type)){
-                String message = "";
-                for(String groupname : plugin.getAllGroups())
-                {
-                    message += "<groupname>"+groupname+"</groupname>";
-                }
-                replyMessage(message, response, out);
-            }
-            else
-            {
-                username = username.trim().toLowerCase();
-                username = JID.escapeNode(username);
-                username = Stringprep.nodeprep(username);
-                if ("add".equals(type)) {
-                    plugin.createUser(username, password, name, email, groupNames);
-                    replyMessage("ok",response, out);
-                    //imageProvider.sendInfo(request, response, presence);
-                }
-                else if ("delete".equals(type)) {
-                    plugin.deleteUser(username);
-                    replyMessage("ok",response,out);
-                    //xmlProvider.sendInfo(request, response, presence);
-                }
-                else if ("enable".equals(type)) {
-                    plugin.enableUser(username);
-                    replyMessage("ok",response,out);
-                }
-                else if ("disable".equals(type)) {
-                    plugin.disableUser(username);
-                    replyMessage("ok",response,out);
-                }
-                else if ("update".equals(type)) {
-                    plugin.updateUser(username, password,name,email, groupNames);
-                    replyMessage("ok",response,out);
-                    //xmlProvider.sendInfo(request, response, presence);
-                }
-                else if ("add_roster".equals(type)) {
-                    plugin.addRosterItem(username, item_jid, name, sub, groupNames);
-                    replyMessage("ok",response, out);
-                }
-                else if ("update_roster".equals(type)) {
-                    plugin.updateRosterItem(username, item_jid, name, sub, groupNames);
-                    replyMessage("ok",response, out);
-                }
-                else if ("delete_roster".equals(type)) {
-                    plugin.deleteRosterItem(username, item_jid);
-                    replyMessage("ok",response, out);
-                }
-                if ("usergrouplist".equals(type)){
-                    String message = "";
-                    for(String groupname : plugin.getUserGroups(username))
-                    {
-                        message += "<groupname>"+groupname+"</groupname>";
-                    }
-                    replyMessage(message, response, out);
-                }
-                else {
-                    Log.warn("The userService servlet received an invalid request of type: " + type);
-                    // TODO Do something
-                }
-            }
-        }
-        catch (UserAlreadyExistsException e) {
-            replyError("UserAlreadyExistsException",response, out);
-        }
-        catch (UserNotFoundException e) {
-            replyError("UserNotFoundException",response, out);
-        }
-        catch (IllegalArgumentException e) {
-            
-            replyError("IllegalArgumentException",response, out);
-        }
-        catch (SharedGroupException e) {
-        	
-        	replyError("SharedGroupException",response, out);
-        }
-        catch (Exception e) {
-            replyError(e.toString(),response, out);
-        }
-    }
-
-    private void replyMessage(String message,HttpServletResponse response, PrintWriter out){
-        response.setContentType("text/xml");        
-        out.println("<result>" + message + "</result>");
-        out.flush();
-    }
-
-    private void replyError(String error,HttpServletResponse response, PrintWriter out){
-        response.setContentType("text/xml");        
-        out.println("<error>" + error + "</error>");
-        out.flush();
-    }
-    
-    @Override
-	protected void doPost(HttpServletRequest request, HttpServletResponse response)
-            throws ServletException, IOException {
-        doGet(request, response);
-    }
-
-    @Override
-	public void destroy() {
-        super.destroy();
-        // Release the excluded URL
-        AuthCheckFilter.removeExclude("userService/userservice");
-    }
-}
--- a/src/plugins/userservice/src/java/org/jivesoftware/openfire/utils/UserUtils.java
+++ b/src/plugins/userservice/src/java/org/jivesoftware/openfire/utils/UserUtils.java
+package org.jivesoftware.openfire.utils;
+
+import java.util.ArrayList;
+import java.util.Collection;
+import java.util.List;
+import java.util.Map.Entry;
+
+import org.jivesoftware.openfire.entity.UserEntity;
+import org.jivesoftware.openfire.entity.UserProperty;
+import org.jivesoftware.openfire.user.User;
+import org.jivesoftware.openfire.user.UserAlreadyExistsException;
+
+/**
+ * The Class UserUtils.
+ */
+public class UserUtils {
+
+	/**
+	 * Instantiates a new user utils.
+	 */
+	private UserUtils() {
+		throw new AssertionError();
+	}
+
+	/**
+	 * Convert users to user entities.
+	 *
+	 * @param users
+	 *            the users
+	 * @param userSearch
+	 * @return the list
+	 */
+	public static List<UserEntity> convertUsersToUserEntities(Collection<User> users, String userSearch) {
+		List<UserEntity> result = new ArrayList<UserEntity>();
+
+		for (User user : users) {
+			if (userSearch != null) {
+				if (!user.getUsername().contains(userSearch)) {
+					continue;
+				}
+			}
+
+			result.add(convertUserToUserEntity(user));
+		}
+		return result;
+	}
+
+	/**
+	 * Convert user to user entity.
+	 *
+	 * @param user
+	 *            the user
+	 * @return the user entity
+	 */
+	public static UserEntity convertUserToUserEntity(User user) {
+		UserEntity userEntity = new UserEntity(user.getUsername(), user.getName(), user.getEmail());
+
+		List<UserProperty> userProperties = new ArrayList<UserProperty>();
+		for (Entry<String, String> property : user.getProperties().entrySet()) {
+			userProperties.add(new UserProperty(property.getKey(), property.getValue()));
+		}
+		userEntity.setProperties(userProperties);
+
+		return userEntity;
+	}
+
+	/**
+	 * Checks if is valid sub type.
+	 *
+	 * @param subType
+	 *            the sub type
+	 * @return true, if is valid sub type
+	 * @throws UserAlreadyExistsException
+	 */
+	public static void checkSubType(int subType) throws UserAlreadyExistsException {
+		if (!(subType >= -1 && subType <= 3)) {
+			throw new UserAlreadyExistsException();
+		}
+	}
+}
--- a/src/plugins/userservice/src/web/WEB-INF/web-custom.xml
+++ b/src/plugins/userservice/src/web/WEB-INF/web-custom.xml
@@ -3,14 +3,24 @@
 <web-app>
    <!-- Servlets -->
    <servlet>
-        <servlet-name>UserServiceServlet</servlet-name>
-        <servlet-class>org.jivesoftware.openfire.plugin.userService.UserServiceServlet</servlet-class>
+        <servlet-name>JerseyWrapper</servlet-name>
+        <servlet-class>org.jivesoftware.openfire.plugin.JerseyWrapper</servlet-class>
    </servlet>

    <!-- Servlet mappings -->
    <servlet-mapping>
-        <servlet-name>UserServiceServlet</servlet-name>
-        <url-pattern>/userservice</url-pattern>
+        <servlet-name>JerseyWrapper</servlet-name>
+        <url-pattern>/users/*</url-pattern>
+    </servlet-mapping>
+    
+    <servlet-mapping>
+        <servlet-name>JerseyWrapper</servlet-name>
+        <url-pattern>/properties/*</url-pattern>
+    </servlet-mapping>
+    
+    <servlet-mapping>
+        <servlet-name>JerseyWrapper</servlet-name>
+        <url-pattern>/lockouts/*</url-pattern>
    </servlet-mapping>

 </web-app>
--- a/src/plugins/userservice/src/web/user-service.jsp
+++ b/src/plugins/userservice/src/web/user-service.jsp
 <%@ page import="java.util.*,
                 org.jivesoftware.openfire.XMPPServer,
-                 org.jivesoftware.util.*,
-                 org.jivesoftware.openfire.plugin.UserServicePlugin"
+                 org.jivesoftware.util.*,org.jivesoftware.openfire.plugin.UserServicePlugin"
    errorPage="error.jsp"
 %>

@@ -18,6 +17,7 @@
    boolean success = request.getParameter("success") != null;
    String secret = ParamUtils.getParameter(request, "secret");
    boolean enabled = ParamUtils.getBooleanParameter(request, "enabled");
+    boolean httpBasicAuth = ParamUtils.getBooleanParameter(request, "authtype");
    String allowedIPs = ParamUtils.getParameter(request, "allowedIPs");

    UserServicePlugin plugin = (UserServicePlugin) XMPPServer.getInstance().getPluginManager().getPlugin("userservice");
@@ -28,6 +28,7 @@
        if (errors.size() == 0) {
            plugin.setEnabled(enabled);
        	plugin.setSecret(secret);
+        	plugin.setHttpBasicAuth(httpBasicAuth);
            plugin.setAllowedIPs(StringUtils.stringToCollection(allowedIPs));
            response.sendRedirect("user-service.jsp?success=true");
            return;
@@ -36,6 +37,7 @@

    secret = plugin.getSecret();
    enabled = plugin.isEnabled();
+    httpBasicAuth = plugin.isHttpBasicAuth();
    allowedIPs = StringUtils.collectionToString(plugin.getAllowedIPs());
 %>

@@ -48,7 +50,7 @@


 <p>
-Use the form below to enable or disable the User Service and configure the secret key.
+Use the form below to enable or disable the User Service and configure the secret key or HTTP basic auth.
 By default the User Service plugin is <strong>disabled</strong>, which means that
 HTTP requests to the service will be ignored.
 </p>
@@ -78,7 +80,8 @@ HTTP requests to the service will be ignored.
    simple integration with other applications.</p>

    <p>However, the presence of this service exposes a security risk. Therefore,
-    a secret key is used to validate legitimate requests to this service. Moreover,
+    a secret key is used to validate legitimate requests to this service. 
+    Another validation could be done over the HTTP basic authentication. Moreover,
    for extra security you can specify the list of IP addresses that are allowed to
    use this service. An empty list means that the service can be accessed from any
    location. Addresses are delimited by commas.
@@ -89,11 +92,17 @@ HTTP requests to the service will be ignored.
        <label for="rb01"><b>Enabled</b> - User service requests will be processed.</label>
        <br>
        <input type="radio" name="enabled" value="false" id="rb02"
-         <%= ((!enabled) ? "checked" : "") %>>
+        <%= ((!enabled) ? "checked" : "") %>>
        <label for="rb02"><b>Disabled</b> - User service requests will be ignored.</label>
        <br><br>

-        <label for="text_secret">Secret key:</label>
+        <input type="radio" name="authtype" value="true" id="http_basic_auth"  <%= ((httpBasicAuth) ? "checked" : "") %>>
+        <label for="http_basic_auth">HTTP basic auth - User service REST authentication with Openfire admin account.</label>
+        <br>
+        <input type="radio" name="authtype" value="false" id="secretKeyAuth"  <%= ((!httpBasicAuth) ? "checked" : "") %>>
+        <label for="secretKeyAuth">Secret key auth - User service REST authentication over specified secret key.</label>
+        <br>
+        <label style="padding-left: 25px" for="text_secret">Secret key:</label>
        <input type="text" name="secret" value="<%= secret %>" id="text_secret">
        <br><br>