Commit 5696a8cb authored by Robert Marcano's avatar Robert Marcano

New JDBC based AdminProvider

JDBCAdminProvider can read the list of admin users from a database
parent 0b0dc85e
...@@ -150,6 +150,28 @@ ...@@ -150,6 +150,28 @@
</jive> </jive>
</pre> </pre>
<p>Another option is to use an AdminProvider. AdminProvider instances are responsible for listing
the administrators users dynamically. The default use the <tt>authorizedUsernames</tt> setting
previously explained. JDBCAdminProvider allows to list the administrators from a SQL query.
For example:</p>
<pre>
&lt;jive&gt;
...
&lt;provider&gt;
...
&lt;admin&gt;
&lt;className&gt;org.jivesoftware.openfire.admin.JDBCAdminProvider&lt;/className&gt;
&lt;/admin&gt;
...
&lt;/provider&gt;
&lt;jdbcAdminProvider&gt;
&lt;getAdminsSQL&gt;SELECT userid FROM user_account WHERE administrator='Y'&lt;/getAdminsSQL&gt;
&lt;/jdbcAdminProvider&gt;
...
&lt;/jive&gt;
</pre>
<h3>User Integration</h3> <h3>User Integration</h3>
<p>Optionally, Openfire can load user data from your custom database. If you enable user integration <p>Optionally, Openfire can load user data from your custom database. If you enable user integration
......
/**
* $Revision$
* $Date$
*
* Copyright (C) 2005-2008 Jive Software. All rights reserved.
* Copyright 2008-2016 Robert Marcano
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.jivesoftware.openfire.admin;
import java.sql.Connection;
import java.sql.DriverManager;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.sql.SQLException;
import java.util.ArrayList;
import java.util.List;
import org.jivesoftware.database.DbConnectionManager;
import org.jivesoftware.util.JiveGlobals;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.xmpp.packet.JID;
/**
* The JDBC admin provider allows you to use an external database to define the administrators
* users. It is best used with the JDBCAuthProvider & JDBCGroupProvider to provide integration
* between your external system and Openfire. All data is treated as read-only so any
* set operations will result in an exception.<p/>
*
* To enable this provider, set the following in the system properties:<p/>
*
* <ul>
* <li><tt>provider.admin.className = org.jivesoftware.openfire.admin.JDBCAdminProvider</tt></li>
* </ul>
*
* Then you need to set your driver, connection string and SQL statements:
* <p/>
* <ul>
* <li><tt>jdbcProvider.driver = com.mysql.jdbc.Driver</tt></li>
* <li><tt>jdbcProvider.connectionString = jdbc:mysql://localhost/dbname?user=username&amp;password=secret</tt></li>
* <li><tt>jdbcAdminProvider.getAdminsSQL = SELECT user FROM myAdmins</tt></li>
* </ul>
*
* In order to use the configured JDBC connection provider do not use a JDBC
* connection string, set the following property
*
* <ul>
* <li><tt>jdbcAdminProvider.useConnectionProvider = true</tt></li>
* </ul>
*
*
* @author Robert Marcano
*/
public class JDBCAdminProvider implements AdminProvider {
private static final Logger Log = LoggerFactory.getLogger(JDBCAdminProvider.class);
private final String getAdminsSQL;
private final String xmppDomain;
private final boolean useConnectionProvider;
private String connectionString;
/**
* Constructs a new JDBC admin provider.
*/
public JDBCAdminProvider() {
// Convert XML based provider setup to Database based
JiveGlobals.migrateProperty("jdbcProvider.driver");
JiveGlobals.migrateProperty("jdbcProvider.connectionString");
JiveGlobals.migrateProperty("jdbcAdminProvider.getAdminsSQL");
xmppDomain = JiveGlobals.getProperty("xmpp.domain");
useConnectionProvider = JiveGlobals.getBooleanProperty("jdbcAdminProvider.useConnectionProvider");
// Load database statement for reading admin list
getAdminsSQL = JiveGlobals.getProperty("jdbcAdminProvider.getAdminsSQL");
// Load the JDBC driver and connection string
if (!useConnectionProvider) {
String jdbcDriver = JiveGlobals.getProperty("jdbcProvider.driver");
try {
Class.forName(jdbcDriver).newInstance();
}
catch (Exception e) {
Log.error("Unable to load JDBC driver: " + jdbcDriver, e);
return;
}
connectionString = JiveGlobals.getProperty("jdbcProvider.connectionString");
}
}
@Override
public List<JID> getAdmins() {
Connection con = null;
PreparedStatement pstmt = null;
ResultSet rs = null;
List<JID> jids = new ArrayList<>();
try {
con = getConnection();
pstmt = con.prepareStatement(getAdminsSQL);
rs = pstmt.executeQuery();
while (rs.next()) {
String name = rs.getString(1);
jids.add(new JID(name + "@" + xmppDomain));
}
return jids;
}
catch (SQLException e) {
throw new RuntimeException(e);
}
finally {
DbConnectionManager.closeConnection(rs, pstmt, con);
}
}
@Override
public void setAdmins(List<JID> admins) {
// Reject the operation since the provider is read-only
throw new UnsupportedOperationException();
}
@Override
public boolean isReadOnly() {
return true;
}
private Connection getConnection() throws SQLException {
if (useConnectionProvider) {
return DbConnectionManager.getConnection();
}
return DriverManager.getConnection(connectionString);
}
}
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment