1 /** 2 * This file Copyright (c) 2003-2011 Magnolia International 3 * Ltd. (http://www.magnolia-cms.com). All rights reserved. 4 * 5 * 6 * This file is dual-licensed under both the Magnolia 7 * Network Agreement and the GNU General Public License. 8 * You may elect to use one or the other of these licenses. 9 * 10 * This file is distributed in the hope that it will be 11 * useful, but AS-IS and WITHOUT ANY WARRANTY; without even the 12 * implied warranty of MERCHANTABILITY or FITNESS FOR A 13 * PARTICULAR PURPOSE, TITLE, or NONINFRINGEMENT. 14 * Redistribution, except as permitted by whichever of the GPL 15 * or MNA you select, is prohibited. 16 * 17 * 1. For the GPL license (GPL), you can redistribute and/or 18 * modify this file under the terms of the GNU General 19 * Public License, Version 3, as published by the Free Software 20 * Foundation. You should have received a copy of the GNU 21 * General Public License, Version 3 along with this program; 22 * if not, write to the Free Software Foundation, Inc., 51 23 * Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. 24 * 25 * 2. For the Magnolia Network Agreement (MNA), this file 26 * and the accompanying materials are made available under the 27 * terms of the MNA which accompanies this distribution, and 28 * is available at http://www.magnolia-cms.com/mna.html 29 * 30 * Any modifications to this file must keep this entire header 31 * intact. 32 * 33 */ 34 package info.magnolia.cms.security; 35 36 import org.apache.commons.lang.StringUtils; 37 38 import info.magnolia.context.MgnlContext; 39 40 /** 41 * Util class to test if a user is logged in. 42 * @version $Id: SecurityUtil.java 53378 2012-01-13 15:17:23Z ochytil $ 43 */ 44 public class SecurityUtil { 45 46 /** 47 * Checks if the currently acting user is anonymous. 48 */ 49 public static boolean isAnonymous() { 50 User user = MgnlContext.getUser(); 51 return (user != null && UserManager.ANONYMOUS_USER.equals(user.getName())); 52 } 53 54 public static boolean isAuthenticated() { 55 User user = MgnlContext.getUser(); 56 return (user != null && !UserManager.ANONYMOUS_USER.equals(user.getName())); 57 } 58 59 /** 60 * Used for removing password parameter from cache key. 61 * @param cacheKey.toString() 62 * @return 63 */ 64 public static String stripPasswordFromCacheLog(String log){ 65 if(StringUtils.isBlank(log)){ 66 return null; 67 } 68 String value = null; 69 value = StringUtils.substringBefore(log, "mgnlUserPSWD"); 70 String afterString = StringUtils.substringAfter(log, "mgnlUserPSWD"); 71 if(StringUtils.indexOf(afterString, " ") < StringUtils.indexOf(afterString, "}")){ 72 value = value + StringUtils.substringAfter(afterString, " "); 73 }else{ 74 value = value + "}" + StringUtils.substringAfter(afterString, "}"); 75 } 76 return value; 77 } 78 79 public static String stripPasswordFromUrl(String url){ 80 if(StringUtils.isBlank(url)){ 81 return null; 82 } 83 String value = null; 84 value = StringUtils.substringBefore(url, "mgnlUserPSWD"); 85 value = value + StringUtils.substringAfter(StringUtils.substringAfter(url, "mgnlUserPSWD"), "&"); 86 return StringUtils.removeEnd(value, "&"); 87 } 88 }