001 /* 002 * Licensed to the Apache Software Foundation (ASF) under one 003 * or more contributor license agreements. See the NOTICE file 004 * distributed with this work for additional information 005 * regarding copyright ownership. The ASF licenses this file 006 * to you under the Apache License, Version 2.0 (the 007 * "License"); you may not use this file except in compliance 008 * with the License. You may obtain a copy of the License at 009 * 010 * http://www.apache.org/licenses/LICENSE-2.0 011 * 012 * Unless required by applicable law or agreed to in writing, 013 * software distributed under the License is distributed on an 014 * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY 015 * KIND, either express or implied. See the License for the 016 * specific language governing permissions and limitations 017 * under the License. 018 * 019 */ 020 package org.apache.directory.server.core.authn; 021 022 023 import org.apache.directory.server.core.LdapPrincipal; 024 import org.apache.directory.server.core.interceptor.context.BindOperationContext; 025 import org.apache.directory.server.i18n.I18n; 026 import org.apache.directory.shared.ldap.constants.AuthenticationLevel; 027 import org.apache.directory.shared.ldap.exception.LdapNoPermissionException; 028 029 030 /** 031 * An {@link Authenticator} that handles anonymous connections 032 * (type <tt>'none'</tt>). 033 * 034 * @author <a href="mailto:dev@directory.apache.org">Apache Directory Project</a> 035 */ 036 public class AnonymousAuthenticator extends AbstractAuthenticator 037 { 038 /** 039 * Creates a new instance. 040 */ 041 public AnonymousAuthenticator() 042 { 043 super( AuthenticationLevel.NONE.toString() ); 044 } 045 046 047 /** 048 * If the context is not configured to allow anonymous connections, 049 * this method throws a {@link javax.naming.NoPermissionException}. 050 */ 051 public LdapPrincipal authenticate( BindOperationContext opContext ) throws LdapNoPermissionException 052 { 053 // We only allow Anonymous binds if the service allows them 054 if ( getDirectoryService().isAllowAnonymousAccess() ) 055 { 056 return LdapPrincipal.ANONYMOUS; 057 } 058 else 059 { 060 throw new LdapNoPermissionException( I18n.err( I18n.ERR_228 ) ); 061 } 062 } 063 }