Changed class names provisionally by removing 'Client' from MongoClientAuthority and MongoClientCredentials

Author: jyemin

examples/CramMd5CredentialsExample.java

@@ -16,9 +16,9 @@
 
 import com.mongodb.BasicDBObject;
 import com.mongodb.DB;
+import com.mongodb.MongoAuthority;
 import com.mongodb.MongoClient;
-import com.mongodb.MongoClientAuthority;
-import com.mongodb.MongoClientCredentials;
+import com.mongodb.MongoCredentials;
 import com.mongodb.MongoClientOptions;
 import com.mongodb.ServerAddress;
 import com.mongodb.WriteResult;
@@ -41,19 +41,18 @@ public static void main(String[] args) throws UnknownHostException, InterruptedE
         String pwd = args[2];
         String db = args[3];
         MongoClient mongo = new MongoClient(
-                new MongoClientAuthority(new ServerAddress(server),
-                        new MongoClientCredentials(user, pwd.toCharArray(),
-                                MongoClientCredentials.CRAM_MD5_MECHANISM, db)),
-                new MongoClientOptions.Builder().socketKeepAlive(true).socketTimeout(30000).build());
+                new MongoAuthority(new ServerAddress(server),
+                        new MongoCredentials(user, pwd.toCharArray(),
+                                MongoCredentials.CRAM_MD5_MECHANISM, db)),
+                new MongoClientOptions.Builder().build());
         DB testDB = mongo.getDB(db);
-        System.out.println("Find     one: " + testDB.getCollection("test").findOne());
+        System.out.println("Find one: " + testDB.getCollection("test").findOne());
         System.out.println("Count: " + testDB.getCollection("test").count());
         WriteResult writeResult = testDB.getCollection("test").insert(new BasicDBObject());
         System.out.println("Write result: " + writeResult);
 
         System.out.println();
 
         System.out.println("Count: " + testDB.getCollection("test").count());
-
     }
 }

examples/DefaultSecurityCallbackHandler.java

@@ -26,11 +26,11 @@ public void handle(final Callback[] callbacks) throws IOException, UnsupportedCa
         for (Callback callback : callbacks) {
             if (callback instanceof NameCallback) {
                 NameCallback nameCallback = (NameCallback) callback;
-                nameCallback.setName("[email protected]");
+                nameCallback.setName("<your name goes here>");  // or just return
             }
             if (callback instanceof PasswordCallback) {
                 PasswordCallback passwordCallback = (PasswordCallback) callback;
-                passwordCallback.setPassword("a".toCharArray());
+                passwordCallback.setPassword("<your password goes here>".toCharArray());  // or just return
             }
         }
     }

examples/GSSAPICredentialsExample.java

@@ -16,9 +16,9 @@
 
 import com.mongodb.BasicDBObject;
 import com.mongodb.DB;
+import com.mongodb.MongoAuthority;
 import com.mongodb.MongoClient;
-import com.mongodb.MongoClientAuthority;
-import com.mongodb.MongoClientCredentials;
+import com.mongodb.MongoCredentials;
 import com.mongodb.MongoClientOptions;
 import com.mongodb.ServerAddress;
 import com.mongodb.WriteResult;
@@ -32,7 +32,7 @@
  * Usage:
  * </p>
  * <pre>
- *     java CramMd5CredentialsExample server userName databaseName
+ *     java GSSAPICredentialsExample server userName databaseName
  * </pre>
  */
 public class GSSAPICredentialsExample {
@@ -44,22 +44,38 @@ public class GSSAPICredentialsExample {
     // 3. Set system properties, e.g.:
     //    -Djava.security.krb5.realm=10GEN.ME -Djavax.security.auth.useSubjectCredsOnly=false -Djava.security.krb5.kdc=kdc.10gen.me
     // auth.login.defaultCallbackHandler=name of class that implements javax.security.auth.callback.CallbackHandler
-    // You may also need to define realms and domain_realm entries in your krb5.conf file (in /etc by default)
     public static void main(String[] args) throws UnknownHostException, InterruptedException {
-        // Set this property to avoid the default behavior where the program prompts on the command line
-        // for username/password
+        // Set this property to avoid the default behavior where the program prompts on the command line for username/password
         Security.setProperty("auth.login.defaultCallbackHandler", "DefaultSecurityCallbackHandler");
 
         String server = args[0];
         String user = args[1];
-        String dbName = args[2];
+        String databaseName = args[2];
+
+        System.out.println("javax.security.auth.useSubjectCredsOnly: " + System.getProperty("javax.security.auth.useSubjectCredsOnly"));
+        System.out.println("java.security.krb5.realm: " + System.getProperty("java.security.krb5.realm"));
+        System.out.println("java.security.krb5.kdc: " + System.getProperty("java.security.krb5.kdc"));
+        System.out.println("auth.login.defaultCallbackHandler: " + Security.getProperty("auth.login.defaultCallbackHandler"));
+        System.out.println("login.configuration.provider: " + Security.getProperty("login.configuration.provider"));
+        System.out.println("java.security.auth.login.config: " + Security.getProperty("java.security.auth.login.config"));
+        System.out.println("login.config.url.1: " + Security.getProperty("login.config.url.1"));
+        System.out.println("login.config.url.2: " + Security.getProperty("login.config.url.2"));
+        System.out.println("login.config.url.3: " + Security.getProperty("login.config.url.3"));
+
+        System.out.println("server: " + server);
+        System.out.println("user: " + user);
+        System.out.println("database: " + databaseName);
+
+        System.out.println();
+
+        Thread.sleep(5000);
 
         MongoClient mongo = new MongoClient(
-                new MongoClientAuthority(new ServerAddress(server),
-                        new MongoClientCredentials(user, MongoClientCredentials.GSSAPI_MECHANISM)),
+                new MongoAuthority(new ServerAddress(server),
+                        new MongoCredentials(user, MongoCredentials.GSSAPI_MECHANISM)),
                 new MongoClientOptions.Builder().socketKeepAlive(true).socketTimeout(30000).build());
-        DB testDB = mongo.getDB(dbName);
-        System.out.println("Find     one: " + testDB.getCollection("test").findOne());
+        DB testDB = mongo.getDB(databaseName);
+        System.out.println("Find one: " + testDB.getCollection("test").findOne());
         System.out.println("Count: " + testDB.getCollection("test").count());
         WriteResult writeResult = testDB.getCollection("test").insert(new BasicDBObject());
         System.out.println("Write result: " + writeResult);

src/main/com/mongodb/DBPort.java

@@ -41,7 +41,6 @@
 import java.io.OutputStream;
 import java.net.InetSocketAddress;
 import java.net.Socket;
-import java.util.Arrays;
 import java.util.HashMap;
 import java.util.Map;
 import java.util.concurrent.ConcurrentHashMap;
@@ -317,15 +316,15 @@ protected void close(){
     void checkAuth(DB db) throws IOException {
         if (db.getMongo().getCredentials() != null) {
             if (_saslAuthenticator == null) {
-                if (db.getMongo().getCredentials().getMechanism().equals(MongoClientCredentials.GSSAPI_MECHANISM)) {
+                if (db.getMongo().getCredentials().getMechanism().equals(MongoCredentials.GSSAPI_MECHANISM)) {
                    _saslAuthenticator = new GSSAPIAuthenticator(db.getMongo());
-                } else if (db.getMongo().getCredentials().getMechanism().equals(MongoClientCredentials.CRAM_MD5_MECHANISM)) {
+                } else if (db.getMongo().getCredentials().getMechanism().equals(MongoCredentials.CRAM_MD5_MECHANISM)) {
                     _saslAuthenticator = new CRAMMD5Authenticator(db.getMongo());
                 } else {
                     throw new MongoException("Unsupported authentication mechanism: " + db.getMongo().getCredentials().getMechanism());
                 }
+                _saslAuthenticator.authenticate();
             }
-            _saslAuthenticator.acquirePrivilegeForDatabase(db);
         }
         else {
             DB.AuthenticationCredentials credentials = db.getAuthenticationCredentials();
@@ -392,9 +391,9 @@ class CRAMMD5Authenticator extends SaslAuthenticator {
         public static final String CRAM_MD5_MECHANISM = "CRAM-MD5";
 
         CRAMMD5Authenticator(final Mongo mongo) {
-           super(mongo);
+            super(mongo);
 
-            if (!mongo.getCredentials().getMechanism().equals(MongoClientCredentials.CRAM_MD5_MECHANISM)) {
+            if (!mongo.getCredentials().getMechanism().equals(MongoCredentials.CRAM_MD5_MECHANISM)) {
                 throw new MongoException("Incorrect mechanism: " + mongo.getCredentials().getMechanism());
             }
         }
@@ -416,7 +415,12 @@ protected Object getMechanism() {
 
         @Override
         protected String getUserNameForMechanism() {
-            return mongo.getCredentials().getDatabase() + "$" + mongo.getCredentials().getUserName();
+            return mongo.getCredentials().getUserName();
+        }
+
+        @Override
+        protected DB getDatabase() {
+            return mongo.getDB(mongo.getCredentials().getDatabase());
         }
 
         class CredentialsHandlingCallbackHandler implements CallbackHandler {
@@ -436,7 +440,8 @@ public void handle(final Callback[] callbacks) throws IOException, UnsupportedCa
                 }
             }
         }
-        // TODO: copoied from DB.AuthenticationCredentials
+
+        // TODO: copied from DB.AuthenticationCredentials
         byte[] createHash( String userName , char[] password ){
             ByteArrayOutputStream bout = new ByteArrayOutputStream( userName.length() + 20 + password.length );
             try {
@@ -453,7 +458,6 @@ byte[] createHash( String userName , char[] password ){
             }
             return Util.hexMD5(bout.toByteArray()).getBytes();
         }
-
     }
 
     class GSSAPIAuthenticator extends SaslAuthenticator {
@@ -463,7 +467,7 @@ class GSSAPIAuthenticator extends SaslAuthenticator {
         GSSAPIAuthenticator(final Mongo mongo) {
             super(mongo);
 
-            if (!mongo.getCredentials().getMechanism().equals(MongoClientCredentials.GSSAPI_MECHANISM)) {
+            if (!mongo.getCredentials().getMechanism().equals(MongoCredentials.GSSAPI_MECHANISM)) {
                 throw new MongoException("Incorrect mechanism: " + mongo.getCredentials().getMechanism());
             }
         }
@@ -493,6 +497,11 @@ protected String getUserNameForMechanism() {
             return mongo.getCredentials().getUserName();
         }
 
+        @Override
+        protected DB getDatabase() {
+            return mongo.getDB("$external");
+        }
+
         private GSSCredential getGSSCredential(String userName) throws GSSException {
             Oid krb5Mechanism = new Oid(GSSAPI_OID);
             GSSManager manager = GSSManager.getInstance();
@@ -566,32 +575,21 @@ void authenticate()  {
 
         protected abstract String getUserNameForMechanism();
 
+        protected abstract DB getDatabase();
+
         private CommandResult sendSaslStart(final byte[] outToken) throws IOException {
             DBObject cmd = new BasicDBObject("saslStart", 1).append("mechanism", getMechanism()).append("payload",
                     outToken != null ? outToken : new byte[0]);
-            return runCommand(mongo.getDB("admin"), cmd);
+            return runCommand(getDatabase(), cmd);
         }
 
         private CommandResult sendSaslContinue(final int conversationId, final byte[] outToken) throws IOException {
-            DB adminDB = mongo.getDB("admin");
+            DB adminDB = getDatabase();
             DBObject cmd = new BasicDBObject("saslContinue", 1).append("conversationId", conversationId).
                     append("payload", outToken);
             return runCommand(adminDB, cmd);
         }
 
-        public void acquirePrivilegeForDatabase(final DB db) throws IOException {
-            authenticate();
-
-            if (authorizeDatabases.get(db) == null) {
-                BasicDBObject acquirePrivilegeCmd = new BasicDBObject("acquirePrivilege", 1).
-                        append("principal", getUserNameForMechanism()).
-                        append("resource", db.getName()).
-                        append("actions", Arrays.asList("oldWrite"));
-                CommandResult res = runCommand(db.getSisterDB("admin"), acquirePrivilegeCmd);
-                res.throwOnError();
-                authorizeDatabases.put(db, true);
-            }
-        }
     }
 
     private static Logger _rootLogger = Logger.getLogger( "com.mongodb.port" );

src/main/com/mongodb/Mongo.java

@@ -361,7 +361,7 @@ public Mongo( MongoURI uri )
      * @param authority the authority
      * @param options the options
      */
-    public Mongo(MongoClientAuthority authority, MongoOptions options) {
+    public Mongo(MongoAuthority authority, MongoOptions options) {
         _options = options;
         _applyMongoOptions();
 
@@ -377,7 +377,7 @@ public Mongo(MongoClientAuthority authority, MongoOptions options) {
         }
 
         if (authority.getCredentials() != null) {
-            if (authority.getCredentials().getMechanism().equals(MongoClientCredentials.MONGODB_MECHANISM)) {
+            if (authority.getCredentials().getMechanism().equals(MongoCredentials.MONGODB_MECHANISM)) {
                 String databaseName;
                 if (authority.getCredentials().getDatabase() != null) {
                     databaseName = authority.getCredentials().getDatabase();
@@ -637,7 +637,7 @@ public int getOptions(){
         return _netOptions.get();
     }
 
-    public MongoClientCredentials getCredentials() {
+    public MongoCredentials getCredentials() {
         return _credentials;
     }
 
@@ -692,7 +692,7 @@ boolean isMongosConnection() {
     private ReadPreference _readPref = ReadPreference.primary();
     final Bytes.OptionHolder _netOptions = new Bytes.OptionHolder( null );
     final CursorCleanerThread _cleaner;
-    MongoClientCredentials _credentials;
+    MongoCredentials _credentials;
 
     org.bson.util.SimplePool<PoolOutputBuffer> _bufferPool =
         new org.bson.util.SimplePool<PoolOutputBuffer>( 1000 ){

src/main/com/mongodb/MongoClientAuthority.java renamed to src/main/com/mongodb/MongoAuthority.java

@@ -27,26 +27,26 @@
  * <p>
  * Note: This constructor is provisional and is subject to change before the final release
  */
-public class MongoClientAuthority {
+public class MongoAuthority {
     private final ServerAddress serverAddress;
     private final List<ServerAddress> serverAddresses;
-    private final MongoClientCredentials credentials;
+    private final MongoCredentials credentials;
 
-    public MongoClientAuthority(final ServerAddress serverAddress) {
+    public MongoAuthority(final ServerAddress serverAddress) {
         this(serverAddress, null);
     }
 
-    public MongoClientAuthority(final ServerAddress serverAddress, MongoClientCredentials credentials) {
+    public MongoAuthority(final ServerAddress serverAddress, MongoCredentials credentials) {
         this.serverAddress = serverAddress;
         this.credentials = credentials;
         this.serverAddresses = null;
     }
 
-    public MongoClientAuthority(final List<ServerAddress> serverAddresses) {
+    public MongoAuthority(final List<ServerAddress> serverAddresses) {
         this(serverAddresses, null);
     }
 
-    public MongoClientAuthority(final List<ServerAddress> serverAddresses, MongoClientCredentials credentials) {
+    public MongoAuthority(final List<ServerAddress> serverAddresses, MongoCredentials credentials) {
         this.serverAddresses = serverAddresses;
         this.credentials = credentials;
         this.serverAddress = null;
@@ -64,7 +64,7 @@ public List<ServerAddress> getServerAddresses() {
         return new ArrayList<ServerAddress>(serverAddresses);
     }
 
-    public MongoClientCredentials getCredentials() {
+    public MongoCredentials getCredentials() {
         return credentials;
     }
 }

src/main/com/mongodb/MongoClient.java

@@ -200,7 +200,7 @@ public MongoClient(MongoClientURI uri) throws UnknownHostException {
      * @param authority the authority
      * @param options the options
      */
-    public MongoClient(MongoClientAuthority authority, MongoClientOptions options) {
+    public MongoClient(MongoAuthority authority, MongoClientOptions options) {
         super(authority, new MongoOptions(options));
     }
 }

src/main/com/mongodb/MongoClientCredentials.java renamed to src/main/com/mongodb/MongoCredentials.java

@@ -20,9 +20,9 @@
 /**
  * Represents credentials to authenticate to a mongo server.
  * <p>
- * Note: This constructor is provisional and is subject to change before the final release
+ * Note: This class is provisional and is subject to change before the final release
  */
-public class MongoClientCredentials {
+public class MongoCredentials {
     public static final String MONGODB_MECHANISM = "mongodb";
     public static final String GSSAPI_MECHANISM = "GSSAPI";
     public static final String CRAM_MD5_MECHANISM = "CRAM-MD5";
@@ -32,15 +32,15 @@ public class MongoClientCredentials {
     private final char[] password;
     private final String database;
 
-    public MongoClientCredentials(final String userName, final char[] password, String mechanism) {
+    public MongoCredentials(final String userName, final char[] password, String mechanism) {
         this(userName, password, mechanism, null);
     }
 
-    public MongoClientCredentials(final String userName, final String mechanism) {
+    public MongoCredentials(final String userName, final String mechanism) {
         this(userName, null, mechanism);
     }
 
-    public MongoClientCredentials(final String userName, final char[] password, String mechanism, String database) {
+    public MongoCredentials(final String userName, final char[] password, String mechanism, String database) {
         this.userName = userName;
         this.password = password;
         this.database = database;