An interface for generating and storing login token for users.
5 | *
6 | *
Implementations may (and should) expire tokens.
7 | *
8 | * @author Arik Cohen
9 | * @since Jan 28, 2018
10 | */
11 | public interface TokenStore {
12 |
13 | /**
14 | * Generate a token for the given user id.
15 | *
16 | * @param aUserId The ID for of the user to generate the token for.
17 | * @return The generated token
18 | * @throws IllegalArgumentException if the user id is null.
19 | */
20 | String create (String aUserId);
21 |
22 | /**
23 | * Reurns the temporary token associated with the
24 | * given user id if one exists. Otherwise, returns
25 | * null.
26 | *
27 | * @param aUserId The id of the user to return the temporary token for.
28 | * @return The temporary login token associated with the user or null/
29 | */
30 | String get (String aUserId);
31 |
32 | }
33 |
--------------------------------------------------------------------------------
/src/main/java/com/creactiviti/spring/security/passwordless/core/EmailSender.java:
--------------------------------------------------------------------------------
1 | package com.creactiviti.spring.security.passwordless.core;
2 |
3 | import org.springframework.beans.factory.annotation.Value;
4 | import org.springframework.mail.SimpleMailMessage;
5 | import org.springframework.mail.javamail.JavaMailSender;
6 |
7 | /**
8 | * @author Arik Cohen
9 | * @since Jan 30, 2018
10 | */
11 | public class EmailSender implements Sender {
12 |
13 | @Value("${passwordless.email.from}")
14 | private String from;
15 |
16 | private final JavaMailSender mailSender;
17 |
18 | public EmailSender(JavaMailSender aMailSender) {
19 | mailSender = aMailSender;
20 | }
21 |
22 | @Override
23 | public void send (String aUserId, String aToken) {
24 | SimpleMailMessage mailMessage = new SimpleMailMessage();
25 |
26 | mailMessage.setFrom(from);
27 | mailMessage.setTo(aUserId);
28 | mailMessage.setSubject("Your signin link");
29 | mailMessage.setText(String.format("Hello!\nAccess your account here: http://localhost:8080/signin/%s?uid=%s",aToken,aUserId));
30 |
31 | mailSender.send(mailMessage);
32 | }
33 |
34 | }
35 |
--------------------------------------------------------------------------------
/src/main/java/com/creactiviti/spring/security/passwordless/core/InMemoryTokenStore.java:
--------------------------------------------------------------------------------
1 | package com.creactiviti.spring.security.passwordless.core;
2 |
3 | import java.security.SecureRandom;
4 | import java.util.Map;
5 |
6 | import org.springframework.security.crypto.codec.Hex;
7 | import org.springframework.util.Assert;
8 |
9 | /**
10 | * @author Arik Cohen
11 | * @since Jan 28, 2018
12 | */
13 | public class InMemoryTokenStore implements TokenStore {
14 |
15 | private static final long FIFTEEN_MINS = 15 * 60 * 1000;
16 |
17 | private final Map store = new SelfExpiringHashMap<>(FIFTEEN_MINS);
18 |
19 | private final SecureRandom random = new SecureRandom();
20 |
21 | private final int TOKEN_BYTE_SIZE = 16;
22 |
23 | @Override
24 | public String create (String aUserId) {
25 | Assert.notNull(aUserId,"user id can't be null");
26 | byte bytes[] = new byte[TOKEN_BYTE_SIZE];
27 | random.nextBytes(bytes);
28 | String token = String.valueOf(Hex.encode(bytes));
29 | store.put(aUserId, token);
30 | return token;
31 | }
32 |
33 | @Override
34 | public String get(String aUserId) {
35 | Assert.notNull(aUserId,"user id can't be null");
36 | return store.remove(aUserId);
37 | }
38 |
39 | }
40 |
--------------------------------------------------------------------------------
/src/main/resources/templates/signin.html:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 | Signin Template for Bootstrap
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
21 |
28 |
29 |
30 |
--------------------------------------------------------------------------------
/src/main/java/com/creactiviti/spring/security/passwordless/PasswordlessApplication.java:
--------------------------------------------------------------------------------
1 | package com.creactiviti.spring.security.passwordless;
2 |
3 | import org.springframework.boot.SpringApplication;
4 | import org.springframework.boot.autoconfigure.SpringBootApplication;
5 | import org.springframework.context.annotation.Bean;
6 | import org.springframework.mail.javamail.JavaMailSender;
7 |
8 | import com.creactiviti.spring.security.passwordless.core.Authenticator;
9 | import com.creactiviti.spring.security.passwordless.core.EmailSender;
10 | import com.creactiviti.spring.security.passwordless.core.InMemoryTokenStore;
11 | import com.creactiviti.spring.security.passwordless.core.Sender;
12 | import com.creactiviti.spring.security.passwordless.core.SpringSecurityAuthenicator;
13 | import com.creactiviti.spring.security.passwordless.core.TokenStore;
14 |
15 | @SpringBootApplication
16 | public class PasswordlessApplication {
17 |
18 | public static void main(String[] args) {
19 | SpringApplication.run(PasswordlessApplication.class, args);
20 | }
21 |
22 | @Bean
23 | TokenStore tokenStore () {
24 | return new InMemoryTokenStore();
25 | }
26 |
27 | @Bean
28 | Sender sender (JavaMailSender aJavaMailSender) {
29 | return new EmailSender(aJavaMailSender);
30 | }
31 |
32 | @Bean
33 | Authenticator authenticator () {
34 | return new SpringSecurityAuthenicator(tokenStore());
35 | }
36 |
37 | }
38 |
--------------------------------------------------------------------------------
/src/main/java/com/creactiviti/spring/security/passwordless/core/SpringSecurityAuthenicator.java:
--------------------------------------------------------------------------------
1 | package com.creactiviti.spring.security.passwordless.core;
2 |
3 | import java.security.Principal;
4 |
5 | import org.springframework.security.authentication.BadCredentialsException;
6 | import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
7 | import org.springframework.security.core.Authentication;
8 | import org.springframework.security.core.authority.AuthorityUtils;
9 | import org.springframework.security.core.context.SecurityContextHolder;
10 |
11 | /**
12 | * @author Arik Cohen
13 | * @since Jan 30, 2018
14 | */
15 | public class SpringSecurityAuthenicator implements Authenticator {
16 |
17 | private final TokenStore tokenStore;
18 |
19 | public SpringSecurityAuthenicator(TokenStore aTokenStore) {
20 | tokenStore = aTokenStore;
21 | }
22 |
23 | @Override
24 | public Principal authenticate (String aUserId, String aToken) {
25 | String token = tokenStore.get(aUserId);
26 | if(aToken.equals(token)) {
27 | Authentication authentication = new UsernamePasswordAuthenticationToken(aUserId, null,AuthorityUtils.createAuthorityList("ROLE_USER"));
28 | SecurityContextHolder.getContext().setAuthentication(authentication);
29 | return authentication;
30 | }
31 | throw new BadCredentialsException("Invalud auth token for user: " + aUserId);
32 | }
33 |
34 | }
35 |
--------------------------------------------------------------------------------
/src/main/java/com/creactiviti/spring/security/passwordless/web/SigninController.java:
--------------------------------------------------------------------------------
1 | package com.creactiviti.spring.security.passwordless.web;
2 |
3 | import org.springframework.security.authentication.BadCredentialsException;
4 | import org.springframework.stereotype.Controller;
5 | import org.springframework.web.bind.annotation.GetMapping;
6 | import org.springframework.web.bind.annotation.PathVariable;
7 | import org.springframework.web.bind.annotation.PostMapping;
8 | import org.springframework.web.bind.annotation.RequestParam;
9 |
10 | import com.creactiviti.spring.security.passwordless.core.Authenticator;
11 | import com.creactiviti.spring.security.passwordless.core.Sender;
12 | import com.creactiviti.spring.security.passwordless.core.TokenStore;
13 |
14 | @Controller
15 | public class SigninController {
16 |
17 | private final TokenStore tokenStore;
18 |
19 | private final Sender sender;
20 |
21 | private final Authenticator authenticator;
22 |
23 | public SigninController (TokenStore aTokenStore, Sender aSender, Authenticator aAuthenticator){
24 | tokenStore = aTokenStore;
25 | sender = aSender;
26 | authenticator = aAuthenticator;
27 | }
28 |
29 | @GetMapping("/signin")
30 | public String signin () {
31 | return "signin";
32 | }
33 |
34 | @PostMapping("/signin")
35 | public String signin (@RequestParam("email") String aEmail) {
36 |
37 | // verify that the user is in the database.
38 | // ...
39 |
40 | // send sign-in email
41 | String token = tokenStore.create(aEmail);
42 | sender.send(aEmail, token);
43 |
44 | return "login_link_sent";
45 | }
46 |
47 | @GetMapping("/signin/{token}")
48 | public String signin (@RequestParam("uid") String aUid, @PathVariable("token") String aToken) {
49 | try {
50 | authenticator.authenticate(aUid, aToken);
51 | return "redirect:/";
52 | }
53 | catch (BadCredentialsException aBadCredentialsException) {
54 | return "invalid_login_link";
55 | }
56 | }
57 |
58 | }
59 |
--------------------------------------------------------------------------------
/pom.xml:
--------------------------------------------------------------------------------
1 |
2 |
4 | 4.0.0
5 |
6 | com.example
7 | passwordless
8 | 0.0.1-SNAPSHOT
9 | jar
10 |
11 | passwordless
12 | Demo project for Spring Boot
13 |
14 |
15 | org.springframework.boot
16 | spring-boot-starter-parent
17 | 1.5.9.RELEASE
18 |
19 |
20 |
21 |
22 | UTF-8
23 | UTF-8
24 | 1.8
25 |
26 |
27 |
28 |
29 | org.springframework.boot
30 | spring-boot-starter-mail
31 |
32 |
33 | org.springframework.boot
34 | spring-boot-starter-freemarker
35 |
36 |
37 | org.springframework.boot
38 | spring-boot-starter-security
39 |
40 |
41 | org.springframework.boot
42 | spring-boot-starter-web
43 |
44 |
45 |
46 | org.springframework.boot
47 | spring-boot-starter-test
48 | test
49 |
50 |
51 | org.springframework.security
52 | spring-security-test
53 | test
54 |
55 |
56 | com.google.guava
57 | guava
58 | 16.0.1
59 |
60 |
61 |
62 |
63 |
64 |
65 | org.springframework.boot
66 | spring-boot-maven-plugin
67 |
68 |
69 |
70 |
71 |
72 |
73 |
--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
1 | # Introduction
2 |
3 | We all have a love/hate relationship with passwords. They protect our most valuable assets but they are so god damn hard to create and remember.
4 |
5 | And just to make things even harder for us humans, more and more companies are now enforcing two factor authentication (you know, the little phone pincode thing) to make it even more complicated to login to our accounts.
6 |
7 | Despite advances in biometric authentication (fingerprint, face recognition etc.), passwords still remain the most ubiqutous form of authentication.
8 |
9 | So what can we do to help our fellow users to access our application in an easier manner but without compromising security?
10 |
11 | This is where passwordless login comes in.
12 |
13 | How does it work?
14 |
15 | If you ever went to a website, realized you forgot your password and then used their "Forgot Password" then you know what passwordless login is.
16 |
17 | After you entered your email address on the Reset Password page you were sent a "magic" link with a special code (a.k.a "token") embedded in it which provided you with the ability to reset your password.
18 |
19 | That website piggy-backed on your already-password-protected email address to create a secure, one-time-password "magic" link to your account.
20 |
21 | Well, if we can do all that in a presumably safe way when the user loses his password why can't we do it whenever a user wants to login? Sure we can.
22 |
23 | Oh, and just in case you're wondering some big name (Slack, Medium.com, Twitter) companies are already using this method of authentication.
24 |
25 | Alright, let's get down to business then.
26 |
27 | # The nitty gritty
28 |
29 | 1. Create a [sign-up/sign-in page](https://github.com/creactiviti/spring-security-passwordless/blob/master/src/main/resources/templates/signin.html). It basically needs only one field: email.
30 |
31 | ```
32 |
33 | ```
34 |
35 | 2. Create an [endpoint](https://github.com/creactiviti/spring-security-passwordless/blob/master/src/main/java/com/creactiviti/spring/security/passwordless/web/SigninController.java#L35) to handle the form submission:
36 |
37 | ```
38 | private final TokenStore tokenStore;
39 | private final Sender sender;
40 |
41 | @PostMapping("/signin")
42 | public String signin (@RequestParam("email") String aEmail) {
43 |
44 | // verify that the user is in the database.
45 | // ...
46 |
47 | // create a one-time login token
48 | String token = tokenStore.create(aEmail);
49 |
50 | // send the token to the user as a "magic" link
51 | sender.send(aEmail, token);
52 |
53 | return "login_link_sent";
54 | }
55 | ```
56 |
57 | 3. Create an [endpoint](https://github.com/creactiviti/spring-security-passwordless/blob/master/src/main/java/com/creactiviti/spring/security/passwordless/web/SigninController.java#L48) to authenticate the user based on the "magic" link:
58 |
59 | ```
60 | private final Authenticator authenticator;
61 |
62 | @GetMapping("/signin/{token}")
63 | public String signin (@RequestParam("uid") String aUid, @PathVariable("token") String aToken) {
64 | try {
65 | authenticator.authenticate(aUid, aToken);
66 | return "redirect:/";
67 | }
68 | catch (BadCredentialsException aBadCredentialsException) {
69 | return "invalid_login_link";
70 | }
71 | }
72 | ```
73 |
74 | And that's about it.
75 |
76 | # Securing the "magic" link.
77 |
78 | There are few precautions you should take to keep the "magic" link as secure as possible:
79 |
80 | 1. When sending the link to the user communicate to your email server over SSL.
81 |
82 | 2. Tokens should only be usable once.
83 |
84 | 3. Tokens should not be easily guessable. Use a good, cryptographically strong random number generator. e.g:
85 |
86 | ```
87 | SecureRandom random = new SecureRandom();
88 | byte bytes[] = new byte[TOKEN_BYTE_SIZE];
89 | random.nextBytes(bytes);
90 | String token = String.valueOf(Hex.encode(bytes));
91 | ```
92 |
93 | 4. Tokens should expire after a reasonable amount of time (say 15 minutes). In this example I use an in-memory `TokenStore` implementation backed by a `SelfExpringHashMap` which as its name suggests expires entries after a given amount of time. In a real-world scenario you will most likely use a database to store your generated tokens so your website can run on more than one machine and so these tokens survive a crash. But the principle is the same. You can have a `created_at` field which stamps the time the token was created so you can determine if it expired or not.
94 |
95 |
96 | # Running the demo
97 |
98 | 1. Clone the repo:
99 |
100 | ```
101 | git clone https://github.com/creactiviti/spring-security-passwordless.git
102 | ```
103 |
104 | 2. Build
105 |
106 | ```
107 | mvn clean spring-boot:run -Dspring.mail.host= -Dspring.mail.username= -Dspring.mail.password= -Dpasswordless.email.from=
108 | ```
109 |
110 | 3. Sign-in
111 |
112 | Go to [http://localhost:8080/signin](http://localhost:8080/signin)
113 |
114 |
115 | # License
116 |
117 | Apache License version 2.0.
118 |
119 |
--------------------------------------------------------------------------------
/mvnw.cmd:
--------------------------------------------------------------------------------
1 | @REM ----------------------------------------------------------------------------
2 | @REM Licensed to the Apache Software Foundation (ASF) under one
3 | @REM or more contributor license agreements. See the NOTICE file
4 | @REM distributed with this work for additional information
5 | @REM regarding copyright ownership. The ASF licenses this file
6 | @REM to you under the Apache License, Version 2.0 (the
7 | @REM "License"); you may not use this file except in compliance
8 | @REM with the License. You may obtain a copy of the License at
9 | @REM
10 | @REM http://www.apache.org/licenses/LICENSE-2.0
11 | @REM
12 | @REM Unless required by applicable law or agreed to in writing,
13 | @REM software distributed under the License is distributed on an
14 | @REM "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
15 | @REM KIND, either express or implied. See the License for the
16 | @REM specific language governing permissions and limitations
17 | @REM under the License.
18 | @REM ----------------------------------------------------------------------------
19 |
20 | @REM ----------------------------------------------------------------------------
21 | @REM Maven2 Start Up Batch script
22 | @REM
23 | @REM Required ENV vars:
24 | @REM JAVA_HOME - location of a JDK home dir
25 | @REM
26 | @REM Optional ENV vars
27 | @REM M2_HOME - location of maven2's installed home dir
28 | @REM MAVEN_BATCH_ECHO - set to 'on' to enable the echoing of the batch commands
29 | @REM MAVEN_BATCH_PAUSE - set to 'on' to wait for a key stroke before ending
30 | @REM MAVEN_OPTS - parameters passed to the Java VM when running Maven
31 | @REM e.g. to debug Maven itself, use
32 | @REM set MAVEN_OPTS=-Xdebug -Xrunjdwp:transport=dt_socket,server=y,suspend=y,address=8000
33 | @REM MAVEN_SKIP_RC - flag to disable loading of mavenrc files
34 | @REM ----------------------------------------------------------------------------
35 |
36 | @REM Begin all REM lines with '@' in case MAVEN_BATCH_ECHO is 'on'
37 | @echo off
38 | @REM enable echoing my setting MAVEN_BATCH_ECHO to 'on'
39 | @if "%MAVEN_BATCH_ECHO%" == "on" echo %MAVEN_BATCH_ECHO%
40 |
41 | @REM set %HOME% to equivalent of $HOME
42 | if "%HOME%" == "" (set "HOME=%HOMEDRIVE%%HOMEPATH%")
43 |
44 | @REM Execute a user defined script before this one
45 | if not "%MAVEN_SKIP_RC%" == "" goto skipRcPre
46 | @REM check for pre script, once with legacy .bat ending and once with .cmd ending
47 | if exist "%HOME%\mavenrc_pre.bat" call "%HOME%\mavenrc_pre.bat"
48 | if exist "%HOME%\mavenrc_pre.cmd" call "%HOME%\mavenrc_pre.cmd"
49 | :skipRcPre
50 |
51 | @setlocal
52 |
53 | set ERROR_CODE=0
54 |
55 | @REM To isolate internal variables from possible post scripts, we use another setlocal
56 | @setlocal
57 |
58 | @REM ==== START VALIDATION ====
59 | if not "%JAVA_HOME%" == "" goto OkJHome
60 |
61 | echo.
62 | echo Error: JAVA_HOME not found in your environment. >&2
63 | echo Please set the JAVA_HOME variable in your environment to match the >&2
64 | echo location of your Java installation. >&2
65 | echo.
66 | goto error
67 |
68 | :OkJHome
69 | if exist "%JAVA_HOME%\bin\java.exe" goto init
70 |
71 | echo.
72 | echo Error: JAVA_HOME is set to an invalid directory. >&2
73 | echo JAVA_HOME = "%JAVA_HOME%" >&2
74 | echo Please set the JAVA_HOME variable in your environment to match the >&2
75 | echo location of your Java installation. >&2
76 | echo.
77 | goto error
78 |
79 | @REM ==== END VALIDATION ====
80 |
81 | :init
82 |
83 | @REM Find the project base dir, i.e. the directory that contains the folder ".mvn".
84 | @REM Fallback to current working directory if not found.
85 |
86 | set MAVEN_PROJECTBASEDIR=%MAVEN_BASEDIR%
87 | IF NOT "%MAVEN_PROJECTBASEDIR%"=="" goto endDetectBaseDir
88 |
89 | set EXEC_DIR=%CD%
90 | set WDIR=%EXEC_DIR%
91 | :findBaseDir
92 | IF EXIST "%WDIR%"\.mvn goto baseDirFound
93 | cd ..
94 | IF "%WDIR%"=="%CD%" goto baseDirNotFound
95 | set WDIR=%CD%
96 | goto findBaseDir
97 |
98 | :baseDirFound
99 | set MAVEN_PROJECTBASEDIR=%WDIR%
100 | cd "%EXEC_DIR%"
101 | goto endDetectBaseDir
102 |
103 | :baseDirNotFound
104 | set MAVEN_PROJECTBASEDIR=%EXEC_DIR%
105 | cd "%EXEC_DIR%"
106 |
107 | :endDetectBaseDir
108 |
109 | IF NOT EXIST "%MAVEN_PROJECTBASEDIR%\.mvn\jvm.config" goto endReadAdditionalConfig
110 |
111 | @setlocal EnableExtensions EnableDelayedExpansion
112 | for /F "usebackq delims=" %%a in ("%MAVEN_PROJECTBASEDIR%\.mvn\jvm.config") do set JVM_CONFIG_MAVEN_PROPS=!JVM_CONFIG_MAVEN_PROPS! %%a
113 | @endlocal & set JVM_CONFIG_MAVEN_PROPS=%JVM_CONFIG_MAVEN_PROPS%
114 |
115 | :endReadAdditionalConfig
116 |
117 | SET MAVEN_JAVA_EXE="%JAVA_HOME%\bin\java.exe"
118 |
119 | set WRAPPER_JAR="%MAVEN_PROJECTBASEDIR%\.mvn\wrapper\maven-wrapper.jar"
120 | set WRAPPER_LAUNCHER=org.apache.maven.wrapper.MavenWrapperMain
121 |
122 | %MAVEN_JAVA_EXE% %JVM_CONFIG_MAVEN_PROPS% %MAVEN_OPTS% %MAVEN_DEBUG_OPTS% -classpath %WRAPPER_JAR% "-Dmaven.multiModuleProjectDirectory=%MAVEN_PROJECTBASEDIR%" %WRAPPER_LAUNCHER% %MAVEN_CONFIG% %*
123 | if ERRORLEVEL 1 goto error
124 | goto end
125 |
126 | :error
127 | set ERROR_CODE=1
128 |
129 | :end
130 | @endlocal & set ERROR_CODE=%ERROR_CODE%
131 |
132 | if not "%MAVEN_SKIP_RC%" == "" goto skipRcPost
133 | @REM check for post script, once with legacy .bat ending and once with .cmd ending
134 | if exist "%HOME%\mavenrc_post.bat" call "%HOME%\mavenrc_post.bat"
135 | if exist "%HOME%\mavenrc_post.cmd" call "%HOME%\mavenrc_post.cmd"
136 | :skipRcPost
137 |
138 | @REM pause the script if MAVEN_BATCH_PAUSE is set to 'on'
139 | if "%MAVEN_BATCH_PAUSE%" == "on" pause
140 |
141 | if "%MAVEN_TERMINATE_CMD%" == "on" exit %ERROR_CODE%
142 |
143 | exit /B %ERROR_CODE%
144 |
--------------------------------------------------------------------------------
/mvnw:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | # ----------------------------------------------------------------------------
3 | # Licensed to the Apache Software Foundation (ASF) under one
4 | # or more contributor license agreements. See the NOTICE file
5 | # distributed with this work for additional information
6 | # regarding copyright ownership. The ASF licenses this file
7 | # to you under the Apache License, Version 2.0 (the
8 | # "License"); you may not use this file except in compliance
9 | # with the License. You may obtain a copy of the License at
10 | #
11 | # http://www.apache.org/licenses/LICENSE-2.0
12 | #
13 | # Unless required by applicable law or agreed to in writing,
14 | # software distributed under the License is distributed on an
15 | # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
16 | # KIND, either express or implied. See the License for the
17 | # specific language governing permissions and limitations
18 | # under the License.
19 | # ----------------------------------------------------------------------------
20 |
21 | # ----------------------------------------------------------------------------
22 | # Maven2 Start Up Batch script
23 | #
24 | # Required ENV vars:
25 | # ------------------
26 | # JAVA_HOME - location of a JDK home dir
27 | #
28 | # Optional ENV vars
29 | # -----------------
30 | # M2_HOME - location of maven2's installed home dir
31 | # MAVEN_OPTS - parameters passed to the Java VM when running Maven
32 | # e.g. to debug Maven itself, use
33 | # set MAVEN_OPTS=-Xdebug -Xrunjdwp:transport=dt_socket,server=y,suspend=y,address=8000
34 | # MAVEN_SKIP_RC - flag to disable loading of mavenrc files
35 | # ----------------------------------------------------------------------------
36 |
37 | if [ -z "$MAVEN_SKIP_RC" ] ; then
38 |
39 | if [ -f /etc/mavenrc ] ; then
40 | . /etc/mavenrc
41 | fi
42 |
43 | if [ -f "$HOME/.mavenrc" ] ; then
44 | . "$HOME/.mavenrc"
45 | fi
46 |
47 | fi
48 |
49 | # OS specific support. $var _must_ be set to either true or false.
50 | cygwin=false;
51 | darwin=false;
52 | mingw=false
53 | case "`uname`" in
54 | CYGWIN*) cygwin=true ;;
55 | MINGW*) mingw=true;;
56 | Darwin*) darwin=true
57 | # Use /usr/libexec/java_home if available, otherwise fall back to /Library/Java/Home
58 | # See https://developer.apple.com/library/mac/qa/qa1170/_index.html
59 | if [ -z "$JAVA_HOME" ]; then
60 | if [ -x "/usr/libexec/java_home" ]; then
61 | export JAVA_HOME="`/usr/libexec/java_home`"
62 | else
63 | export JAVA_HOME="/Library/Java/Home"
64 | fi
65 | fi
66 | ;;
67 | esac
68 |
69 | if [ -z "$JAVA_HOME" ] ; then
70 | if [ -r /etc/gentoo-release ] ; then
71 | JAVA_HOME=`java-config --jre-home`
72 | fi
73 | fi
74 |
75 | if [ -z "$M2_HOME" ] ; then
76 | ## resolve links - $0 may be a link to maven's home
77 | PRG="$0"
78 |
79 | # need this for relative symlinks
80 | while [ -h "$PRG" ] ; do
81 | ls=`ls -ld "$PRG"`
82 | link=`expr "$ls" : '.*-> \(.*\)$'`
83 | if expr "$link" : '/.*' > /dev/null; then
84 | PRG="$link"
85 | else
86 | PRG="`dirname "$PRG"`/$link"
87 | fi
88 | done
89 |
90 | saveddir=`pwd`
91 |
92 | M2_HOME=`dirname "$PRG"`/..
93 |
94 | # make it fully qualified
95 | M2_HOME=`cd "$M2_HOME" && pwd`
96 |
97 | cd "$saveddir"
98 | # echo Using m2 at $M2_HOME
99 | fi
100 |
101 | # For Cygwin, ensure paths are in UNIX format before anything is touched
102 | if $cygwin ; then
103 | [ -n "$M2_HOME" ] &&
104 | M2_HOME=`cygpath --unix "$M2_HOME"`
105 | [ -n "$JAVA_HOME" ] &&
106 | JAVA_HOME=`cygpath --unix "$JAVA_HOME"`
107 | [ -n "$CLASSPATH" ] &&
108 | CLASSPATH=`cygpath --path --unix "$CLASSPATH"`
109 | fi
110 |
111 | # For Migwn, ensure paths are in UNIX format before anything is touched
112 | if $mingw ; then
113 | [ -n "$M2_HOME" ] &&
114 | M2_HOME="`(cd "$M2_HOME"; pwd)`"
115 | [ -n "$JAVA_HOME" ] &&
116 | JAVA_HOME="`(cd "$JAVA_HOME"; pwd)`"
117 | # TODO classpath?
118 | fi
119 |
120 | if [ -z "$JAVA_HOME" ]; then
121 | javaExecutable="`which javac`"
122 | if [ -n "$javaExecutable" ] && ! [ "`expr \"$javaExecutable\" : '\([^ ]*\)'`" = "no" ]; then
123 | # readlink(1) is not available as standard on Solaris 10.
124 | readLink=`which readlink`
125 | if [ ! `expr "$readLink" : '\([^ ]*\)'` = "no" ]; then
126 | if $darwin ; then
127 | javaHome="`dirname \"$javaExecutable\"`"
128 | javaExecutable="`cd \"$javaHome\" && pwd -P`/javac"
129 | else
130 | javaExecutable="`readlink -f \"$javaExecutable\"`"
131 | fi
132 | javaHome="`dirname \"$javaExecutable\"`"
133 | javaHome=`expr "$javaHome" : '\(.*\)/bin'`
134 | JAVA_HOME="$javaHome"
135 | export JAVA_HOME
136 | fi
137 | fi
138 | fi
139 |
140 | if [ -z "$JAVACMD" ] ; then
141 | if [ -n "$JAVA_HOME" ] ; then
142 | if [ -x "$JAVA_HOME/jre/sh/java" ] ; then
143 | # IBM's JDK on AIX uses strange locations for the executables
144 | JAVACMD="$JAVA_HOME/jre/sh/java"
145 | else
146 | JAVACMD="$JAVA_HOME/bin/java"
147 | fi
148 | else
149 | JAVACMD="`which java`"
150 | fi
151 | fi
152 |
153 | if [ ! -x "$JAVACMD" ] ; then
154 | echo "Error: JAVA_HOME is not defined correctly." >&2
155 | echo " We cannot execute $JAVACMD" >&2
156 | exit 1
157 | fi
158 |
159 | if [ -z "$JAVA_HOME" ] ; then
160 | echo "Warning: JAVA_HOME environment variable is not set."
161 | fi
162 |
163 | CLASSWORLDS_LAUNCHER=org.codehaus.plexus.classworlds.launcher.Launcher
164 |
165 | # traverses directory structure from process work directory to filesystem root
166 | # first directory with .mvn subdirectory is considered project base directory
167 | find_maven_basedir() {
168 |
169 | if [ -z "$1" ]
170 | then
171 | echo "Path not specified to find_maven_basedir"
172 | return 1
173 | fi
174 |
175 | basedir="$1"
176 | wdir="$1"
177 | while [ "$wdir" != '/' ] ; do
178 | if [ -d "$wdir"/.mvn ] ; then
179 | basedir=$wdir
180 | break
181 | fi
182 | # workaround for JBEAP-8937 (on Solaris 10/Sparc)
183 | if [ -d "${wdir}" ]; then
184 | wdir=`cd "$wdir/.."; pwd`
185 | fi
186 | # end of workaround
187 | done
188 | echo "${basedir}"
189 | }
190 |
191 | # concatenates all lines of a file
192 | concat_lines() {
193 | if [ -f "$1" ]; then
194 | echo "$(tr -s '\n' ' ' < "$1")"
195 | fi
196 | }
197 |
198 | BASE_DIR=`find_maven_basedir "$(pwd)"`
199 | if [ -z "$BASE_DIR" ]; then
200 | exit 1;
201 | fi
202 |
203 | export MAVEN_PROJECTBASEDIR=${MAVEN_BASEDIR:-"$BASE_DIR"}
204 | echo $MAVEN_PROJECTBASEDIR
205 | MAVEN_OPTS="$(concat_lines "$MAVEN_PROJECTBASEDIR/.mvn/jvm.config") $MAVEN_OPTS"
206 |
207 | # For Cygwin, switch paths to Windows format before running java
208 | if $cygwin; then
209 | [ -n "$M2_HOME" ] &&
210 | M2_HOME=`cygpath --path --windows "$M2_HOME"`
211 | [ -n "$JAVA_HOME" ] &&
212 | JAVA_HOME=`cygpath --path --windows "$JAVA_HOME"`
213 | [ -n "$CLASSPATH" ] &&
214 | CLASSPATH=`cygpath --path --windows "$CLASSPATH"`
215 | [ -n "$MAVEN_PROJECTBASEDIR" ] &&
216 | MAVEN_PROJECTBASEDIR=`cygpath --path --windows "$MAVEN_PROJECTBASEDIR"`
217 | fi
218 |
219 | WRAPPER_LAUNCHER=org.apache.maven.wrapper.MavenWrapperMain
220 |
221 | exec "$JAVACMD" \
222 | $MAVEN_OPTS \
223 | -classpath "$MAVEN_PROJECTBASEDIR/.mvn/wrapper/maven-wrapper.jar" \
224 | "-Dmaven.home=${M2_HOME}" "-Dmaven.multiModuleProjectDirectory=${MAVEN_PROJECTBASEDIR}" \
225 | ${WRAPPER_LAUNCHER} $MAVEN_CONFIG "$@"
226 |
--------------------------------------------------------------------------------
/src/main/java/com/creactiviti/spring/security/passwordless/core/SelfExpiringHashMap.java:
--------------------------------------------------------------------------------
1 | package com.creactiviti.spring.security.passwordless.core;
2 |
3 | /*
4 | * Copyright (c) 2017 Pierantonio Cangianiello
5 | *
6 | * MIT License
7 | *
8 | * Permission is hereby granted, free of charge, to any person obtaining a copy
9 | * of this software and associated documentation files (the "Software"), to deal
10 | * in the Software without restriction, including without limitation the rights
11 | * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
12 | * copies of the Software, and to permit persons to whom the Software is
13 | * furnished to do so, subject to the following conditions:
14 | *
15 | * The above copyright notice and this permission notice shall be included in all
16 | * copies or substantial portions of the Software.
17 | *
18 | * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
19 | * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
20 | * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
21 | * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
22 | * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
23 | * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
24 | * SOFTWARE.
25 | */
26 |
27 | import java.util.Collection;
28 | import java.util.Map;
29 | import java.util.Set;
30 | import java.util.WeakHashMap;
31 | import java.util.concurrent.ConcurrentHashMap;
32 | import java.util.concurrent.DelayQueue;
33 | import java.util.concurrent.Delayed;
34 | import java.util.concurrent.TimeUnit;
35 |
36 | /**
37 | * A thread-safe implementation of a HashMap which entries expires after the specified life time.
38 | * The life-time can be defined on a per-key basis, or using a default one, that is passed to the
39 | * constructor.
40 | *
41 | * @author Pierantonio Cangianiello
42 | * @param the Key type
43 | * @param the Value type
44 | */
45 | public class SelfExpiringHashMap implements Map {
46 |
47 | private final Map internalMap;
48 |
49 | private final Map> expiringKeys;
50 |
51 | /**
52 | * Holds the map keys using the given life time for expiration.
53 | */
54 | private final DelayQueue delayQueue = new DelayQueue();
55 |
56 | /**
57 | * The default max life time in milliseconds.
58 | */
59 | private final long maxLifeTimeMillis;
60 |
61 | public SelfExpiringHashMap() {
62 | internalMap = new ConcurrentHashMap();
63 | expiringKeys = new WeakHashMap>();
64 | this.maxLifeTimeMillis = Long.MAX_VALUE;
65 | }
66 |
67 | public SelfExpiringHashMap(long defaultMaxLifeTimeMillis) {
68 | internalMap = new ConcurrentHashMap();
69 | expiringKeys = new WeakHashMap>();
70 | this.maxLifeTimeMillis = defaultMaxLifeTimeMillis;
71 | }
72 |
73 | public SelfExpiringHashMap(long defaultMaxLifeTimeMillis, int initialCapacity) {
74 | internalMap = new ConcurrentHashMap(initialCapacity);
75 | expiringKeys = new WeakHashMap>(initialCapacity);
76 | this.maxLifeTimeMillis = defaultMaxLifeTimeMillis;
77 | }
78 |
79 | public SelfExpiringHashMap(long defaultMaxLifeTimeMillis, int initialCapacity, float loadFactor) {
80 | internalMap = new ConcurrentHashMap(initialCapacity, loadFactor);
81 | expiringKeys = new WeakHashMap>(initialCapacity, loadFactor);
82 | this.maxLifeTimeMillis = defaultMaxLifeTimeMillis;
83 | }
84 |
85 | /**
86 | * {@inheritDoc}
87 | */
88 | @Override
89 | public int size() {
90 | cleanup();
91 | return internalMap.size();
92 | }
93 |
94 | /**
95 | * {@inheritDoc}
96 | */
97 | @Override
98 | public boolean isEmpty() {
99 | cleanup();
100 | return internalMap.isEmpty();
101 | }
102 |
103 | /**
104 | * {@inheritDoc}
105 | */
106 | @Override
107 | public boolean containsKey(Object key) {
108 | cleanup();
109 | return internalMap.containsKey((K) key);
110 | }
111 |
112 | /**
113 | * {@inheritDoc}
114 | */
115 | @Override
116 | public boolean containsValue(Object value) {
117 | cleanup();
118 | return internalMap.containsValue((V) value);
119 | }
120 |
121 | @Override
122 | public V get(Object key) {
123 | cleanup();
124 | return internalMap.get((K) key);
125 | }
126 |
127 | /**
128 | * {@inheritDoc}
129 | */
130 | @Override
131 | public V put(K key, V value) {
132 | return this.put(key, value, maxLifeTimeMillis);
133 | }
134 |
135 | private V put(K key, V value, long lifeTimeMillis) {
136 | cleanup();
137 | ExpiringKey delayedKey = new ExpiringKey(key, lifeTimeMillis);
138 | ExpiringKey oldKey = expiringKeys.put((K) key, delayedKey);
139 | if(oldKey != null) {
140 | expireKey(oldKey);
141 | expiringKeys.put((K) key, delayedKey);
142 | }
143 | delayQueue.offer(delayedKey);
144 | return internalMap.put(key, value);
145 | }
146 |
147 | /**
148 | * {@inheritDoc}
149 | */
150 | @Override
151 | public V remove(Object key) {
152 | V removedValue = internalMap.remove((K) key);
153 | expireKey(expiringKeys.remove((K) key));
154 | return removedValue;
155 | }
156 |
157 | /**
158 | * Not supported.
159 | */
160 | @Override
161 | public void putAll(Map m) {
162 | throw new UnsupportedOperationException();
163 | }
164 |
165 | private void expireKey(ExpiringKey delayedKey) {
166 | if (delayedKey != null) {
167 | delayedKey.expire();
168 | cleanup();
169 | }
170 | }
171 |
172 | /**
173 | * {@inheritDoc}
174 | */
175 | @Override
176 | public void clear() {
177 | delayQueue.clear();
178 | expiringKeys.clear();
179 | internalMap.clear();
180 | }
181 |
182 | /**
183 | * Not supported.
184 | */
185 | @Override
186 | public Set keySet() {
187 | throw new UnsupportedOperationException();
188 | }
189 |
190 | /**
191 | * Not supported.
192 | */
193 | @Override
194 | public Collection values() {
195 | throw new UnsupportedOperationException();
196 | }
197 |
198 | /**
199 | * Not supported.
200 | */
201 | @Override
202 | public Set> entrySet() {
203 | throw new UnsupportedOperationException();
204 | }
205 |
206 | private void cleanup() {
207 | ExpiringKey delayedKey = delayQueue.poll();
208 | while (delayedKey != null) {
209 | internalMap.remove(delayedKey.getKey());
210 | expiringKeys.remove(delayedKey.getKey());
211 | delayedKey = delayQueue.poll();
212 | }
213 | }
214 |
215 | private class ExpiringKey implements Delayed {
216 |
217 | private long startTime = System.currentTimeMillis();
218 | private final long maxLifeTimeMillis;
219 | private final KY key;
220 |
221 | public ExpiringKey(KY key, long maxLifeTimeMillis) {
222 | this.maxLifeTimeMillis = maxLifeTimeMillis;
223 | this.key = key;
224 | }
225 |
226 | public KY getKey() {
227 | return key;
228 | }
229 |
230 | /**
231 | * {@inheritDoc}
232 | */
233 | @Override
234 | public boolean equals(Object obj) {
235 | if (obj == null) {
236 | return false;
237 | }
238 | if (getClass() != obj.getClass()) {
239 | return false;
240 | }
241 | final ExpiringKey other = (ExpiringKey) obj;
242 | if (this.key != other.key && (this.key == null || !this.key.equals(other.key))) {
243 | return false;
244 | }
245 | return true;
246 | }
247 |
248 | /**
249 | * {@inheritDoc}
250 | */
251 | @Override
252 | public int hashCode() {
253 | int hash = 7;
254 | hash = 31 * hash + (this.key != null ? this.key.hashCode() : 0);
255 | return hash;
256 | }
257 |
258 | /**
259 | * {@inheritDoc}
260 | */
261 | @Override
262 | public long getDelay(TimeUnit unit) {
263 | return unit.convert(getDelayMillis(), TimeUnit.MILLISECONDS);
264 | }
265 |
266 | private long getDelayMillis() {
267 | return (startTime + maxLifeTimeMillis) - System.currentTimeMillis();
268 | }
269 |
270 | public void expire() {
271 | startTime = System.currentTimeMillis() - maxLifeTimeMillis - 1;
272 | }
273 |
274 | /**
275 | * {@inheritDoc}
276 | */
277 | @Override
278 | public int compareTo(Delayed that) {
279 | return Long.compare(this.getDelayMillis(), ((ExpiringKey) that).getDelayMillis());
280 | }
281 | }
282 | }
283 |
--------------------------------------------------------------------------------
/LICENSE:
--------------------------------------------------------------------------------
1 | Apache License
2 | Version 2.0, January 2004
3 | http://www.apache.org/licenses/
4 |
5 | TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
6 |
7 | 1. Definitions.
8 |
9 | "License" shall mean the terms and conditions for use, reproduction,
10 | and distribution as defined by Sections 1 through 9 of this document.
11 |
12 | "Licensor" shall mean the copyright owner or entity authorized by
13 | the copyright owner that is granting the License.
14 |
15 | "Legal Entity" shall mean the union of the acting entity and all
16 | other entities that control, are controlled by, or are under common
17 | control with that entity. For the purposes of this definition,
18 | "control" means (i) the power, direct or indirect, to cause the
19 | direction or management of such entity, whether by contract or
20 | otherwise, or (ii) ownership of fifty percent (50%) or more of the
21 | outstanding shares, or (iii) beneficial ownership of such entity.
22 |
23 | "You" (or "Your") shall mean an individual or Legal Entity
24 | exercising permissions granted by this License.
25 |
26 | "Source" form shall mean the preferred form for making modifications,
27 | including but not limited to software source code, documentation
28 | source, and configuration files.
29 |
30 | "Object" form shall mean any form resulting from mechanical
31 | transformation or translation of a Source form, including but
32 | not limited to compiled object code, generated documentation,
33 | and conversions to other media types.
34 |
35 | "Work" shall mean the work of authorship, whether in Source or
36 | Object form, made available under the License, as indicated by a
37 | copyright notice that is included in or attached to the work
38 | (an example is provided in the Appendix below).
39 |
40 | "Derivative Works" shall mean any work, whether in Source or Object
41 | form, that is based on (or derived from) the Work and for which the
42 | editorial revisions, annotations, elaborations, or other modifications
43 | represent, as a whole, an original work of authorship. For the purposes
44 | of this License, Derivative Works shall not include works that remain
45 | separable from, or merely link (or bind by name) to the interfaces of,
46 | the Work and Derivative Works thereof.
47 |
48 | "Contribution" shall mean any work of authorship, including
49 | the original version of the Work and any modifications or additions
50 | to that Work or Derivative Works thereof, that is intentionally
51 | submitted to Licensor for inclusion in the Work by the copyright owner
52 | or by an individual or Legal Entity authorized to submit on behalf of
53 | the copyright owner. For the purposes of this definition, "submitted"
54 | means any form of electronic, verbal, or written communication sent
55 | to the Licensor or its representatives, including but not limited to
56 | communication on electronic mailing lists, source code control systems,
57 | and issue tracking systems that are managed by, or on behalf of, the
58 | Licensor for the purpose of discussing and improving the Work, but
59 | excluding communication that is conspicuously marked or otherwise
60 | designated in writing by the copyright owner as "Not a Contribution."
61 |
62 | "Contributor" shall mean Licensor and any individual or Legal Entity
63 | on behalf of whom a Contribution has been received by Licensor and
64 | subsequently incorporated within the Work.
65 |
66 | 2. Grant of Copyright License. Subject to the terms and conditions of
67 | this License, each Contributor hereby grants to You a perpetual,
68 | worldwide, non-exclusive, no-charge, royalty-free, irrevocable
69 | copyright license to reproduce, prepare Derivative Works of,
70 | publicly display, publicly perform, sublicense, and distribute the
71 | Work and such Derivative Works in Source or Object form.
72 |
73 | 3. Grant of Patent License. Subject to the terms and conditions of
74 | this License, each Contributor hereby grants to You a perpetual,
75 | worldwide, non-exclusive, no-charge, royalty-free, irrevocable
76 | (except as stated in this section) patent license to make, have made,
77 | use, offer to sell, sell, import, and otherwise transfer the Work,
78 | where such license applies only to those patent claims licensable
79 | by such Contributor that are necessarily infringed by their
80 | Contribution(s) alone or by combination of their Contribution(s)
81 | with the Work to which such Contribution(s) was submitted. If You
82 | institute patent litigation against any entity (including a
83 | cross-claim or counterclaim in a lawsuit) alleging that the Work
84 | or a Contribution incorporated within the Work constitutes direct
85 | or contributory patent infringement, then any patent licenses
86 | granted to You under this License for that Work shall terminate
87 | as of the date such litigation is filed.
88 |
89 | 4. Redistribution. You may reproduce and distribute copies of the
90 | Work or Derivative Works thereof in any medium, with or without
91 | modifications, and in Source or Object form, provided that You
92 | meet the following conditions:
93 |
94 | (a) You must give any other recipients of the Work or
95 | Derivative Works a copy of this License; and
96 |
97 | (b) You must cause any modified files to carry prominent notices
98 | stating that You changed the files; and
99 |
100 | (c) You must retain, in the Source form of any Derivative Works
101 | that You distribute, all copyright, patent, trademark, and
102 | attribution notices from the Source form of the Work,
103 | excluding those notices that do not pertain to any part of
104 | the Derivative Works; and
105 |
106 | (d) If the Work includes a "NOTICE" text file as part of its
107 | distribution, then any Derivative Works that You distribute must
108 | include a readable copy of the attribution notices contained
109 | within such NOTICE file, excluding those notices that do not
110 | pertain to any part of the Derivative Works, in at least one
111 | of the following places: within a NOTICE text file distributed
112 | as part of the Derivative Works; within the Source form or
113 | documentation, if provided along with the Derivative Works; or,
114 | within a display generated by the Derivative Works, if and
115 | wherever such third-party notices normally appear. The contents
116 | of the NOTICE file are for informational purposes only and
117 | do not modify the License. You may add Your own attribution
118 | notices within Derivative Works that You distribute, alongside
119 | or as an addendum to the NOTICE text from the Work, provided
120 | that such additional attribution notices cannot be construed
121 | as modifying the License.
122 |
123 | You may add Your own copyright statement to Your modifications and
124 | may provide additional or different license terms and conditions
125 | for use, reproduction, or distribution of Your modifications, or
126 | for any such Derivative Works as a whole, provided Your use,
127 | reproduction, and distribution of the Work otherwise complies with
128 | the conditions stated in this License.
129 |
130 | 5. Submission of Contributions. Unless You explicitly state otherwise,
131 | any Contribution intentionally submitted for inclusion in the Work
132 | by You to the Licensor shall be under the terms and conditions of
133 | this License, without any additional terms or conditions.
134 | Notwithstanding the above, nothing herein shall supersede or modify
135 | the terms of any separate license agreement you may have executed
136 | with Licensor regarding such Contributions.
137 |
138 | 6. Trademarks. This License does not grant permission to use the trade
139 | names, trademarks, service marks, or product names of the Licensor,
140 | except as required for reasonable and customary use in describing the
141 | origin of the Work and reproducing the content of the NOTICE file.
142 |
143 | 7. Disclaimer of Warranty. Unless required by applicable law or
144 | agreed to in writing, Licensor provides the Work (and each
145 | Contributor provides its Contributions) on an "AS IS" BASIS,
146 | WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
147 | implied, including, without limitation, any warranties or conditions
148 | of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
149 | PARTICULAR PURPOSE. You are solely responsible for determining the
150 | appropriateness of using or redistributing the Work and assume any
151 | risks associated with Your exercise of permissions under this License.
152 |
153 | 8. Limitation of Liability. In no event and under no legal theory,
154 | whether in tort (including negligence), contract, or otherwise,
155 | unless required by applicable law (such as deliberate and grossly
156 | negligent acts) or agreed to in writing, shall any Contributor be
157 | liable to You for damages, including any direct, indirect, special,
158 | incidental, or consequential damages of any character arising as a
159 | result of this License or out of the use or inability to use the
160 | Work (including but not limited to damages for loss of goodwill,
161 | work stoppage, computer failure or malfunction, or any and all
162 | other commercial damages or losses), even if such Contributor
163 | has been advised of the possibility of such damages.
164 |
165 | 9. Accepting Warranty or Additional Liability. While redistributing
166 | the Work or Derivative Works thereof, You may choose to offer,
167 | and charge a fee for, acceptance of support, warranty, indemnity,
168 | or other liability obligations and/or rights consistent with this
169 | License. However, in accepting such obligations, You may act only
170 | on Your own behalf and on Your sole responsibility, not on behalf
171 | of any other Contributor, and only if You agree to indemnify,
172 | defend, and hold each Contributor harmless for any liability
173 | incurred by, or claims asserted against, such Contributor by reason
174 | of your accepting any such warranty or additional liability.
175 |
176 | END OF TERMS AND CONDITIONS
177 |
178 | APPENDIX: How to apply the Apache License to your work.
179 |
180 | To apply the Apache License to your work, attach the following
181 | boilerplate notice, with the fields enclosed by brackets "{}"
182 | replaced with your own identifying information. (Don't include
183 | the brackets!) The text should be enclosed in the appropriate
184 | comment syntax for the file format. We also recommend that a
185 | file or class name and description of purpose be included on the
186 | same "printed page" as the copyright notice for easier
187 | identification within third-party archives.
188 |
189 | Copyright {yyyy} {name of copyright owner}
190 |
191 | Licensed under the Apache License, Version 2.0 (the "License");
192 | you may not use this file except in compliance with the License.
193 | You may obtain a copy of the License at
194 |
195 | http://www.apache.org/licenses/LICENSE-2.0
196 |
197 | Unless required by applicable law or agreed to in writing, software
198 | distributed under the License is distributed on an "AS IS" BASIS,
199 | WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
200 | See the License for the specific language governing permissions and
201 | limitations under the License.
202 |
--------------------------------------------------------------------------------