Mercurial > dive4elements > river
comparison flys-client/src/main/java/de/intevation/flys/client/server/LoginServlet.java @ 4450:0074c113bb95
Be sure that a redirect url always exist
When redirecting the user after a successful authentication be sure that the url
is valid.
author | Björn Ricks <bjoern.ricks@intevation.de> |
---|---|
date | Thu, 08 Nov 2012 10:29:09 +0100 |
parents | 17fe00c09b7c |
children | e2d8f344491e |
comparison
equal
deleted
inserted
replaced
4449:f3c4976874f2 | 4450:0074c113bb95 |
---|---|
19 import de.intevation.flys.client.server.features.Features; | 19 import de.intevation.flys.client.server.features.Features; |
20 | 20 |
21 public class LoginServlet extends HttpServlet { | 21 public class LoginServlet extends HttpServlet { |
22 | 22 |
23 private static Logger logger = Logger.getLogger(LoginServlet.class); | 23 private static Logger logger = Logger.getLogger(LoginServlet.class); |
24 private static final String FLYS_PAGE = "FLYS.html"; | |
24 | 25 |
25 private void redirectFailure(HttpServletResponse resp, String path) | 26 private void redirectFailure(HttpServletResponse resp, String path) |
26 throws IOException { | 27 throws IOException { |
27 resp.sendRedirect(path + "/login.jsp"); | 28 resp.sendRedirect(path + "/login.jsp"); |
28 } | 29 } |
39 | 40 |
40 private void redirectSuccess(HttpServletResponse resp, String path, | 41 private void redirectSuccess(HttpServletResponse resp, String path, |
41 String uri) throws IOException { | 42 String uri) throws IOException { |
42 if (uri == null) { | 43 if (uri == null) { |
43 String redirecturl = getServletContext().getInitParameter("redirect-url"); | 44 String redirecturl = getServletContext().getInitParameter("redirect-url"); |
44 | 45 if (redirecturl == null) { |
46 redirecturl = FLYS_PAGE; | |
47 } | |
45 uri = "/" + redirecturl; | 48 uri = "/" + redirecturl; |
46 } | 49 } |
47 resp.sendRedirect(uri); | 50 resp.sendRedirect(uri); |
48 } | 51 } |
49 | 52 |