Mercurial > dive4elements > river
view flys-client/src/main/java/de/intevation/flys/client/server/LoginServlet.java @ 4215:c179cd02177d
Logout the current user
Add code to the logout button to remove the current user from the session and to
redirect the browser window to the login page.
Part of flys/issue916 (Logout: "Abmelden" Knopf mit Funktion belegen)
author | Björn Ricks <bjoern.ricks@intevation.de> |
---|---|
date | Tue, 23 Oct 2012 09:59:16 +0200 |
parents | 17fe00c09b7c |
children | 0074c113bb95 |
line wrap: on
line source
package de.intevation.flys.client.server; import java.io.IOException; import javax.servlet.ServletException; import javax.servlet.ServletContext; import javax.servlet.http.HttpServlet; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse; import javax.servlet.http.HttpSession; import org.apache.log4j.Logger; import de.intevation.flys.client.server.auth.Authentication; import de.intevation.flys.client.server.auth.AuthenticationException; import de.intevation.flys.client.server.auth.AuthenticationFactory; import de.intevation.flys.client.server.auth.User; import de.intevation.flys.client.server.auth.UserClient; import de.intevation.flys.client.server.features.Features; public class LoginServlet extends HttpServlet { private static Logger logger = Logger.getLogger(LoginServlet.class); private void redirectFailure(HttpServletResponse resp, String path) throws IOException { resp.sendRedirect(path + "/login.jsp"); } private void redirectFailure(HttpServletResponse resp, String path, Exception e) throws IOException { this.redirectFailure(resp, path, e.getMessage()); } private void redirectFailure(HttpServletResponse resp, String path, String message) throws IOException { resp.sendRedirect(path + "/login.jsp?error=" + message); } private void redirectSuccess(HttpServletResponse resp, String path, String uri) throws IOException { if (uri == null) { String redirecturl = getServletContext().getInitParameter("redirect-url"); uri = "/" + redirecturl; } resp.sendRedirect(uri); } @Override protected void doGet(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException { logger.debug("Processing get request"); this.redirectFailure(resp, req.getContextPath()); } @Override protected void doPost(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException { String encoding = req.getCharacterEncoding(); String username = req.getParameter("username"); String password = req.getParameter("password"); logger.debug("Processing post request"); if (username == null || password == null) { logger.debug("No username or password provided"); this.redirectFailure(resp, req.getContextPath()); return; } try { Authentication aresp = this.auth(username, password, encoding); if (aresp == null || !aresp.isSuccess()) { logger.debug("Authentication not successful"); this.redirectFailure(resp, req.getContextPath()); } User user = aresp.getUser(); String url = getServletContext().getInitParameter("server-url"); UserClient client = new UserClient(url); if (!client.userExists(user)) { logger.debug("Creating db user"); if (!client.createUser(user)) { this.redirectFailure(resp, req.getContextPath(), "Could not create new user"); } } HttpSession session = req.getSession(); session.setAttribute("user", user); String uri = (String)session.getAttribute("requesturi"); this.redirectSuccess(resp, req.getContextPath(), uri); } catch(AuthenticationException e) { logger.error(e); this.redirectFailure(resp, req.getContextPath(), e); } } private Authentication auth(String username, String password, String encoding) throws AuthenticationException, IOException { ServletContext sc = this.getServletContext(); Features features = (Features)sc.getAttribute(Features.CONTEXT_ATTRIBUTE); String auth = sc.getInitParameter("authentication"); return AuthenticationFactory.getInstance(auth).auth(username, password, encoding, features); } }