Package anvil.server.simple

Source Code of anvil.server.simple.SimpleWebAuthorization

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
/*
* $Id: SimpleWebAuthorization.java,v 1.5 2002/09/16 08:05:07 jkl Exp $
*
* Copyright (c) 2002 Njet Communications Ltd. All Rights Reserved.
*
* Use is subject to license terms, as defined in
* Anvil Sofware License, Version 1.1. See LICENSE
* file, or http://njet.org/license-1.1.txt
*/
package anvil.server.simple;

import java.io.IOException;
import java.io.PrintWriter;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import anvil.server.Zone;
import anvil.server.AccessPreferences;
import anvil.server.Authorization;
import anvil.server.Realm;
import anvil.server.Citizen;
import anvil.server.Templates;
import anvil.server.Context;
import anvil.server.MimeTypes;
import anvil.server.ConfigurationError;
import anvil.server.RedirectException;
import anvil.session.Session;

import anvil.core.net.AnyContext;
import anvil.script.Module;
import anvil.Product;

/**
* class SimpleWebAuthorization
*
* @author: Simo Tuokko
*/
public class SimpleWebAuthorization implements Authorization
{
  private Zone _zone;
  private AccessPreferences _prefs;
  private String loginPath = "/login.nvl";
  private String forwardPath = "/";
  private boolean ipAuth = false;

  public SimpleWebAuthorization()
  {
  }


  public void initialize(Zone zone)
  {
    _zone = zone;
    _prefs = zone.getAccessPreferences();

    if (_prefs.getPreference("loginpath") == null) {
      _zone.log().error("WebAuthorization: 'loginpath' not found from configuration, using default: "+loginPath);
    } else {
      loginPath = (String)_prefs.getPreference("loginpath");
    }

    if (_prefs.getPreference("forwardpath") != null) {
      forwardPath = (String)_prefs.getPreference("forwardpath");
    }

    String tmp = (String)_prefs.getPreference("ipauth");
    if (tmp != null && tmp.trim().equalsIgnoreCase("true")) {
      ipAuth = true;
    }
  }


  public Realm getRealm()
  {
    return _zone.getRealm(_prefs.getRealm());
  }
 

  public boolean isSessionRequired()
  {
    return true;
  }


  public boolean authorize(Context context) throws IOException
  {
    if (!_prefs.getRequired()) {
      return true;
    }

    Realm realm = getRealm();
    Session session = context.getSession();
   
    if (realm == null) {
      context.log().error("Couldn't get realm named '"+_prefs.getRealm()+"'");
      try {
        String contentType = MimeTypes.guessContentType(context.getRequest());
        Templates.message(context, contentType, 500);
      } catch(IOException e) {
        context.log().error("Error while writing '500 Internal Server Error' response", e);
      }
      return false;
    }
   
    if (session == null) {
      //cannot authorize if there's no session
     
      return false;
    }
   
    String citizenName = session.getCitizen();
    Citizen citizen = null;

    if (citizenName != null) {
      citizen = realm.getCitizen(citizenName);
    }
   
    if (citizen != null && citizen.getRealm().equals(realm)) {
      return true;
   
    } else {
      HttpServletRequest request = context.getRequest();

      String clientIp = request.getRemoteAddr();
      context.log().info("client ip: "+clientIp);
      Citizen[] searchResult = realm.searchCitizenByVariable("ctz.ip", clientIp);
      if (searchResult != null && searchResult.length > 0) {
        context.setCitizen(searchResult[0]);
        context.log().info("web: ipauthentication ok");
       
        if (context.getOriginalPathinfo().equals(loginPath)) {
          throw new RedirectException(context.getSession().getId(), forwardPath);
        }
        return true;
      }

      String username = request.getParameter("webauth.username");
      String password = request.getParameter("webauth.password");
     
      context.getSession().removeAttribute("webauth.failedUser");
     
      if (username != null && password != null && username.length() > 0) {
        citizen = realm.getCitizen(username);
        context.log().info("username: '"+username+"' citizen: "+citizen);
        if (citizen != null && citizen.verifyCredentials(password)) {
          context.setCitizen(citizen);
          context.log().info("web: authentication ok");
         
          if (context.getOriginalPathinfo().equals(loginPath)) {
            throw new RedirectException(context.getSession().getId(), forwardPath);
          }
          return true;
        } else {
          context.log().info("web: no user found or wrong pass");
          context.getSession().setAttribute("webauth.failedUser", username);
        }
      }

      if (context.getOriginalPathinfo().equals(loginPath)) {
        //allow viewing of the login page
        return true;
      }
     
      context.log().info("web: Forwarding to login page..");
      redirectLogin(context);
      return false;
      //throw new RedirectException(context.getSession().getId(), loginPath);
    }
   
  }
 
 
  private void redirectLogin(Context context) {
    try {
      AnyContext anyContext = new AnyContext(context);
      context.getResponse().setHeader("Cache-Control", "no-cache");
      Zone zone = context.getZone();
      Module script = zone.getServer().getCache().load(zone.resolve(loginPath)).getModule();
      Product product = new Product(
        context.getAddress(), context.getOutputStream(), context.getCitizen(), script);
      try {
        product.forge("service", anyContext);
      } finally {
        product.destroy();
        product = null;
      }
    } catch(Exception e) {
      context.log().error("Error while redirecting: "+e);
    }
  }
 

  public void stop()
  {
    _zone.log().info("Authorization " + this + " stopped");
  }
   
}
TOP

Related Classes of anvil.server.simple.SimpleWebAuthorization

  • anvil.core.net.AnyContext
  • anvil.Product
  • anvil.script.Module
  • anvil.server.Citizen
  • anvil.server.Realm
  • anvil.server.Zone
  • anvil.session.Session
  • anvil.server.RedirectException
  • javax.servlet.http.HttpServletRequest
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.