ClearWebflowCredentialAction.java

package org.apereo.cas.web.flow;

import com.google.common.base.Throwables;
import org.apereo.cas.web.support.WebUtils;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.webflow.action.AbstractAction;
import org.springframework.webflow.engine.Flow;
import org.springframework.webflow.engine.FlowVariable;
import org.springframework.webflow.execution.Event;
import org.springframework.webflow.execution.RequestContext;

/**
 * This is {@link ClearWebflowCredentialAction} invoked ONLY as an exit-action for non-interactive authn flows. 
 *
 * @author Misagh Moayyed
 * @since 5.0.0
 */
public class ClearWebflowCredentialAction extends AbstractAction {
    private static final Logger LOGGER = LoggerFactory.getLogger(ClearWebflowCredentialAction.class);

    @Override
    protected Event doExecute(final RequestContext requestContext) throws Exception {
        WebUtils.putCredential(requestContext, null);
        
        final String current = requestContext.getCurrentEvent().getId();
        if (current.equalsIgnoreCase(CasWebflowConstants.TRANSITION_ID_AUTHENTICATION_FAILURE)
                || current.equalsIgnoreCase(CasWebflowConstants.TRANSITION_ID_ERROR)) {
            LOGGER.debug("Current event signaled a failure. Recreating credentials instance from the context");
            try {
                final Flow flow = (Flow) requestContext.getFlowExecutionContext().getDefinition();
                final FlowVariable var = flow.getVariable(CasWebflowConstants.VAR_ID_CREDENTIAL);
                var.create(requestContext);
            } catch (final Exception e) {
                throw Throwables.propagate(e);
            }
        } 
        return null;
    }
}