package org.apereo.cas.web.report;
import org.apache.commons.lang3.BooleanUtils;
import org.apache.commons.lang3.StringUtils;
import org.apereo.cas.authentication.Authentication;
import org.apereo.cas.configuration.CasConfigurationProperties;
import org.apereo.cas.ticket.registry.TicketRegistrySupport;
import org.apereo.cas.web.support.CookieRetrievingCookieGenerator;
import org.springframework.http.HttpStatus;
import org.springframework.http.MediaType;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.ResponseBody;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
/**
* This is {@link SingleSignOnSessionStatusController}.
*
* @author Misagh Moayyed
* @since 5.1.0
*/
public class SingleSignOnSessionStatusController extends BaseCasMvcEndpoint {
private final CookieRetrievingCookieGenerator ticketGrantingTicketCookieGenerator;
private final TicketRegistrySupport ticketRegistrySupport;
public SingleSignOnSessionStatusController(final CookieRetrievingCookieGenerator ticketGrantingTicketCookieGenerator,
final TicketRegistrySupport ticketRegistrySupport,
final CasConfigurationProperties casProperties) {
super("ssostatus", "/sso", casProperties.getMonitor().getEndpoints().getSingleSignOnStatus(), casProperties);
this.ticketGrantingTicketCookieGenerator = ticketGrantingTicketCookieGenerator;
this.ticketRegistrySupport = ticketRegistrySupport;
}
/**
* Gets yes/no status.
*
* @param request the request
* @param response the response
* @return the status
*/
@GetMapping(produces = MediaType.TEXT_PLAIN_VALUE)
@ResponseBody
public String getStatus(final HttpServletRequest request, final HttpServletResponse response) {
ensureEndpointAccessIsAuthorized(request, response);
response.setStatus(HttpStatus.OK.value());
final String tgtId = this.ticketGrantingTicketCookieGenerator.retrieveCookieValue(request);
if (StringUtils.isBlank(tgtId)) {
return result(false);
}
final Authentication auth = this.ticketRegistrySupport.getAuthenticationFrom(tgtId);
return result(auth != null);
}
private static String result(final boolean res) {
return BooleanUtils.toStringYesNo(res);
}
}