LoginAction.java example

Explorer

infoglue-master
- src
  - java
- test
  - java
    - org
      - infoglue
        cms
        applications
        contenttool
        ContentCategoryActionTest.java
        managementtool
        CategoryActionTest.java
        InstallationValidatorAction.java
        RepositoryTester.java
        ViewContentTypeDefinitionActionTest.java
        mydesktoptool
        actions
        ViewMyDesktopToolStartPageActionTest.java
        controllers
        CategoryControllerTest.java
        ContentCategoryControllerTest.java
        ContentStateControllerTest.java
        ContentTypeDefinitionControllerTest.java
        MysqlJDBCServiceTest.java
        PublicationControllerTest.java
        SiteNodeVersionControllerTest.java
        WorkflowControllerTest.java
        entities
        ValidationTestCase.java
        management
        CategoryTest.java
        ValidationItem.java
        mydesktop
        WorkflowVOTest.java
        publishing
        EditionBrowserTest.java
        util
        FakeFilterConfig.java
        FakeHttpServletRequest.java
        FakeHttpServletResponse.java
        FakeHttpSession.java
        FakeServletContext.java
        InfoGlueTestCase.java
        WebWorkTestCase.java
        WorkflowTestCase.java
        workflow
        OwnerStepFilterTest.java
        workflow
        CreateNewsTest.java
        NewsWorkflowTestCase.java
        deliver
        controllers
        ContentDeliveryControllerTest.java

/* ===============================================================================
 *
 * Part of the InfoGlue Content Management Platform (www.infoglue.org)
 *
 * ===============================================================================
 *
 *  Copyright (C)
 * 
 * This program is free software; you can redistribute it and/or modify it under
 * the terms of the GNU General Public License version 2, as published by the
 * Free Software Foundation. See the file LICENSE.html for more information.
 * 
 * This program is distributed in the hope that it will be useful, but WITHOUT
 * ANY WARRANTY, including the implied warranty of MERCHANTABILITY or FITNESS
 * FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
 * 
 * You should have received a copy of the GNU General Public License along with
 * this program; if not, write to the Free Software Foundation, Inc. / 59 Temple
 * Place, Suite 330 / Boston, MA 02111-1307 / USA.
 *
 * ===============================================================================
 */

package org.infoglue.cms.applications.common.actions;

import javax.servlet.http.Cookie;

import org.infoglue.cms.controllers.usecases.common.LoginUCC;
import org.infoglue.cms.controllers.usecases.common.LoginUCCFactory;
import org.infoglue.cms.security.AuthenticationModule;
import org.infoglue.deliver.util.HttpHelper;

import webwork.action.ActionContext;

public class LoginAction extends InfoGlueAbstractAction
{
	private static final long serialVersionUID = 35668814570153876L;

	private String userName     = null;
	private String password     = null;
	private String errorMessage = "";
	private String referringUrl = null;
	
	private HttpHelper httpHelper = new HttpHelper();

	public void setUserName(String userName)
	{
		this.userName = userName;
	}
	
	public String getUserName()
	{
		return this.userName;
	}

	public void setPassword(String password)
	{
		this.password = password;
	}
	
	public String getPassword()
	{
		return this.password;
	}

	public String getErrorMessage()
	{
		return this.errorMessage;
	}
	
	public String doExecute() throws Exception 
	{
		this.getResponse().setStatus(this.getResponse().SC_FORBIDDEN);
		
		if(this.getRequest().getRemoteUser() != null)
			return "redirect";
		else
			return "success";
	}	

	public String doInvalidLogin() throws Exception 
	{
		if(this.getRequest().getRemoteUser() != null)
		{
			return "redirect";
		}
		else
		{
			return "invalidLogin";
		}
	}	

	public String doLogonUser() throws Exception 
	{
		LoginUCC loginController = LoginUCCFactory.newLoginUCC();
		boolean isAccepted = loginController.authorizeSystemUser(this.userName, this.password);
		
		if(isAccepted)
		{
			return "userAccepted";
		}
		else
		{
			errorMessage = "The logon information given was incorrect, please verify and try again.";
			return "invalidLogin";
		}
	}	
	
	/**
	 * This command invalidates the current session and then calls the authentication module logout method so it can
	 * do it's stuff. Sometimes it involves redirecting the user somewhere and then we returns nothing in this method.
	 */

	public String doLogout() throws Exception
	{
		getHttpSession().invalidate();
		
		String encodedUserNameCookie = httpHelper.getCookie(this.getRequest(), "iguserid");
		if(encodedUserNameCookie != null)
			ActionContext.getServletContext().removeAttribute(encodedUserNameCookie);
		
		Cookie cookie_iguserid = new Cookie("iguserid", "none");
		cookie_iguserid.setPath("/");
		cookie_iguserid.setMaxAge(0); 
		getResponse().addCookie(cookie_iguserid);
	    
	    Cookie cookie_igpassword = new Cookie ("igpassword", "none");
	    cookie_igpassword.setPath("/");
	    cookie_igpassword.setMaxAge(0);
	    getResponse().addCookie(cookie_igpassword);
		
		AuthenticationModule authenticationModule = AuthenticationModule.getAuthenticationModule(null, null, getRequest(), false);
		boolean redirected = authenticationModule.logoutUser(getRequest(), getResponse());
		
		if(redirected)
			return NONE;
		else
			return "logout";
	}


	public String getPrincipal()
	{ 
		java.security.Principal principal = getRequest().getUserPrincipal();
		return "Principal:" + principal.getName();
	}

	public String getReferringUrl()
	{
		return referringUrl;
	}

	public void setReferringUrl(String string)
	{
		referringUrl = string;
	}

}