DispatchAction.java

/*
*
* Copyright 2005 AgileTec s.r.l. (http://www.agiletec.it) All rights reserved.
*
* This file is part of jAPS software.
* jAPS is a free software; 
* you can redistribute it and/or modify it
* under the terms of the GNU General Public License (GPL) as published by the Free Software Foundation; version 2.
* 
* See the file License for the specific language governing permissions   
* and limitations under the License
* 
* 
* 
* Copyright 2005 AgileTec s.r.l. (http://www.agiletec.it) All rights reserved.
*
*/
package com.agiletec.apsadmin.common;

import java.util.logging.Level;
import java.util.logging.Logger;

import javax.servlet.http.HttpSession;

import com.agiletec.aps.system.ApsSystemUtils;
import com.agiletec.aps.system.SystemConstants;
import com.agiletec.aps.system.services.role.Permission;
import com.agiletec.aps.system.services.user.IAuthenticationProviderManager;
import com.agiletec.aps.system.services.user.UserDetails;
import com.agiletec.apsadmin.system.BaseAction;

/**
 * Action specifica per la gestione delle operazioni di login.
 * @author E.Santoboni
 */
public class DispatchAction extends BaseAction implements IDispatchAction {
	
	@Override
    public void validate() {
		super.validate();
		if (this.hasFieldErrors()) return;
		Logger log = ApsSystemUtils.getLogger();
    	log.finest("Richiesta autenticazione user " + this.getUsername() + " - password ******** ");
    	UserDetails user = null;
		try {
			user = this.getAuthenticationProvider().getUser(this.getUsername(), this.getPassword());
		} catch (Throwable t) {
			log.throwing("LoginAction", "validate", t);
			throw new RuntimeException("Errore in login utente", t);
		}
		if (null == user) {
        	if(log.isLoggable(Level.FINEST)) {
            	log.finest("Login failed : username " + this.getUsername() + " - password ******** ");
            }
        	this.addActionError(this.getText("error.user.login.loginFailed"));
        } else {
        	//UTENTE RICONOSCIUTO ED ATTIVO
        	if (!user.isAccountNotExpired()) {
        		this.addActionError(this.getText("error.user.login.accountExpired"));
        		this.getSession().removeAttribute(SystemConstants.SESSIONPARAM_CURRENT_USER);
        		return;
        	}
        	this.getSession().setAttribute(SystemConstants.SESSIONPARAM_CURRENT_USER, user);
        	if (!user.isCredentialsNotExpired()) {
        		this.addActionError(this.getText("error.user.login.credentialsExpired"));
        		return;
        	}
        	if (this.getAuthorizationManager().isAuthOnPermission(user, Permission.SUPERUSER) 
        			|| this.getAuthorizationManager().isAuthOnPermission(user, Permission.BACKOFFICE)) {
    			log.info("User - " + user.getUsername() + " logged");
    		} else {
    			this.addActionError(this.getText("error.user.login.userNotAbilitated"));
    		}
        }
	}
    
	@Override
    public String doLogin() {
    	return SUCCESS;
    }
    
	@Override
    public String doLogout() {
    	this.getSession().invalidate();
    	return "homepage";
    }
    
    public String getUsername() {
    	return _username;
    }
    public void setUsername(String username) {
    	this._username = username;
    }
    
    public String getPassword() {
    	return _password;
    }
    public void setPassword(String password) {
    	this._password = password;
    }
	
	protected HttpSession getSession() {
		return this.getRequest().getSession();
	}
	
	protected IAuthenticationProviderManager getAuthenticationProvider() {
		return _authenticationProvider;
	}
	public void setAuthenticationProvider(IAuthenticationProviderManager authenticationProvider) {
		this._authenticationProvider = authenticationProvider;
	}
    
	private String _username;
    private String _password;
    
	private IAuthenticationProviderManager _authenticationProvider;
	
}