OnlineStorageLoginServlet.java

/*
 * Copyright (c) 2008-2016 Computer Network Information Center (CNIC), Chinese Academy of Sciences.
 * 
 * This file is part of Duckling project.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *   http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License. 
 *
 */
package cn.vlabs.umt.ui.servlet;

import java.io.IOException;

import javax.servlet.ServletConfig;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

import org.apache.commons.httpclient.Header;
import org.apache.commons.httpclient.HttpClient;
import org.apache.commons.httpclient.MultiThreadedHttpConnectionManager;
import org.apache.commons.httpclient.methods.PostMethod;
import org.apache.log4j.Logger;

import cn.vlabs.umt.services.user.bean.ThirdPartyCredential;
import cn.vlabs.umt.ui.Attributes;

public class OnlineStorageLoginServlet extends HttpServlet {

	/**
	 * 
	 */
	private static final long serialVersionUID = 1L;
	private static final Logger LOGGER=Logger.getLogger(OnlineStorageLoginServlet.class);


	/**
	 * The doGet method of the servlet. <br>
	 *
	 * This method is called when a form has its tag value method equals to get.
	 * 
	 * @param request the request send by the client to the server
	 * @param response the response send by the server to the client
	 * @throws ServletException if an error occurred
	 * @throws IOException if an error occurred
	 */
	public void doGet(HttpServletRequest request, HttpServletResponse response)
			throws ServletException, IOException {
         this.doPost(request, response);
	}

	/**
	 * The doPost method of the servlet. <br>
	 * 
	 * This method is called when a form has its tag value method equals to
	 * post.
	 * 
	 * @param request
	 *            the request send by the client to the server
	 * @param response
	 *            the response send by the server to the client
	 * @throws ServletException
	 *             if an error occurred
	 * @throws IOException
	 *             if an error occurred
	 */
	public void doPost(HttpServletRequest request, HttpServletResponse response)
			throws ServletException, IOException {
		   String sid = (String)request.getSession(true).getAttribute("_onlineStorageUid");
		   sid =  sid==null?this.getSid(request):sid;
           if(sid!=null)
           {
        	   String location = null;
        	   if(onlineStorageURL.indexOf('?')<0)
        	   {
        		   location = onlineStorageURL+"?sid="+sid;
        	   }else
        	   {
        		   location = onlineStorageURL+"&sid="+sid;
        	   }
        	   request.getSession(true).setAttribute("_onlineStorageUid", sid);
        	   response.sendRedirect(location);
           }else{
        	   request.getRequestDispatcher("/thirdpartyLostPassword.jsp").forward(request, response);
           }
     }
	private String getSid(HttpServletRequest request)
	{
	   String uid = null;
	   ThirdPartyCredential tpc = (ThirdPartyCredential)request.getSession().getAttribute(Attributes.THIRDPARTY_CREDENTIAL);
	   if(tpc!=null)
	   {
				   HttpClient client = new HttpClient(new MultiThreadedHttpConnectionManager());
				   String loginThirdpartyAppURL = request.getParameter("loginThirdpartyAppURL");
				   if(loginThirdpartyAppURL == null)
				   {
					   loginThirdpartyAppURL = "http://mail.cnic.cn/coremail/index.jsp";
				   }
			  	   PostMethod method = new PostMethod(loginThirdpartyAppURL);
			  	   method.setParameter("uid", tpc.getUsername());
			  	   method.setParameter("password", tpc.getPassword());
			  	   method.setParameter("action:login", "");
			  	   method.setParameter("face", "H");
			  	   try {
					client.executeMethod(method);
				} catch ( IOException e) {
					 LOGGER.error(e.getMessage(),e);
				}finally{
					if(uid == null){
						   request.setAttribute("tip", "ssoLostPassword");
						   request.setAttribute(Attributes.RETURN_URL, request.getParameter(Attributes.RETURN_URL));
					}
				}
			  	   Header locationHeader = (Header)method.getResponseHeader("Location");
			  	   if(locationHeader!=null)
			  	   {
			  		   String location = locationHeader.getValue();
			  		   uid = location.substring(location.lastIndexOf("?")+5);
			  	   }
			  	   method.releaseConnection();
		  	       client.getHttpConnectionManager().closeIdleConnections(0);
	   }else
	   {
		   request.setAttribute("tip", "onlyCstnetUserLoginOnlineStorage");
	   }
  	   return uid;
	}
    private String onlineStorageURL = null;
	public void init(ServletConfig config) throws ServletException{
		onlineStorageURL = config.getInitParameter("onlineStorageURL");
	}

}