Changeset 68

Timestamp:

05/24/08 23:37:54 (6 months ago)

Author:

restamon

Message:

Spring Security/OpenID integration

Files:

• core/trunk/pom.xml (modified) (2 diffs)
• core/trunk/src/main/java/org/restafarian/core/security/AuthenticatedUserManager.java (modified) (3 diffs)
• core/trunk/src/main/java/org/restafarian/core/security/CookieBasedUserManager.java (added)
• core/trunk/src/main/java/org/restafarian/core/security/DefaultUserManager.java (modified) (2 diffs)
• core/trunk/src/main/java/org/restafarian/core/security/ServiceBasedUserManager.java (modified) (3 diffs)
• core/trunk/src/main/java/org/restafarian/core/security/SessionBasedUserManager.java (modified) (2 diffs)
• core/trunk/src/main/java/org/restafarian/core/security/SpringBasedUserManager.java (added)
• core/trunk/src/main/java/org/restafarian/core/security/UserManager.java (modified) (2 diffs)

core/trunk/pom.xml

@@ -1 +1 @@
-<?xml version="1.0" encoding="UTF-8"?>
-
-
-
+
-  <modelVersion>4.0.0</modelVersion>
-  <groupId>org.restafarian</groupId>
@@ -145 +143 @@
-      <version>1.7.0</version>
-    </dependency>
+    <dependency>
+      <groupId>org.springframework.security</groupId>
+      <artifactId>spring-security-core</artifactId>
+      <version>2.0.1</version>
+    </dependency>
-  </dependencies>
-

core/trunk/src/main/java/org/restafarian/core/security/AuthenticatedUserManager.java

@@ -3 +3 @@
-import javax.servlet.ServletContext;
-import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
-
-import org.apache.commons.configuration.Configuration;
@@ -74 +75 @@
-         *
-         * @param req the <code>HttpServletRequest</code> object
+         * @param res the <code>HttpServletResponse</code> object
-         * @param user the currently authenticated user
-         */
-
+HttpServletResponse res, 
-                ServletContext context = req.getSession().getServletContext();
-                UserManager userManager = (UserManager) context.getAttribute("authenticatedUserManager");
@@ -85 +87 @@
-                        }
-                }
-
+res, 
-        }
-}

core/trunk/src/main/java/org/restafarian/core/security/DefaultUserManager.java

@@ -3 +3 @@
-import javax.servlet.ServletContext;
-import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
-
-import org.apache.commons.configuration.Configuration;
@@ -50 +51 @@
-         *
-         * @param req the <code>HttpServletRequest</code> object
+         * @param res the <code>HttpServletResponse</code> object
-         * @param user the currently authenticated user
-         */
-
+HttpServletResponse res, 
-                // default implementation does nothing
-        }

core/trunk/src/main/java/org/restafarian/core/security/ServiceBasedUserManager.java

@@ -2 +2 @@
-
-import javax.servlet.ServletContext;
+import javax.servlet.http.Cookie;
-import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
-
-import org.apache.commons.betwixt.io.BeanReader;
-import org.apache.commons.configuration.Configuration;
-import org.apache.commons.httpclient.HttpClient;
+import org.apache.commons.httpclient.cookie.CookiePolicy;
-import org.apache.commons.httpclient.methods.GetMethod;
-import org.apache.commons.lang.StringUtils;
@@ -46 +49 @@
-                        HttpClient client = new HttpClient();
-                        GetMethod get = new GetMethod(serviceURL);
+                        Cookie[] cookies = req.getCookies();
+                        if (cookies != null && cookies.length > 0) {
+                                get.getParams().setCookiePolicy(CookiePolicy.RFC_2109);
+                                for (int x=0; x<cookies.length; x++) {
+                                        if (!"JSESSIONID".equalsIgnoreCase(cookies[x].getName())) {
+                                        get.setRequestHeader("Cookie", cookies[x].getName() + "=" + cookies[x].getValue());
+                                        }
+                                }
+                        }
-                        try {
-                                int statusCode = client.executeMethod(get);
@@ -65 +77 @@
-         *
-         * @param req the <code>HttpServletRequest</code> object
+         * @param res the <code>HttpServletResponse</code> object
-         * @param user the currently authenticated user
-         */
-
+HttpServletResponse res, 
-                // default implementation does nothing
-        }

core/trunk/src/main/java/org/restafarian/core/security/SessionBasedUserManager.java

@@ -3 +3 @@
-import javax.servlet.ServletContext;
-import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
-
-import org.apache.commons.configuration.Configuration;
@@ -42 +43 @@
-         *
-         * @param req the <code>HttpServletRequest</code> object
+         * @param res the <code>HttpServletResponse</code> object
-         * @param user the currently authenticated user
-         */
-
+HttpServletResponse res, 
-                if (user != null) {
-                        req.getSession().setAttribute(AUTHENTICATED_USER, user);

core/trunk/src/main/java/org/restafarian/core/security/UserManager.java

@@ -3 +3 @@
-import javax.servlet.ServletContext;
-import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
-
-import org.apache.commons.configuration.Configuration;
@@ -33 +34 @@
-         *
-         * @param req the <code>HttpServletRequest</code> object
+         * @param res the <code>HttpServletResponse</code> object
-         * @param user the currently authenticated user
-         */
-
+HttpServletResponse res, 
-}