org.argeo.cms/src/org/argeo/cms/internal/http/OpenInViewSessionProvider.java

   1 package org.argeo.cms.internal.http;
   2
   3 import java.io.Serializable;
   4 import java.security.PrivilegedExceptionAction;
   5
   6 import javax.jcr.Repository;
   7 import javax.jcr.RepositoryException;
   8 import javax.jcr.Session;
   9 import javax.security.auth.Subject;
  10 import javax.security.auth.login.LoginContext;
  11 import javax.servlet.ServletException;
  12 import javax.servlet.http.HttpServletRequest;
  13
  14 import org.apache.commons.logging.Log;
  15 import org.apache.commons.logging.LogFactory;
  16 import org.apache.jackrabbit.server.SessionProvider;
  17 import org.argeo.cms.CmsException;
  18 import org.argeo.jcr.JcrUtils;
  19 import org.argeo.node.NodeConstants;
  20
  21 /**
  22  * Implements an open session in view patter: a new JCR session is created for
  23  * each request
  24  */
  25 class OpenInViewSessionProvider implements SessionProvider, Serializable {
  26         private final static Log log = LogFactory.getLog(OpenInViewSessionProvider.class);
  27
  28         private static final long serialVersionUID = 2270957712453841368L;
  29         private final String alias;
  30
  31         public OpenInViewSessionProvider(String alias) {
  32                 this.alias = alias;
  33         }
  34
  35         public Session getSession(HttpServletRequest request, Repository rep, String workspace)
  36                         throws javax.jcr.LoginException, ServletException, RepositoryException {
  37                 return login(request, rep, workspace);
  38         }
  39
  40         protected Session login(HttpServletRequest request, Repository repository, String workspace)
  41                         throws RepositoryException {
  42                 if (log.isTraceEnabled())
  43                         log.trace("Repo " + alias + ", login to workspace " + (workspace == null ? "<default>" : workspace)
  44                                         + " in web session " + request.getSession().getId());
  45                 LoginContext lc = (LoginContext) request.getAttribute(NodeConstants.LOGIN_CONTEXT_USER);
  46                 if (lc == null)
  47                         throw new CmsException("No login context available");
  48                 try {
  49                         // LoginContext lc = new
  50                         // LoginContext(NodeConstants.LOGIN_CONTEXT_USER,
  51                         // new HttpRequestCallbackHandler(request));
  52                         // lc.login();
  53                         return Subject.doAs(lc.getSubject(), new PrivilegedExceptionAction<Session>() {
  54                                 @Override
  55                                 public Session run() throws Exception {
  56                                         return repository.login(workspace);
  57                                 }
  58                         });
  59                 } catch (Exception e) {
  60                         throw new CmsException("Cannot log in to JCR", e);
  61                 }
  62                 // return repository.login(workspace);
  63         }
  64
  65         public void releaseSession(Session session) {
  66                 JcrUtils.logoutQuietly(session);
  67                 if (log.isTraceEnabled())
  68                         log.trace("Logged out remote JCR session " + session);
  69         }
  70 }