]> git.argeo.org Git - lgpl/argeo-commons.git/blobdiff - org.argeo.cms/src/org/argeo/cms/auth/UserAdminLoginModule.java
projects / lgpl / argeo-commons.git / blobdiff
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Prevent anonymous session to be authenticated
[lgpl/argeo-commons.git] / org.argeo.cms / src / org / argeo / cms / auth / UserAdminLoginModule.java
diff --git a/org.argeo.cms/src/org/argeo/cms/auth/UserAdminLoginModule.java b/org.argeo.cms/src/org/argeo/cms/auth/UserAdminLoginModule.java
index ea8821185d78d4badf8c4ea20d1c13a98f04e76d..db677f57e13dc7f9a5715459dc532248ac054f2f 100644 (file)
--- a/org.argeo.cms/src/org/argeo/cms/auth/UserAdminLoginModule.java
+++ b/org.argeo.cms/src/org/argeo/cms/auth/UserAdminLoginModule.java
@@ -2,12 +2,14 @@ package org.argeo.cms.auth;
 
 import java.io.IOException;
 import java.util.Iterator;
+import java.util.Locale;
 import java.util.Map;
 import java.util.Set;
 
 import javax.security.auth.Subject;
 import javax.security.auth.callback.Callback;
 import javax.security.auth.callback.CallbackHandler;
+import javax.security.auth.callback.LanguageCallback;
 import javax.security.auth.callback.NameCallback;
 import javax.security.auth.callback.PasswordCallback;
 import javax.security.auth.callback.UnsupportedCallbackException;
@@ -19,6 +21,7 @@ import javax.servlet.http.HttpSession;
 
 import org.argeo.ArgeoException;
 import org.argeo.cms.internal.kernel.Activator;
+import org.argeo.eclipse.ui.specific.UiContext;
 import org.osgi.framework.BundleContext;
 import org.osgi.service.http.HttpContext;
 import org.osgi.service.useradmin.Authorization;
@@ -60,12 +63,16 @@ public class UserAdminLoginModule implements LoginModule, AuthConstants {
                        NameCallback nameCallback = new NameCallback("User");
                        PasswordCallback passwordCallback = new PasswordCallback(
                                        "Password", false);
+                       LanguageCallback langCallback = new LanguageCallback();
                        try {
                                callbackHandler.handle(new Callback[] { httpCallback,
-                                               nameCallback, passwordCallback });
+                                               nameCallback, passwordCallback, langCallback });
                        } catch (IOException e) {
                                throw new LoginException("Cannot handle http callback: "
                                                + e.getMessage());
+                       } catch (ThreadDeath e) {
+                               throw new ThreadDeathLoginException(
+                                               "Callbackhandler thread died", e);
                        } catch (UnsupportedCallbackException e) {
                                return false;
                        }
@@ -77,20 +84,12 @@ public class UserAdminLoginModule implements LoginModule, AuthConstants {
                                        authorization = (Authorization) request.getSession()
                                                        .getAttribute(HttpContext.AUTHORIZATION);
                        }
-                       // if (authorization == null || authorization.getName() == null)
-                       // if (!isAnonymous) {
-                       // // ask for username and password
-                       // NameCallback nameCallback = new NameCallback("User");
-                       // PasswordCallback passwordCallback = new PasswordCallback(
-                       // "Password", false);
-                       //
-                       // // handle callbacks
-                       // try {
-                       // callbackHandler.handle(new Callback[] { nameCallback,
-                       // passwordCallback });
-                       // } catch (Exception e) {
-                       // throw new ArgeoException("Cannot handle callbacks", e);
-                       // }
+
+                       // i18n
+                       Locale locale = langCallback.getLocale();
+                       if (locale == null)
+                               locale = Locale.getDefault();
+                       UiContext.setLocale(locale);
 
                        if (authorization == null) {
                                // create credentials
@@ -127,7 +126,7 @@ public class UserAdminLoginModule implements LoginModule, AuthConstants {
        public boolean commit() throws LoginException {
                Authorization authorization = subject
                                .getPrivateCredentials(Authorization.class).iterator().next();
-               if (request != null) {
+               if (request != null && authorization.getName() != null) {
                        request.setAttribute(HttpContext.REMOTE_USER,
                                        authorization.getName());
                        request.setAttribute(HttpContext.AUTHORIZATION, authorization);
Argeo Commons - Lightweight integration framework in pure Java/OSGi