X-Git-Url: http://git.argeo.org/?a=blobdiff_plain;f=security%2Fplugins%2Forg.argeo.security.equinox%2Fsrc%2Fmain%2Fjava%2Forg%2Fargeo%2Fsecurity%2Fequinox%2FSpringLoginModule.java;h=dada3440525caf6c95b3e0172c25c33201223713;hb=8b8ee149b20e2578a55e17413fa5f7399ff7ba14;hp=03f5f35ed960d2c8d529337f4c0f8cef7838cb2c;hpb=a3aed6b17b3a5de5f37170bf88a939fb8aae6e68;p=lgpl%2Fargeo-commons.git

diff --git a/security/plugins/org.argeo.security.equinox/src/main/java/org/argeo/security/equinox/SpringLoginModule.java b/security/plugins/org.argeo.security.equinox/src/main/java/org/argeo/security/equinox/SpringLoginModule.java
index 03f5f35ed..dada34405 100644
--- a/security/plugins/org.argeo.security.equinox/src/main/java/org/argeo/security/equinox/SpringLoginModule.java
+++ b/security/plugins/org.argeo.security.equinox/src/main/java/org/argeo/security/equinox/SpringLoginModule.java
@@ -20,6 +20,8 @@ import org.springframework.security.providers.jaas.SecurityContextLoginModule;
 
 /** Login module which caches one subject per thread. */
 public class SpringLoginModule extends SecurityContextLoginModule {
+	final static String NODE_REPO_URI = "argeo.node.repo.uri";
+
 	private final static Log log = LogFactory.getLog(SpringLoginModule.class);
 
 	private AuthenticationManager authenticationManager;
@@ -30,6 +32,8 @@ public class SpringLoginModule extends SecurityContextLoginModule {
 
 	private Long waitBetweenFailedLoginAttempts = 5 * 1000l;
 
+	private Boolean remote = false;
+
 	public SpringLoginModule() {
 
 	}
@@ -64,12 +68,16 @@ public class SpringLoginModule extends SecurityContextLoginModule {
 			PasswordCallback passwordCallback = new PasswordCallback(
 					"Password", false);
 
-			// NameCallback urlCallback = new NameCallback("Site URL");
+			NameCallback urlCallback = new NameCallback("Site URL");
 
 			if (callbackHandler == null)
 				throw new LoginException("No call back handler available");
-			callbackHandler.handle(new Callback[] { nameCallback,
-					passwordCallback });
+			if (remote)
+				callbackHandler.handle(new Callback[] { nameCallback,
+						passwordCallback, urlCallback });
+			else
+				callbackHandler.handle(new Callback[] { nameCallback,
+						passwordCallback });
 
 			// Set user name and password
 			String username = nameCallback.getName();
@@ -80,12 +88,16 @@ public class SpringLoginModule extends SecurityContextLoginModule {
 			if (passwordCallback.getPassword() != null)
 				password = String.valueOf(passwordCallback.getPassword());
 
-			// String url = urlCallback.getName();
+			String url = remote ? urlCallback.getName() : null;
+			if (remote && (url == null || url.trim().equals("")))
+				// for convenience, may be removed in the future
+				url = System.getProperty(NODE_REPO_URI);
+
 			// TODO: set it via system properties
 			String workspace = null;
 
 			SiteAuthenticationToken credentials = new SiteAuthenticationToken(
-					username, password, null, workspace);
+					username, password, url, workspace);
 
 			Authentication authentication;
 			try {
@@ -135,4 +147,8 @@ public class SpringLoginModule extends SecurityContextLoginModule {
 			AuthenticationManager authenticationManager) {
 		this.authenticationManager = authenticationManager;
 	}
+
+	public void setRemote(Boolean remote) {
+		this.remote = remote;
+	}
 }