InterruptedException {
Locale selectedLocale = null;
// multi locale
- if (availableLocales != null && !availableLocales.trim().equals("")) {
- LocaleCallback localeCallback = new LocaleCallback(availableLocales);
- callbackHandler.handle(new Callback[] { localeCallback });
- selectedLocale = localeCallback.getSelectedLocale();
- } else {
- callbackHandler.handle(new Callback[] {});
- }
+ if (callbackHandler != null)
+ if (availableLocales != null && !availableLocales.trim().equals("")) {
+ LocaleCallback localeCallback = new LocaleCallback(
+ availableLocales);
+ callbackHandler.handle(new Callback[] { localeCallback });
+ selectedLocale = localeCallback.getSelectedLocale();
+ } else {
+ callbackHandler.handle(new Callback[] {});
+ }
List<GrantedAuthorityPrincipal> authorities = Collections
.singletonList(new GrantedAuthorityPrincipal(
KernelHeader.ROLE_ANONYMOUS));
AnonymousAuthenticationToken anonymousToken = new AnonymousAuthenticationToken(
- Activator.getSystemKey(), null, authorities);
+ Activator.getSystemKey(), KernelHeader.USERNAME_ANONYMOUS,
+ authorities);
Authentication auth = getAuthenticationManager().authenticate(
anonymousToken);
*/
package org.argeo.security.ui.rap;
+import java.security.PrivilegedAction;
+
+import javax.security.auth.Subject;
+import javax.security.auth.login.LoginContext;
+import javax.security.auth.login.LoginException;
+
+import org.apache.commons.logging.Log;
+import org.apache.commons.logging.LogFactory;
+import org.argeo.ArgeoException;
+import org.argeo.cms.KernelHeader;
+import org.argeo.cms.auth.ArgeoLoginContext;
import org.eclipse.rap.rwt.RWT;
import org.eclipse.rap.rwt.application.EntryPoint;
+import org.eclipse.swt.widgets.Display;
+import org.eclipse.ui.PlatformUI;
/**
* RAP entry point which authenticates the subject as anonymous, for public
* unauthenticated access.
*/
public class AnonymousEntryPoint implements EntryPoint {
- // private final static Log log =
- // LogFactory.getLog(AnonymousEntryPoint.class);
+ private final static Log log = LogFactory.getLog(AnonymousEntryPoint.class);
/**
* How many seconds to wait before invalidating the session if the user has
* not yet logged in.
*/
- private Integer loginTimeout = 1 * 60;
+ private Integer sessionTimeout = 5 * 60;
@Override
public int createUI() {
- // Short login timeout so that the modal dialog login doesn't hang
- // around too long
- RWT.getRequest().getSession().setMaxInactiveInterval(loginTimeout);
+ RWT.getRequest().getSession().setMaxInactiveInterval(sessionTimeout);
// if (log.isDebugEnabled())
// log.debug("Anonymous THREAD=" + Thread.currentThread().getId()
// + ", sessionStore=" + RWT.getSessionStore().getId());
- // create display
- // final Display display = PlatformUI.createDisplay();
+ final Display display = PlatformUI.createDisplay();
+ Subject subject = new Subject();
+
+ final LoginContext loginContext;
+ try {
+ loginContext = new ArgeoLoginContext(
+ KernelHeader.LOGIN_CONTEXT_ANONYMOUS, subject);
+ loginContext.login();
+ } catch (LoginException e1) {
+ throw new ArgeoException("Cannot initialize login context", e1);
+ }
+
+ // identify after successful login
+ if (log.isDebugEnabled())
+ log.debug("Authenticated " + subject);
+ final String username = subject.getPrincipals().iterator().next()
+ .getName();
+
+ // Logout callback when the display is disposed
+ display.disposeExec(new Runnable() {
+ public void run() {
+ log.debug("Display disposed");
+ logout(loginContext, username);
+ }
+ });
- // log in
- // final ILoginContext loginContext = SecureRapActivator
- // .createLoginContext(SecureRapActivator.CONTEXT_SPRING_ANONYMOUS);
- // Subject subject = null;
- // try {
- // loginContext.login();
- // subject = loginContext.getSubject();
- // } catch (LoginException e) {
- // throw new ArgeoException(
- // "Unexpected exception during authentication", e);
- // }
- //
- // // identify after successful login
- // if (log.isDebugEnabled())
- // log.debug("Authenticated " + subject);
- // final String username = subject.getPrincipals().iterator().next()
- // .getName();
- //
- // // Once the user is logged in, she can have a longer session timeout
- // RWT.getRequest().getSession().setMaxInactiveInterval(sessionTimeout);
//
- // // Logout callback when the display is disposed
- // display.disposeExec(new Runnable() {
- // public void run() {
- // log.debug("Display disposed");
- // logout(loginContext, username);
- // }
- // });
+ // RUN THE WORKBENCH
//
- // //
- // // RUN THE WORKBENCH
- // //
- // Integer returnCode = null;
- // try {
- // returnCode = Subject.doAs(subject, new PrivilegedAction<Integer>() {
- // public Integer run() {
- // RapWorkbenchAdvisor workbenchAdvisor = new RapWorkbenchAdvisor(
- // null);
- // int result = PlatformUI.createAndRunWorkbench(display,
- // workbenchAdvisor);
- // return new Integer(result);
- // }
- // });
- // logout(loginContext, username);
- // } finally {
- // display.dispose();
- // }
+ Integer returnCode = null;
+ try {
+ returnCode = Subject.doAs(subject, new PrivilegedAction<Integer>() {
+ public Integer run() {
+ RapWorkbenchAdvisor workbenchAdvisor = new RapWorkbenchAdvisor(
+ null);
+ int result = PlatformUI.createAndRunWorkbench(display,
+ workbenchAdvisor);
+ return new Integer(result);
+ }
+ });
+ logout(loginContext, username);
+ if (log.isTraceEnabled())
+ log.trace("Return code " + returnCode);
+ } finally {
+ display.dispose();
+ }
return 1;
}
- // private void logout(ILoginContext secureContext, String username) {
- // try {
- // secureContext.logout();
- // log.info("Logged out " + (username != null ? username : "")
- // + " (THREAD=" + Thread.currentThread().getId() + ")");
- // } catch (LoginException e) {
- // log.error("Erorr when logging out", e);
- // }
- // }
+ private void logout(LoginContext loginContext, String username) {
+ try {
+ loginContext.logout();
+ log.info("Logged out " + (username != null ? username : "")
+ + " (THREAD=" + Thread.currentThread().getId() + ")");
+ } catch (LoginException e) {
+ log.error("Erorr when logging out", e);
+ }
+ }
}
SecurityContextHolder
.setContext((SecurityContext) contextFromSessionObject);
- // if (log.isDebugEnabled())
- // log.debug("THREAD=" + Thread.currentThread().getId()
- // + ", sessionStore=" + RWT.getSessionStore().getId()
- // + ", remote user=" + httpRequest.getRemoteUser());
-
- // create display
final Display display = PlatformUI.createDisplay();
Subject subject = new Subject();
- // log in
- // Thread.currentThread().setContextClassLoader(
- // getClass().getClassLoader());
final LoginContext loginContext;
try {
CallbackHandler callbackHandler = new DefaultLoginDialog(
tryLogin: while (subject.getPrincipals(Authentication.class).size() == 0) {
try {
loginContext.login();
- // if () {
- // throw new ArgeoException("Login failed");
- // }
-
if (subject.getPrincipals(Authentication.class).size() == 0)
throw new ArgeoException("Login succeeded but no auth");// fatal
if (httpSession.getAttribute(SPRING_SECURITY_CONTEXT_KEY) == null)
httpSession.setAttribute(SPRING_SECURITY_CONTEXT_KEY,
SecurityContextHolder.getContext());
+
// add thread locale to RWT session
if (log.isTraceEnabled())
log.trace("Locale " + LocaleUtils.threadLocale.get());
RWT.setLocale(LocaleUtils.threadLocale.get());
- // Once the user is logged in, longer session timeout
+ // once the user is logged in, longer session timeout
RWT.getRequest().getSession()
.setMaxInactiveInterval(sessionTimeout);
projects / lgpl / argeo-commons.git / commitdiff