1 package org
.argeo
.cms
.servlet
;
3 import org
.argeo
.cms
.auth
.RemoteAuthRequest
;
4 import org
.argeo
.cms
.auth
.RemoteAuthResponse
;
6 /** Servlet context forcing authentication. */
7 public class PrivateWwwAuthServletContext
extends CmsServletContext
{
8 // TODO make it configurable
9 // private final String httpAuthRealm = "Argeo";
10 // private final boolean forceBasic = false;
12 protected boolean authIsRequired(RemoteAuthRequest remoteAuthRequest
,
13 RemoteAuthResponse remoteAuthResponse
) {
19 // protected LoginContext processUnauthorized(HttpServletRequest request, HttpServletResponse response) {
20 // askForWwwAuth(request, response);
24 // protected void askForWwwAuth(HttpServletRequest request, HttpServletResponse response) {
25 // // response.setHeader(HttpUtils.HEADER_WWW_AUTHENTICATE, "basic
26 // // realm=\"" + httpAuthRealm + "\"");
27 // if (SpnegoLoginModule.hasAcceptorCredentials() && !forceBasic)// SPNEGO
28 // response.setHeader(HttpHeader.WWW_AUTHENTICATE.getName(), HttpHeader.NEGOTIATE);
30 // response.setHeader(HttpHeader.WWW_AUTHENTICATE.getName(),
31 // HttpHeader.BASIC + " " + HttpHeader.REALM + "=\"" + httpAuthRealm + "\"");
33 // // response.setDateHeader("Date", System.currentTimeMillis());
34 // // response.setDateHeader("Expires", System.currentTimeMillis() + (24 *
35 // // 60 * 60 * 1000));
36 // // response.setHeader("Accept-Ranges", "bytes");
37 // // response.setHeader("Connection", "Keep-Alive");
38 // // response.setHeader("Keep-Alive", "timeout=5, max=97");
39 // // response.setContentType("text/html; charset=UTF-8");
40 // response.setStatus(401);