package org.argeo.cms.util;
-import static org.argeo.cms.internal.kernel.KernelConstants.SPRING_SECURITY_CONTEXT_KEY;
-
+import static org.argeo.cms.auth.AuthConstants.ACCESS_CONTROL_CONTEXT;
+import static org.argeo.cms.auth.AuthConstants.LOGIN_CONTEXT_ANONYMOUS;
+import static org.argeo.cms.auth.AuthConstants.LOGIN_CONTEXT_USER;
+
+import java.io.IOException;
+import java.security.AccessController;
+import java.security.PrivilegedAction;
+
+import javax.security.auth.Subject;
+import javax.security.auth.callback.Callback;
+import javax.security.auth.callback.CallbackHandler;
+import javax.security.auth.callback.NameCallback;
+import javax.security.auth.callback.PasswordCallback;
+import javax.security.auth.callback.UnsupportedCallbackException;
+import javax.security.auth.login.LoginContext;
+import javax.security.auth.login.LoginException;
+import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpSession;
-import org.argeo.cms.CmsLogin;
+import org.argeo.cms.CmsException;
import org.argeo.cms.CmsMsg;
-import org.argeo.cms.CmsSession;
import org.argeo.cms.CmsStyles;
+import org.argeo.cms.CmsView;
+import org.argeo.cms.auth.AuthConstants;
+import org.argeo.cms.auth.CurrentUser;
import org.eclipse.rap.rwt.RWT;
import org.eclipse.swt.SWT;
import org.eclipse.swt.events.MouseAdapter;
import org.eclipse.swt.events.ShellEvent;
import org.eclipse.swt.events.TraverseEvent;
import org.eclipse.swt.events.TraverseListener;
+import org.eclipse.swt.graphics.Point;
+import org.eclipse.swt.graphics.Rectangle;
import org.eclipse.swt.layout.GridData;
import org.eclipse.swt.layout.GridLayout;
+import org.eclipse.swt.widgets.Composite;
import org.eclipse.swt.widgets.Control;
+import org.eclipse.swt.widgets.Display;
import org.eclipse.swt.widgets.Label;
import org.eclipse.swt.widgets.Shell;
import org.eclipse.swt.widgets.Text;
-import org.springframework.security.core.context.SecurityContextHolder;
/** The site-related user menu */
-public class UserMenu extends Shell implements CmsStyles {
- private static final long serialVersionUID = -5788157651532106301L;
-
- private CmsLogin cmsLogin;
- private String username = null;
-
- public UserMenu(CmsLogin cmsLogin, Control source) {
- super(source.getDisplay(), SWT.NO_TRIM | SWT.BORDER | SWT.ON_TOP);
- this.cmsLogin = cmsLogin;
-
- setData(RWT.CUSTOM_VARIANT, CMS_USER_MENU);
-
- username = SecurityContextHolder.getContext().getAuthentication()
- .getName();
- if (username.equals("anonymous")) {
- username = null;
- anonymousUi();
+public class UserMenu implements CmsStyles, CallbackHandler {
+ private final CmsView cmsView;
+ private final Shell shell;
+
+ private Text username, password;
+
+ public UserMenu(Control source, boolean autoclose) {
+ shell = new Shell(source.getDisplay(), SWT.NO_TRIM | SWT.BORDER
+ | SWT.ON_TOP);
+ shell.setData(RWT.CUSTOM_VARIANT, CMS_USER_MENU);
+ // cmsView = (CmsView) shell.getDisplay().getData(CmsView.KEY);
+ cmsView = CmsUtils.getCmsView();
+
+ if (cmsView != null) {
+ String username = CurrentUser.getUsername(CmsUtils.getCmsView()
+ .getSubject());
+ if (username == null
+ || username.equalsIgnoreCase(AuthConstants.ROLE_ANONYMOUS)) {
+ username = null;
+ anonymousUi(shell);
+ } else {
+ userUi(shell);
+ }
} else {
- userUi();
+ anonymousUi(shell);
}
- pack();
- layout();
- setLocation(source.toDisplay(source.getSize().x - getSize().x,
- source.getSize().y));
-
- addShellListener(new ShellAdapter() {
- private static final long serialVersionUID = 5178980294808435833L;
+ shell.pack();
+ shell.layout();
+ if (autoclose)// popup
+ shell.setLocation(source.toDisplay(
+ source.getSize().x - shell.getSize().x, source.getSize().y));
+ else // centered
+ {
+ Rectangle shellBounds = Display.getCurrent().getBounds();// RAP
+ Point dialogSize = shell.getSize();
+ int x = shellBounds.x + (shellBounds.width - dialogSize.x) / 2;
+ int y = shellBounds.y + (shellBounds.height - dialogSize.y) / 2;
+ shell.setLocation(x, y);
- @Override
- public void shellDeactivated(ShellEvent e) {
- close();
- dispose();
- }
+ }
+ if (autoclose)
+ shell.addShellListener(new ShellAdapter() {
+ private static final long serialVersionUID = 5178980294808435833L;
- });
+ @Override
+ public void shellDeactivated(ShellEvent e) {
+ closeShell();
+ }
+ });
+ shell.open();
- open();
+ }
+ protected void closeShell() {
+ shell.close();
+ shell.dispose();
}
- protected void userUi() {
- setLayout(new GridLayout());
+ protected void userUi(Composite parent) {
+ parent.setLayout(CmsUtils.noSpaceGridLayout());
+ Composite c = new Composite(parent, SWT.NONE);
+ c.setLayout(new GridLayout());
+ c.setLayoutData(CmsUtils.fillAll());
- Label l = new Label(this, SWT.NONE);
- l.setData(RWT.CUSTOM_VARIANT, CMS_USER_MENU_ITEM);
- l.setData(RWT.MARKUP_ENABLED, true);
- l.setLayoutData(CmsUtils.fillWidth());
- l.setText("<b>" + username + "</b>");
+ specificUserUi(c);
- final CmsSession cmsSession = (CmsSession) getDisplay().getData(
- CmsSession.KEY);
- l = new Label(this, SWT.NONE);
+ Label l = new Label(c, SWT.NONE);
l.setData(RWT.CUSTOM_VARIANT, CMS_USER_MENU_ITEM);
l.setText(CmsMsg.logout.lead());
GridData lData = CmsUtils.fillWidth();
private static final long serialVersionUID = 6444395812777413116L;
public void mouseDown(MouseEvent e) {
- SecurityContextHolder.getContext().setAuthentication(null);
- HttpSession httpSession = RWT.getRequest().getSession();
- httpSession.removeAttribute(SPRING_SECURITY_CONTEXT_KEY);
- close();
- dispose();
- cmsSession.authChange();
+ logout();
}
});
}
- protected void anonymousUi() {
- Integer textWidth = 150;
- setData(RWT.CUSTOM_VARIANT, CMS_USER_MENU);
- setLayout(new GridLayout(2, false));
+ /** To be overridden */
+ protected void specificUserUi(Composite parent) {
+
+ }
+
+ protected void anonymousUi(Composite parent) {
+ parent.setLayout(CmsUtils.noSpaceGridLayout());
+
+ // We need a composite for the traversal
+ Composite c = new Composite(parent, SWT.NONE);
+ c.setLayout(new GridLayout());
+ c.setLayoutData(CmsUtils.fillAll());
+
+ Integer textWidth = 120;
+ parent.setData(RWT.CUSTOM_VARIANT, CMS_USER_MENU);
- new Label(this, SWT.NONE).setText(CmsMsg.username.lead());
- final Text username = new Text(this, SWT.BORDER);
+ // new Label(this, SWT.NONE).setText(CmsMsg.username.lead());
+ username = new Text(c, SWT.BORDER);
+ username.setMessage(CmsMsg.username.lead());
username.setData(RWT.CUSTOM_VARIANT, CMS_LOGIN_DIALOG_USERNAME);
GridData gd = CmsUtils.fillWidth();
gd.widthHint = textWidth;
username.setLayoutData(gd);
- new Label(this, SWT.NONE).setText(CmsMsg.password.lead());
- final Text password = new Text(this, SWT.BORDER | SWT.PASSWORD);
+ // new Label(this, SWT.NONE).setText(CmsMsg.password.lead());
+ password = new Text(c, SWT.BORDER | SWT.PASSWORD);
+ password.setMessage(CmsMsg.password.lead());
password.setData(RWT.CUSTOM_VARIANT, CMS_LOGIN_DIALOG_PASSWORD);
gd = CmsUtils.fillWidth();
gd.widthHint = textWidth;
password.setLayoutData(gd);
- // Listeners
TraverseListener tl = new TraverseListener() {
private static final long serialVersionUID = -1158892811534971856L;
public void keyTraversed(TraverseEvent e) {
if (e.detail == SWT.TRAVERSE_RETURN)
- login(username.getText(), password.getTextChars());
+ login();
}
};
+ c.addTraverseListener(tl);
username.addTraverseListener(tl);
password.addTraverseListener(tl);
+ parent.setTabList(new Control[] { c });
+ c.setTabList(new Control[] { username, password });
+ c.setFocus();
+ }
+
+ protected void login() {
+ Subject subject = cmsView.getSubject();
+ try {
+ //
+ // LOGIN
+ //
+ new LoginContext(LOGIN_CONTEXT_ANONYMOUS, subject).logout();
+ LoginContext loginContext = new LoginContext(LOGIN_CONTEXT_USER,
+ subject, this);
+ loginContext.login();
+
+ // save context in session
+ final HttpSession httpSession = RWT.getRequest().getSession();
+ Subject.doAs(subject, new PrivilegedAction<Void>() {
+
+ @Override
+ public Void run() {
+ httpSession.setAttribute(ACCESS_CONTROL_CONTEXT,
+ AccessController.getContext());
+ return null;
+ }
+ });
+ } catch (LoginException e1) {
+ try {
+ new LoginContext(LOGIN_CONTEXT_ANONYMOUS, subject).login();
+ } catch (LoginException e) {
+ throw new CmsException("Cannot authenticate anonymous", e1);
+ }
+ throw new CmsException("Cannot authenticate", e1);
+ }
+ closeShell();
+ cmsView.authChange();
+ }
+
+ protected void logout() {
+ Subject subject = cmsView.getSubject();
+ try {
+ //
+ // LOGOUT
+ //
+ new LoginContext(LOGIN_CONTEXT_USER, subject).logout();
+ new LoginContext(LOGIN_CONTEXT_ANONYMOUS, subject).login();
+
+ HttpServletRequest httpRequest = RWT.getRequest();
+ HttpSession httpSession = httpRequest.getSession();
+ httpSession.setAttribute(ACCESS_CONTROL_CONTEXT, null);
+ } catch (LoginException e1) {
+ throw new CmsException("Cannot authenticate anonymous", e1);
+ }
+ closeShell();
+ cmsView.navigateTo("~");
+ cmsView.authChange();
+ }
+
+ @Override
+ public void handle(Callback[] callbacks) throws IOException,
+ UnsupportedCallbackException {
+ ((NameCallback) callbacks[0]).setName(username.getText());
+ ((PasswordCallback) callbacks[1]).setPassword(password.getTextChars());
}
- protected void login(String username, char[] password) {
- CmsSession cmsSession = (CmsSession) getDisplay().getData(
- CmsSession.KEY);
- cmsLogin.logInWithPassword(username, password);
- close();
- dispose();
- // refreshUi(source.getParent());
- cmsSession.authChange();
+ public Shell getShell() {
+ return shell;
}
}