1 package org.cacert.gigi;
3 import java.io.BufferedReader;
5 import java.io.FileInputStream;
6 import java.io.IOException;
7 import java.io.InputStreamReader;
8 import java.security.cert.X509Certificate;
9 import java.util.Calendar;
10 import java.util.HashMap;
12 import javax.servlet.ServletException;
13 import javax.servlet.http.HttpServlet;
14 import javax.servlet.http.HttpServletRequest;
15 import javax.servlet.http.HttpServletResponse;
16 import javax.servlet.http.HttpSession;
18 import org.cacert.gigi.pages.LoginPage;
19 import org.cacert.gigi.pages.MainPage;
20 import org.cacert.gigi.pages.Page;
21 import org.eclipse.jetty.util.log.Log;
23 public class Gigi extends HttpServlet {
24 private static final long serialVersionUID = -6386785421902852904L;
25 private String[] baseTemplate;
26 private HashMap<String, Page> pages = new HashMap<String, Page>();
29 public void init() throws ServletException {
30 pages.put("/login", new LoginPage("CACert - Login"));
31 pages.put("/", new MainPage("CACert - Home"));
34 BufferedReader reader = new BufferedReader(new InputStreamReader(
35 new FileInputStream(new File("templates/base.html"))));
37 while ((tmp = reader.readLine()) != null) {
40 baseTemplate = templ.split("\\$content\\$");
41 } catch (Exception e) {
42 Log.getLogger(Gigi.class).warn("Error loading template!", e);
49 protected void service(HttpServletRequest req, HttpServletResponse resp)
50 throws ServletException, IOException {
51 X509Certificate[] cert = (X509Certificate[]) req
52 .getAttribute("javax.servlet.request.X509Certificate");
53 HttpSession hs = req.getSession(false);
54 if (hs == null || !((Boolean) hs.getAttribute("loggedin"))) {
56 tryAuthWithCertificate(req, cert[0]);
57 hs = req.getSession(false);
60 if (hs != null && ((Boolean) hs.getAttribute("loggedin"))
61 && req.getPathInfo().equals("/login")) {
62 resp.sendRedirect("/");
65 if (req.getMethod().equals("POST") && req.getPathInfo() != null
66 && req.getPathInfo().equals("/login")) {
68 resp.sendRedirect("/");
71 if (req.getPathInfo() != null && req.getPathInfo().equals("/logout")) {
73 hs.setAttribute("loggedin", false);
76 resp.sendRedirect("/");
80 if ((hs == null || !((Boolean) hs.getAttribute("loggedin")))
81 && !"/login".equals(req.getPathInfo())) {
82 System.out.println(req.getPathInfo());
83 resp.sendRedirect("/login");
86 if (pages.containsKey(req.getPathInfo())) {
87 String b0 = baseTemplate[0];
88 Page p = pages.get(req.getPathInfo());
89 b0 = makeDynTempl(b0, p);
90 resp.setContentType("text/html");
91 resp.getWriter().print(b0);
93 String b1 = baseTemplate[1];
94 b1 = makeDynTempl(b1, p);
95 resp.getWriter().print(b1);
97 resp.sendError(404, "Page not found.");
102 private String makeDynTempl(String in, Page p) {
103 int year = Calendar.getInstance().get(Calendar.YEAR);
104 in = in.replaceAll("\\$title\\$", p.getTitle());
105 in = in.replaceAll("\\$year\\$", year + "");
108 private void authWithUnpw(HttpServletRequest req) {
109 String un = req.getParameter("username");
110 String pw = req.getParameter("password");
111 // TODO dummy password check if (un.equals(pw)) {
112 HttpSession hs = req.getSession();
113 hs.setAttribute("loggedin", true);
116 private void tryAuthWithCertificate(HttpServletRequest req,
117 X509Certificate x509Certificate) {
118 // TODO ckeck if certificate is valid
119 HttpSession hs = req.getSession();
120 hs.setAttribute("loggedin", true);