src/org/cacert/gigi/Gigi.java

   1 package org.cacert.gigi;
   2
   3 import java.io.BufferedReader;
   4 import java.io.File;
   5 import java.io.FileInputStream;
   6 import java.io.IOException;
   7 import java.io.InputStreamReader;
   8 import java.security.cert.X509Certificate;
   9 import java.util.Calendar;
  10 import java.util.HashMap;
  11
  12 import javax.servlet.ServletException;
  13 import javax.servlet.http.HttpServlet;
  14 import javax.servlet.http.HttpServletRequest;
  15 import javax.servlet.http.HttpServletResponse;
  16 import javax.servlet.http.HttpSession;
  17
  18 import org.cacert.gigi.pages.LoginPage;
  19 import org.cacert.gigi.pages.MainPage;
  20 import org.cacert.gigi.pages.Page;
  21 import org.eclipse.jetty.util.log.Log;
  22
  23 public class Gigi extends HttpServlet {
  24         private static final long serialVersionUID = -6386785421902852904L;
  25         private String[] baseTemplate;
  26         private HashMap<String, Page> pages = new HashMap<String, Page>();
  27
  28         @Override
  29         public void init() throws ServletException {
  30                 pages.put("/login", new LoginPage("CACert - Login"));
  31                 pages.put("/", new MainPage("CACert - Home"));
  32                 String templ = "";
  33                 try {
  34                         BufferedReader reader = new BufferedReader(new InputStreamReader(
  35                                         new FileInputStream(new File("templates/base.html"))));
  36                         String tmp;
  37                         while ((tmp = reader.readLine()) != null) {
  38                                 templ += tmp;
  39                         }
  40                         baseTemplate = templ.split("\\$content\\$");
  41                 } catch (Exception e) {
  42                         Log.getLogger(Gigi.class).warn("Error loading template!", e);
  43                 }
  44                 super.init();
  45
  46         }
  47
  48         @Override
  49         protected void service(HttpServletRequest req, HttpServletResponse resp)
  50                         throws ServletException, IOException {
  51                 X509Certificate[] cert = (X509Certificate[]) req
  52                                 .getAttribute("javax.servlet.request.X509Certificate");
  53                 HttpSession hs = req.getSession(false);
  54                 if (hs == null || !((Boolean) hs.getAttribute("loggedin"))) {
  55                         if (cert != null) {
  56                                 tryAuthWithCertificate(req, cert[0]);
  57                                 hs = req.getSession(false);
  58                         }
  59                 }
  60                 if (hs != null && ((Boolean) hs.getAttribute("loggedin"))
  61                                 && req.getPathInfo().equals("/login")) {
  62                         resp.sendRedirect("/");
  63                         return;
  64                 }
  65                 if (req.getMethod().equals("POST") && req.getPathInfo() != null
  66                                 && req.getPathInfo().equals("/login")) {
  67                         authWithUnpw(req);
  68                         resp.sendRedirect("/");
  69                         return;
  70                 }
  71                 if (req.getPathInfo() != null && req.getPathInfo().equals("/logout")) {
  72                         if (hs != null) {
  73                                 hs.setAttribute("loggedin", false);
  74                                 hs.invalidate();
  75                         }
  76                         resp.sendRedirect("/");
  77                         return;
  78                 }
  79
  80                 if ((hs == null || !((Boolean) hs.getAttribute("loggedin")))
  81                                 && !"/login".equals(req.getPathInfo())) {
  82                         System.out.println(req.getPathInfo());
  83                         resp.sendRedirect("/login");
  84                         return;
  85                 }
  86                 if (pages.containsKey(req.getPathInfo())) {
  87                         String b0 = baseTemplate[0];
  88                         Page p = pages.get(req.getPathInfo());
  89                         b0 = makeDynTempl(b0, p);
  90                         resp.getWriter().print(b0);
  91                         p.doGet(req, resp);
  92                         String b1 = baseTemplate[1];
  93                         b1 = makeDynTempl(b1, p);
  94                         resp.getWriter().print(b1);
  95                 } else {
  96                         resp.sendError(404, "Page not found.");
  97                 }
  98
  99         }
 100
 101         private String makeDynTempl(String in, Page p) {
 102                 int year = Calendar.getInstance().get(Calendar.YEAR);
 103                 in = in.replaceAll("\\$title\\$", p.getTitle());
 104                 in = in.replaceAll("\\$year\\$", year + "");
 105                 return in;
 106         }
 107         private void authWithUnpw(HttpServletRequest req) {
 108                 String un = req.getParameter("username");
 109                 String pw = req.getParameter("password");
 110                 // TODO dummy password check if (un.equals(pw)) {
 111                 HttpSession hs = req.getSession();
 112                 hs.setAttribute("loggedin", true);
 113         }
 114
 115         private void tryAuthWithCertificate(HttpServletRequest req,
 116                         X509Certificate x509Certificate) {
 117                 // TODO ckeck if certificate is valid
 118                 HttpSession hs = req.getSession();
 119                 hs.setAttribute("loggedin", true);
 120         }
 121 }