]> WPIA git - gigi.git/blob - src/org/cacert/gigi/Gigi.java
projects / gigi.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
Pages in a own package
[gigi.git] / src / org / cacert / gigi / Gigi.java
1 package org.cacert.gigi;
2
3 import java.io.IOException;
4 import java.security.cert.X509Certificate;
5 import java.util.HashMap;
6
7 import javax.servlet.ServletException;
8 import javax.servlet.http.HttpServlet;
9 import javax.servlet.http.HttpServletRequest;
10 import javax.servlet.http.HttpServletResponse;
11 import javax.servlet.http.HttpSession;
12
13 import org.cacert.gigi.pages.LoginPage;
14 import org.cacert.gigi.pages.MainPage;
15
16 public class Gigi extends HttpServlet {
17         private HashMap<String, Page> pages = new HashMap<String, Page>();
18
19         @Override
20         public void init() throws ServletException {
21                 pages.put("/login", new LoginPage());
22                 pages.put("/", new MainPage());
23                 super.init();
24         }
25
26         @Override
27         protected void service(HttpServletRequest req, HttpServletResponse resp)
28                         throws ServletException, IOException {
29                 X509Certificate[] cert = (X509Certificate[]) req
30                                 .getAttribute("javax.servlet.request.X509Certificate");
31                 HttpSession hs = req.getSession(false);
32                 if (hs == null || !((Boolean) hs.getAttribute("loggedin"))) {
33                         if (cert != null) {
34                                 tryAuthWithCertificate(req, cert[0]);
35                                 hs = req.getSession(false);
36                         }
37                 }
38                 if (hs != null && ((Boolean) hs.getAttribute("loggedin"))
39                                 && req.getPathInfo().equals("/login")) {
40                         resp.sendRedirect("/");
41                         return;
42                 }
43                 if (req.getMethod().equals("POST") && req.getPathInfo() != null
44                                 && req.getPathInfo().equals("/login")) {
45                         authWithUnpw(req);
46                         resp.sendRedirect("/");
47                         return;
48                 }
49                 if (req.getPathInfo() != null && req.getPathInfo().equals("/logout")) {
50                         if (hs != null) {
51                                 hs.setAttribute("loggedin", false);
52                                 hs.invalidate();
53                         }
54                         resp.sendRedirect("/");
55                         return;
56                 }
57
58                 if ((hs == null || !((Boolean) hs.getAttribute("loggedin")))
59                                 && !"/login".equals(req.getPathInfo())) {
60                         System.out.println(req.getPathInfo());
61                         resp.sendRedirect("/login");
62                         return;
63                 }
64                 if (pages.containsKey(req.getPathInfo())) {
65                         Page p = pages.get(req.getPathInfo());
66                         p.doGet(req, resp);
67                 } else {
68                         resp.sendError(404, "Page not found.");
69                 }
70
71         }
72
73         private void authWithUnpw(HttpServletRequest req) {
74                 String un = req.getParameter("username");
75                 String pw = req.getParameter("password");
76                 // TODO dummy password check if (un.equals(pw)) {
77                 HttpSession hs = req.getSession();
78                 hs.setAttribute("loggedin", true);
79         }
80
81         private void tryAuthWithCertificate(HttpServletRequest req,
82                         X509Certificate x509Certificate) {
83                 // TODO ckeck if certificate is valid
84                 HttpSession hs = req.getSession();
85                 hs.setAttribute("loggedin", true);
86         }
87 }
WPIA Certificate Web Issuance Platform