- protected void service(HttpServletRequest req, HttpServletResponse resp)
- throws ServletException, IOException {
- X509Certificate[] cert = (X509Certificate[]) req
- .getAttribute("javax.servlet.request.X509Certificate");
- HttpSession hs = req.getSession(false);
- if (hs == null || !((Boolean) hs.getAttribute("loggedin"))) {
- if (cert != null) {
- tryAuthWithCertificate(req, cert[0]);
- hs = req.getSession(false);
- }
- }
- if (req.getMethod().equals("POST") && req.getPathInfo() != null
- && req.getPathInfo().equals("/login")) {
- authWithUnpw(req);
- resp.sendRedirect("/");
+ public void init() throws ServletException {
+ pages.put("/login", new LoginPage("CACert - Login"));
+ pages.put("/", new MainPage("CACert - Home"));
+ pages.put("/secure", new TestSecure());
+ pages.put(Verify.PATH, new Verify());
+ pages.put(AssurePage.PATH + "/*", new AssurePage());
+ pages.put(MailCertificates.PATH, new MailCertificates());
+ pages.put(MyDetails.PATH, new MyDetails());
+ pages.put(ChangePasswordPage.PATH, new ChangePasswordPage());
+ pages.put(RegisterPage.PATH, new RegisterPage());
+ pages.put(MailCertificateAdd.PATH, new MailCertificateAdd());
+ pages.put(MailOverview.DEFAULT_PATH, new MailOverview(
+ "My email addresses"));
+ pages.put(MailAdd.DEFAULT_PATH, new MailAdd("Add new email"));
+ baseTemplate = new Template(new InputStreamReader(
+ Gigi.class.getResourceAsStream("Gigi.templ")));
+ m = new Menu("Certificates", "cert", new MenuItem(
+ MailOverview.DEFAULT_PATH, "Emails"), new MenuItem("",
+ "Client Certificates"), new MenuItem("", "Domains"),
+ new MenuItem("", "Server Certificates"));
+ super.init();
+
+ }
+ @Override
+ protected void service(final HttpServletRequest req,
+ final HttpServletResponse resp) throws ServletException,
+ IOException {
+ addXSSHeaders(resp);
+ if (req.getHeader("Origin") != null) {
+ resp.getWriter().println("No cross domain access allowed.");