add a dummy login mechanism

author Felix Dörre <felix@dogcraft.de>

Fri, 20 Jun 2014 12:13:03 +0000 (14:13 +0200)

committer Felix Dörre <felix@dogcraft.de>

Sat, 21 Jun 2014 14:34:08 +0000 (16:34 +0200)
author Felix Dörre <felix@dogcraft.de>
Fri, 20 Jun 2014 12:13:03 +0000 (14:13 +0200)
committer Felix Dörre <felix@dogcraft.de>
Sat, 21 Jun 2014 14:34:08 +0000 (16:34 +0200)
diff --git a/src/org/cacert/gigi/Gigi.java b/src/org/cacert/gigi/Gigi.java

new file mode 100644 (file)

index 0000000..7aa26d8
--- /dev/null
+++ b/src/org/cacert/gigi/Gigi.java
@@ -0,0 +1,67 @@
+package org.cacert.gigi;
+
+import java.io.IOException;
+import java.security.cert.X509Certificate;
+
+import javax.servlet.ServletException;
+import javax.servlet.http.HttpServlet;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.servlet.http.HttpSession;
+
+public class Gigi extends HttpServlet {
+       @Override
+       protected void service(HttpServletRequest req, HttpServletResponse resp)
+                       throws ServletException, IOException {
+               X509Certificate[] cert = (X509Certificate[]) req
+                               .getAttribute("javax.servlet.request.X509Certificate");
+               HttpSession hs = req.getSession(false);
+               if (hs == null || !((Boolean) hs.getAttribute("loggedin"))) {
+                       if (cert != null) {
+                               tryAuthWithCertificate(req, cert[0]);
+                               hs = req.getSession(false);
+                       }
+               }
+               if (req.getMethod().equals("POST") && req.getPathInfo() != null
+                               && req.getPathInfo().equals("/login")) {
+                       authWithUnpw(req);
+                       resp.sendRedirect("/");
+                       return;
+               }
+               if (req.getPathInfo() != null && req.getPathInfo().equals("/logout")) {
+                       if (hs != null) {
+                               hs.setAttribute("loggedin", false);
+                               hs.invalidate();
+                       }
+                       authWithUnpw(req);
+                       resp.sendRedirect("/");
+                       return;
+               }
+
+               if (hs == null || !((Boolean) hs.getAttribute("loggedin"))) {
+                       resp.setContentType("text/html");
+                       resp.getWriter().println("Access denied. Sending login form.");
+                       resp.getWriter()
+                                       .println(
+                                                       "<form method='POST' action='/login'>"
+                                                                       + "<input type='text' name='username'>"
+                                                                       + "<input type='password' name='password'> <input type='submit' value='login'></form>");
+                       return;
+               }
+               resp.getWriter().println("Access granted.");
+
+       }
+       private void authWithUnpw(HttpServletRequest req) {
+               String un = req.getParameter("username");
+               String pw = req.getParameter("password");
+               // TODO dummy password check if (un.equals(pw)) {
+               HttpSession hs = req.getSession();
+               hs.setAttribute("loggedin", true);
+       }
+       private void tryAuthWithCertificate(HttpServletRequest req,
+                       X509Certificate x509Certificate) {
+               // TODO ckeck if certificate is valid
+               HttpSession hs = req.getSession();
+               hs.setAttribute("loggedin", true);
+       }
+}
diff --git a/src/org/cacert/gigi/Launcher.java b/src/org/cacert/gigi/Launcher.java

index 6918074774d0d696c177224f06f511c4a1647392..d0c9a44cb8a4ce4bce90705245005bf37b3a0c11 100644 (file)
--- a/src/org/cacert/gigi/Launcher.java
+++ b/src/org/cacert/gigi/Launcher.java
@@ -42,9 +42,10 @@ public class Launcher {
                 connector.setHost("127.0.0.1");
                 connector.setPort(443);
                 s.setConnectors(new Connector[]{connector});
                 connector.setHost("127.0.0.1");
                 connector.setPort(443);
                 s.setConnectors(new Connector[]{connector});
-               ServletContextHandler sh = new ServletContextHandler();
+               ServletContextHandler sh = new ServletContextHandler(
+                               ServletContextHandler.SESSIONS);
                 s.setHandler(sh);
                 s.setHandler(sh);
-               sh.addServlet(new ServletHolder(new TestServlet()), "/");
+               sh.addServlet(new ServletHolder(new Gigi()), "/*");
                 s.start();
                 if (connector.getPort() <= 1024
                                 && !System.getProperty("os.name").toLowerCase().contains("win")) {
                 s.start();
                 if (connector.getPort() <= 1024
                                 && !System.getProperty("os.name").toLowerCase().contains("win")) {
author	Felix Dörre <felix@dogcraft.de>
	Fri, 20 Jun 2014 12:13:03 +0000 (14:13 +0200)
committer	Felix Dörre <felix@dogcraft.de>
	Sat, 21 Jun 2014 14:34:08 +0000 (16:34 +0200)
src/org/cacert/gigi/Gigi.java	[new file with mode: 0644]	patch \| blob
src/org/cacert/gigi/Launcher.java		patch \| blob \| history