Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-06-27 06:12:27 +00:00
Code Issues Packages Projects Releases Wiki Activity

Removed unnecessary casts, corrected incomplete comment and reformatted code.

Browse Source
This commit is contained in:
Luke Taylor 2007-10-19 11:53:26 +00:00
parent 380b22f50d
commit 28d04c1759
1 changed files with 137 additions and 161 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

298
core/src/main/java/org/springframework/security/ui/webapp/AuthenticationProcessingFilterEntryPoint.java
View File

@ -61,205 +61,181 @@ import javax.servlet.http.HttpServletResponse;
* @author colin sampaleanu * @author colin sampaleanu
* @author Omri Spector * @author Omri Spector
* @version $Id: AuthenticationProcessingFilterEntryPoint.java 1873 2007-05-25 * @version $Id: AuthenticationProcessingFilterEntryPoint.java 1873 2007-05-25
* 03:21:17Z benalex $ * 03:21:17Z benalex $
*/ */
public class AuthenticationProcessingFilterEntryPoint implements AuthenticationEntryPoint, InitializingBean { public class AuthenticationProcessingFilterEntryPoint implements AuthenticationEntryPoint, InitializingBean {
// ~ Static fields/initializers //~ Static fields/initializers =====================================================================================
// =====================================================================================
private static final Log logger = LogFactory.getLog(AuthenticationProcessingFilterEntryPoint.class); private static final Log logger = LogFactory.getLog(AuthenticationProcessingFilterEntryPoint.class);
// ~ Instance fields //~ Instance fields ================================================================================================
// ================================================================================================
private PortMapper portMapper = new PortMapperImpl(); private PortMapper portMapper = new PortMapperImpl();
private PortResolver portResolver = new PortResolverImpl(); private PortResolver portResolver = new PortResolverImpl();
private String loginFormUrl; private String loginFormUrl;
private boolean forceHttps = false; private boolean forceHttps = false;
private boolean serverSideRedirect = false; private boolean serverSideRedirect = false;
// ~ Methods //~ Methods ========================================================================================================
// ========================================================================================================
public void afterPropertiesSet() throws Exception { public void afterPropertiesSet() throws Exception {
Assert.hasLength(loginFormUrl, "loginFormUrl must be specified"); Assert.hasLength(loginFormUrl, "loginFormUrl must be specified");
Assert.notNull(portMapper, "portMapper must be specified"); Assert.notNull(portMapper, "portMapper must be specified");
Assert.notNull(portResolver, "portResolver must be specified"); Assert.notNull(portResolver, "portResolver must be specified");
} }
/** /**
* Allows subclasses to modify the login form URL that should be applicable * Allows subclasses to modify the login form URL that should be applicable for a given request.
* for a given request. *
* * @param request the request
* @param request the request * @param response the response
* @param response the response * @param exception the exception
* @param exception the exception * @return the URL (cannot be null or empty; defaults to {@link #getLoginFormUrl()})
* @return the URL (cannot be null or empty; defaults to */
* {@link #getLoginFormUrl()}) protected String determineUrlToUseForThisRequest(HttpServletRequest request, HttpServletResponse response,
*/ AuthenticationException exception) {
protected String determineUrlToUseForThisRequest(HttpServletRequest request, HttpServletResponse response,
AuthenticationException exception) {
return getLoginFormUrl();
}
public void commence(ServletRequest request, ServletResponse response, AuthenticationException authException) return getLoginFormUrl();
throws IOException, ServletException { }
HttpServletRequest req = (HttpServletRequest) request;
HttpServletResponse resp = (HttpServletResponse) response;
String scheme = request.getScheme();
String serverName = request.getServerName();
int serverPort = portResolver.getServerPort(request);
String contextPath = req.getContextPath();
boolean inHttp = "http".equals(scheme.toLowerCase()); public void commence(ServletRequest request, ServletResponse response, AuthenticationException authException)
boolean inHttps = "https".equals(scheme.toLowerCase()); throws IOException, ServletException {
boolean includePort = true; HttpServletRequest httpRequest = (HttpServletRequest) request;
HttpServletResponse httpResponse = (HttpServletResponse) response;
String scheme = request.getScheme();
String serverName = request.getServerName();
int serverPort = portResolver.getServerPort(request);
String contextPath = httpRequest.getContextPath();
String redirectUrl = null; boolean inHttp = "http".equals(scheme.toLowerCase());
boolean doForceHttps = false; boolean inHttps = "https".equals(scheme.toLowerCase());
Integer httpsPort = null; boolean includePort = true;
boolean doForceHttps = false;
Integer httpsPort = null;
if (inHttp && (serverPort == 80)) { if (inHttp && (serverPort == 80)) {
includePort = false; includePort = false;
} } else if (inHttps && (serverPort == 443)) {
else if (inHttps && (serverPort == 443)) { includePort = false;
includePort = false; }
}
if (forceHttps && inHttp) { if (forceHttps && inHttp) {
httpsPort = (Integer) portMapper.lookupHttpsPort(new Integer(serverPort)); httpsPort = portMapper.lookupHttpsPort(new Integer(serverPort));
if (httpsPort != null) { if (httpsPort != null) {
doForceHttps = true; doForceHttps = true;
if (httpsPort.intValue() == 443) { if (httpsPort.intValue() == 443) {
includePort = false; includePort = false;
} } else {
else { includePort = true;
includePort = true; }
} }
} }
} String loginForm = determineUrlToUseForThisRequest(httpRequest, httpResponse, authException);
String redirectUrl = null;
String loginForm = determineUrlToUseForThisRequest(req, resp, authException); if (serverSideRedirect) {
if (doForceHttps) {
// before doing server side redirect, we need to do client redirect to https.
if (serverSideRedirect) { String servletPath = httpRequest.getServletPath();
String pathInfo = httpRequest.getPathInfo();
String query = httpRequest.getQueryString();
if (doForceHttps) { redirectUrl = "https://" + serverName + ((includePort) ? (":" + httpsPort) : "") + contextPath
+ servletPath + (pathInfo == null ? "" : pathInfo) + (query == null ? "" : "?" + query);
} else {
if (logger.isDebugEnabled()) {
logger.debug("Server side forward to: " + loginForm);
}
// before doing server side redirect, we need to do client RequestDispatcher dispatcher = httpRequest.getRequestDispatcher(loginForm);
// redirect to https.
String servletPath = req.getServletPath(); dispatcher.forward(request, response);
String pathInfo = req.getPathInfo();
String query = req.getQueryString();
redirectUrl = "https://" + serverName + ((includePort) ? (":" + httpsPort) : "") + contextPath return;
+ servletPath + (pathInfo == null ? "" : pathInfo) + (query == null ? "" : "?" + query); }
} else {
if (doForceHttps) {
redirectUrl = "https://" + serverName + ((includePort) ? (":" + httpsPort) : "") + contextPath
+ loginForm;
} else {
redirectUrl = scheme + "://" + serverName + ((includePort) ? (":" + serverPort) : "") + contextPath
+ loginForm;
}
}
} if (logger.isDebugEnabled()) {
else { logger.debug("Redirecting to: " + redirectUrl);
}
if (logger.isDebugEnabled()) { httpResponse.sendRedirect(httpResponse.encodeRedirectURL(redirectUrl));
logger.debug("Server side forward to: " + loginForm); }
}
RequestDispatcher dispatcher = req.getRequestDispatcher(loginForm); public boolean getForceHttps() {
return forceHttps;
}
dispatcher.forward(request, response); public String getLoginFormUrl() {
return loginFormUrl;
}
return; public PortMapper getPortMapper() {
return portMapper;
}
} public PortResolver getPortResolver() {
return portResolver;
}
} public boolean isServerSideRedirect() {
else { return serverSideRedirect;
}
if (doForceHttps) { /**
* Set to true to force login form access to be via https. If this value is true (the default is false),
* and the incoming request for the protected resource which triggered the interceptor was not already
* <code>https</code>, then the client will first be redirected to an https URL, even if <tt>serverSideRedirect</tt>
* is set to <tt>true</tt>.
*
* @param forceHttps
*/
public void setForceHttps(boolean forceHttps) {
this.forceHttps = forceHttps;
}
redirectUrl = "https://" + serverName + ((includePort) ? (":" + httpsPort) : "") + contextPath /**
+ loginForm; * The URL where the <code>AuthenticationProcessingFilter</code> login
* page can be found. Should be relative to the web-app context path, and
* include a leading <code>/</code>
*
* @param loginFormUrl
*/
public void setLoginFormUrl(String loginFormUrl) {
this.loginFormUrl = loginFormUrl;
}
} public void setPortMapper(PortMapper portMapper) {
else { this.portMapper = portMapper;
}
redirectUrl = scheme + "://" + serverName + ((includePort) ? (":" + serverPort) : "") + contextPath public void setPortResolver(PortResolver portResolver) {
+ loginForm; this.portResolver = portResolver;
}
} /**
} * Tells if we are to do a server side include of the <code>loginFormUrl</code> instead of a 302 redirect.
*
if (logger.isDebugEnabled()) { * @param serverSideRedirect
logger.debug("Redirecting to: " + redirectUrl); */
} public void setServerSideRedirect(boolean serverSideRedirect) {
this.serverSideRedirect = serverSideRedirect;
((HttpServletResponse) response).sendRedirect(((HttpServletResponse) response).encodeRedirectURL(redirectUrl));
}
public boolean getForceHttps() {
return forceHttps;
}
public String getLoginFormUrl() {
return loginFormUrl;
}
public PortMapper getPortMapper() {
return portMapper;
}
public PortResolver getPortResolver() {
return portResolver;
}
public boolean isServerSideRedirect() {
return serverSideRedirect;
}
/**
* Set to true to force login form access to be via https. If this value is
* ture (the default is false), and the incoming request for the protected
* resource which triggered the interceptor was not already
* <code>https</code>, then
*
* @param forceHttps
*/
public void setForceHttps(boolean forceHttps) {
this.forceHttps = forceHttps;
}
/**
* The URL where the <code>AuthenticationProcessingFilter</code> login
* page can be found. Should be relative to the web-app context path, and
* include a leading <code>/</code>
*
* @param loginFormUrl
*/
public void setLoginFormUrl(String loginFormUrl) {
this.loginFormUrl = loginFormUrl;
}
public void setPortMapper(PortMapper portMapper) {
this.portMapper = portMapper;
}
public void setPortResolver(PortResolver portResolver) {
this.portResolver = portResolver;
}
/**
* Tells if we are to do a server side include of the
* <code>loginFormUrl</code> instead of a 302 redirect.
*
* @param serverSideRedirect
*/
public void setServerSideRedirect(boolean serverSideRedirect) {
this.serverSideRedirect = serverSideRedirect;
} }
} }