private Guard createGuard() {
Guard guard =
new Guard(getContext(), "PSCP", baseURIs, "jjaahh") {
@Override
public boolean checkSecret(Request request, String identifier, char[] secret) {
if ("logout".equals(identifier)) {
getLogger().log(Level.INFO, "Invalid login attempt for account '" + identifier + "'");
return false;
}
return super.checkSecret(request, identifier, secret);
}
@Override
public void accept(Request request, Response response) {
super.accept(request, response);
String user = request.getChallengeResponse().getParameters().getFirstValue("username");
if (user != null) {
String cookieVal = request.getCookies().getFirstValue("u");
if (cookieVal == null || cookieVal.length() == 0) {
UUID id = findContactID(user);
if (id != null) {
setCookie(id, response);
request.getAttributes().put(Contacts.class.getName(), id.toString());
trackLogin(id);
lookupCache.daoModified(Contacts.class);
} else {
getLogger().warning("Cannot find db entry for user : "******"workaround" plugin for Postgres
// Workaround is to use string instead of value
id = UUID.fromString(r.string(Contacts.CONTACTID));
break;
}
}
return id;
}
@Override
public void forbid(Response response) {
super.forbid(response);
setCookie(null, response);
}
@Override
public void challenge(Response response, boolean stale) {
super.challenge(response, stale);
}
private void setCookie(UUID user, Response response) {
CookieSetting cookie = new CookieSetting("u", user == null ? "" : user.toString());
cookie.setPath("/");
response.getCookieSettings().add(cookie);
}
private void trackLogin(UUID user) {
DAOCollection daos = null;
try {
daos = daoFactory.create();
daos.get(Contacts.class).login(user);
} catch (DAOException ex) {
getLogger().log(Level.SEVERE, "Error tracking login", ex);
} finally {
if (daos != null) {
daos.close();
}
}
}
};
guard.setSecretResolver(secretResolver);
return guard;
}
