private Guard createGuard() { Guard guard = new Guard(getContext(), "PSCP", baseURIs, "jjaahh") { @Override public boolean checkSecret(Request request, String identifier, char[] secret) { if ("logout".equals(identifier)) { getLogger().log(Level.INFO, "Invalid login attempt for account '" + identifier + "'"); return false; } return super.checkSecret(request, identifier, secret); } @Override public void accept(Request request, Response response) { super.accept(request, response); String user = request.getChallengeResponse().getParameters().getFirstValue("username"); if (user != null) { String cookieVal = request.getCookies().getFirstValue("u"); if (cookieVal == null || cookieVal.length() == 0) { UUID id = findContactID(user); if (id != null) { setCookie(id, response); request.getAttributes().put(Contacts.class.getName(), id.toString()); trackLogin(id); lookupCache.daoModified(Contacts.class); } else { getLogger().warning("Cannot find db entry for user : "******"workaround" plugin for Postgres // Workaround is to use string instead of value id = UUID.fromString(r.string(Contacts.CONTACTID)); break; } } return id; } @Override public void forbid(Response response) { super.forbid(response); setCookie(null, response); } @Override public void challenge(Response response, boolean stale) { super.challenge(response, stale); } private void setCookie(UUID user, Response response) { CookieSetting cookie = new CookieSetting("u", user == null ? "" : user.toString()); cookie.setPath("/"); response.getCookieSettings().add(cookie); } private void trackLogin(UUID user) { DAOCollection daos = null; try { daos = daoFactory.create(); daos.get(Contacts.class).login(user); } catch (DAOException ex) { getLogger().log(Level.SEVERE, "Error tracking login", ex); } finally { if (daos != null) { daos.close(); } } } }; guard.setSecretResolver(secretResolver); return guard; }