protected void doAdminMode(HttpServletRequest request, HttpServletResponse response)
throws Exception {
// LIVE MODE - LIVE PAGE
com.liferay.portal.model.User backendUser = null;
backendUser = com.liferay.portal.util.PortalUtil.getUser(request);
response.setContentType(CHARSET);
Context context = VelocityUtil.getWebContext(request, response);
String uri = URLDecoder.decode(request.getRequestURI(), UtilMethods.getCharsetConfiguration());
uri = UtilMethods.cleanURI(uri);
Host host = hostWebAPI.getCurrentHost(request);
Identifier id = APILocator.getIdentifierAPI().find(host, uri);
request.setAttribute("idInode", id.getInode());
HTMLPage htmlPage =
(HTMLPage)
APILocator.getVersionableAPI()
.findWorkingVersion(id, APILocator.getUserAPI().getSystemUser(), false);
HTMLPageAPI htmlPageAPI = APILocator.getHTMLPageAPI();
VelocityUtil.makeBackendContext(
context, htmlPage, "", id.getURI(), request, true, false, false, host);
boolean canUserWriteOnTemplate =
permissionAPI.doesUserHavePermission(
htmlPageAPI.getTemplateForWorkingHTMLPage(htmlPage), PERMISSION_WRITE, backendUser);
context.put("EDIT_TEMPLATE_PERMISSION", canUserWriteOnTemplate);
Template template = null;
if (request.getParameter("leftMenu") != null) {
template = VelocityUtil.getEngine().getTemplate("/preview_left_menu.vl");
} else if (request.getParameter("mainFrame") != null) {
template =
VelocityUtil.getEngine()
.getTemplate("/live/" + id.getInode() + "." + VELOCITY_HTMLPAGE_EXTENSION);
} else {
template = VelocityUtil.getEngine().getTemplate("/preview_mode.vl");
}
Logger.debug(VelocityServlet.class, "Got the template!!!!" + id.getInode());
PrintWriter out = response.getWriter();
request.setAttribute(VELOCITY_CONTEXT, context);
try {
template.merge(context, out);
} catch (ParseErrorException e) {
out.append(e.getMessage());
}
}
private boolean isArchive(HttpServletRequest request)
throws PortalException, SystemException, DotDataException, DotSecurityException {
String uri = request.getRequestURI();
uri = UtilMethods.cleanURI(uri);
Host host = null;
String hostId = "";
/*
* String pageHostId = request.getParameter("host_id"); if (pageHostId
* != null) { try { hostId = Long.parseLong(pageHostId); } catch
* (Exception ex) { } }
*/
hostId = request.getParameter("host_id");
if (!InodeUtils.isSet(hostId)) {
host = hostWebAPI.getCurrentHost(request);
hostId = host.getIdentifier();
} else {
User user =
(com.liferay.portal.model.User)
request.getSession().getAttribute(com.dotmarketing.util.WebKeys.CMS_USER);
if (user == null) {
user = com.liferay.portal.util.PortalUtil.getUser(request);
}
host = hostWebAPI.find(hostId, user, true);
}
// Getting the identifier from the uri
Identifier id = APILocator.getIdentifierAPI().find(host, uri);
request.setAttribute("idInode", String.valueOf(id.getInode()));
HTMLPage htmlPage =
(HTMLPage)
APILocator.getVersionableAPI()
.findWorkingVersion(id, APILocator.getUserAPI().getSystemUser(), false);
boolean isArchived = htmlPage.isDeleted();
return isArchived;
}
@SuppressWarnings("unchecked")
protected void doEditMode(HttpServletRequest request, HttpServletResponse response)
throws Exception {
String uri = request.getRequestURI();
uri = UtilMethods.cleanURI(uri);
Host host = hostWebAPI.getCurrentHost(request);
StringBuilder preExecuteCode = new StringBuilder();
Boolean widgetPreExecute = false;
// Getting the user to check the permissions
com.liferay.portal.model.User backendUser = null;
try {
backendUser = com.liferay.portal.util.PortalUtil.getUser(request);
} catch (Exception nsue) {
Logger.warn(this, "Exception trying getUser: "******"idInode", String.valueOf(id.getInode()));
Logger.debug(VelocityServlet.class, "VELOCITY HTML INODE=" + id.getInode());
Template template = null;
Template hostVariablesTemplate = null;
// creates the context where to place the variables
response.setContentType(CHARSET);
Context context = VelocityUtil.getWebContext(request, response);
HTMLPage htmlPage =
(HTMLPage)
APILocator.getVersionableAPI()
.findWorkingVersion(id, APILocator.getUserAPI().getSystemUser(), false);
HTMLPageAPI htmlPageAPI = APILocator.getHTMLPageAPI();
// to check user has permission to write on this page
boolean hasAddChildrenPermOverHTMLPage =
permissionAPI.doesUserHavePermission(htmlPage, PERMISSION_CAN_ADD_CHILDREN, backendUser);
boolean hasWritePermOverHTMLPage =
permissionAPI.doesUserHavePermission(htmlPage, PERMISSION_WRITE, backendUser);
boolean hasPublishPermOverHTMLPage =
permissionAPI.doesUserHavePermission(htmlPage, PERMISSION_PUBLISH, backendUser);
context.put("ADD_CHILDREN_HTMLPAGE_PERMISSION", new Boolean(hasAddChildrenPermOverHTMLPage));
context.put("EDIT_HTMLPAGE_PERMISSION", new Boolean(hasWritePermOverHTMLPage));
context.put("PUBLISH_HTMLPAGE_PERMISSION", new Boolean(hasPublishPermOverHTMLPage));
context.put("canAddForm", new Boolean(LicenseUtil.getLevel() > 199 ? true : false));
context.put("canViewDiff", new Boolean(LicenseUtil.getLevel() > 199 ? true : false));
boolean canUserWriteOnTemplate =
permissionAPI.doesUserHavePermission(
htmlPageAPI.getTemplateForWorkingHTMLPage(htmlPage), PERMISSION_WRITE, backendUser)
&& portletAPI.hasTemplateManagerRights(backendUser);
context.put("EDIT_TEMPLATE_PERMISSION", canUserWriteOnTemplate);
com.dotmarketing.portlets.templates.model.Template cmsTemplate =
com.dotmarketing.portlets.htmlpages.factories.HTMLPageFactory.getHTMLPageTemplate(
htmlPage, true);
if (cmsTemplate == null) { // DOTCMS-4051
cmsTemplate = new com.dotmarketing.portlets.templates.model.Template();
Logger.debug(VelocityServlet.class, "HTMLPAGE TEMPLATE NOT FOUND");
}
Identifier templateIdentifier = APILocator.getIdentifierAPI().find(cmsTemplate);
Logger.debug(VelocityServlet.class, "VELOCITY TEMPLATE INODE=" + cmsTemplate.getInode());
VelocityUtil.makeBackendContext(
context, htmlPage, cmsTemplate.getInode(), id.getURI(), request, true, true, false, host);
// added to show tabs
context.put("previewPage", "1");
// get the containers for the page and stick them in context
List<Container> containers =
APILocator.getTemplateAPI()
.getContainersInTemplate(cmsTemplate, APILocator.getUserAPI().getSystemUser(), false);
for (Container c : containers) {
context.put(
String.valueOf("container" + c.getIdentifier()),
"/working/"
+ c.getIdentifier()
+ "."
+ Config.getStringProperty("VELOCITY_CONTAINER_EXTENSION"));
boolean hasWritePermissionOnContainer =
permissionAPI.doesUserHavePermission(c, PERMISSION_WRITE, backendUser, false)
&& portletAPI.hasContainerManagerRights(backendUser);
boolean hasReadPermissionOnContainer =
permissionAPI.doesUserHavePermission(c, PERMISSION_READ, backendUser, false);
context.put("EDIT_CONTAINER_PERMISSION" + c.getIdentifier(), hasWritePermissionOnContainer);
if (Config.getBooleanProperty("SIMPLE_PAGE_CONTENT_PERMISSIONING", true))
context.put("USE_CONTAINER_PERMISSION" + c.getIdentifier(), true);
else
context.put("USE_CONTAINER_PERMISSION" + c.getIdentifier(), hasReadPermissionOnContainer);
// to check user has permission to write this container
Structure st = (Structure) InodeFactory.getInode(c.getStructureInode(), Structure.class);
boolean hasWritePermOverTheStructure =
permissionAPI.doesUserHavePermission(st, PERMISSION_WRITE, backendUser);
context.put(
"ADD_CONTENT_PERMISSION" + c.getIdentifier(), new Boolean(hasWritePermOverTheStructure));
Logger.debug(
VelocityServlet.class,
String.valueOf("container" + c.getIdentifier())
+ "=/working/"
+ c.getIdentifier()
+ "."
+ Config.getStringProperty("VELOCITY_CONTAINER_EXTENSION"));
String sort = (c.getSortContentletsBy() == null) ? "tree_order" : c.getSortContentletsBy();
List<Contentlet> contentlets = null;
boolean staticContainer = !UtilMethods.isSet(c.getLuceneQuery());
// get contentlets only for main frame
if (request.getParameter("mainFrame") != null) {
if (staticContainer) {
Logger.debug(VelocityServlet.class, "Static Container!!!!");
Logger.debug(
VelocityServlet.class, "html=" + htmlPage.getInode() + " container=" + c.getInode());
// The container doesn't have categories
Identifier idenHtmlPage = APILocator.getIdentifierAPI().find(htmlPage);
Identifier idenContainer = APILocator.getIdentifierAPI().find(c);
contentlets =
conAPI.findPageContentlets(
idenHtmlPage.getInode(),
idenContainer.getInode(),
sort,
true,
-1,
backendUser,
true);
Logger.debug(
VelocityServlet.class,
"Getting contentlets for language="
+ (String)
request
.getSession()
.getAttribute(com.dotmarketing.util.WebKeys.HTMLPAGE_LANGUAGE)
+ " contentlets ="
+ contentlets.size());
} else {
String luceneQuery = c.getLuceneQuery();
int limit = c.getMaxContentlets();
String sortBy = c.getSortContentletsBy();
int offset = 0;
contentlets = conAPI.search(luceneQuery, limit, offset, sortBy, backendUser, true);
}
if (UtilMethods.isSet(contentlets) && contentlets.size() > 0) {
Set<String> contentletIdentList = new HashSet<String>();
List<Contentlet> contentletsFilter = new ArrayList<Contentlet>();
for (Contentlet cont : contentlets) {
if (!contentletIdentList.contains(cont.getIdentifier())) {
contentletIdentList.add(cont.getIdentifier());
contentletsFilter.add(cont);
}
}
contentlets = contentletsFilter;
}
List<String> contentletList = new ArrayList<String>();
if (contentlets != null) {
Iterator<Contentlet> iter = contentlets.iterator();
int count = 0;
while (iter.hasNext() && (count < c.getMaxContentlets())) {
count++;
Contentlet contentlet = (Contentlet) iter.next();
Identifier contentletIdentifier = APILocator.getIdentifierAPI().find(contentlet);
boolean hasWritePermOverContentlet =
permissionAPI.doesUserHavePermission(contentlet, PERMISSION_WRITE, backendUser);
context.put(
"EDIT_CONTENT_PERMISSION" + contentletIdentifier.getInode(),
new Boolean(hasWritePermOverContentlet));
contentletList.add(String.valueOf(contentletIdentifier.getInode()));
Logger.debug(this, "Adding contentlet=" + contentletIdentifier.getInode());
Structure contStructure = contentlet.getStructure();
if (contStructure.getStructureType() == Structure.STRUCTURE_TYPE_WIDGET) {
Field field = contStructure.getFieldVar("widgetPreexecute");
if (field != null && UtilMethods.isSet(field.getValues())) {
preExecuteCode.append(field.getValues().trim() + "\n");
widgetPreExecute = true;
}
}
}
}
// sets contentletlist with all the files to load per
// container
context.put("contentletList" + c.getIdentifier(), contentletList);
context.put("totalSize" + c.getIdentifier(), new Integer(contentletList.size()));
// ### Add the structure fake contentlet ###
if (contentletList.size() == 0) {
Structure structure = ContainerFactory.getContainerStructure(c);
contentletList.add(structure.getInode() + "");
// sets contentletlist with all the files to load per
// container
context.remove("contentletList" + c.getIdentifier());
context.remove("totalSize" + c.getIdentifier());
// http://jira.dotmarketing.net/browse/DOTCMS-2876
context.put("contentletList" + c.getIdentifier(), new long[0]);
context.put("totalSize" + c.getIdentifier(), 0);
}
// ### END Add the structure fake contentlet ###
}
}
Logger.debug(
VelocityServlet.class,
"Before finding template: /working/"
+ templateIdentifier.getInode()
+ "."
+ Config.getStringProperty("VELOCITY_TEMPLATE_EXTENSION"));
Logger.debug(
VelocityServlet.class,
"Velocity directory:"
+ VelocityUtil.getEngine().getProperty(RuntimeConstants.FILE_RESOURCE_LOADER_PATH));
if (request.getParameter("leftMenu") != null) {
/*
* try to get the messages from the session
*/
List<String> list = new ArrayList<String>();
if (SessionMessages.contains(request, "message")) {
list.add((String) SessionMessages.get(request, "message"));
SessionMessages.clear(request);
}
if (SessionMessages.contains(request, "custommessage")) {
list.add((String) SessionMessages.get(request, "custommessage"));
SessionMessages.clear(request);
}
if (list.size() > 0) {
ArrayList<String> mymessages = new ArrayList<String>();
Iterator<String> it = list.iterator();
while (it.hasNext()) {
try {
String message = (String) it.next();
Company comp = PublicCompanyFactory.getDefaultCompany();
mymessages.add(LanguageUtil.get(comp.getCompanyId(), backendUser.getLocale(), message));
} catch (Exception e) {
}
}
context.put("vmessages", mymessages);
}
template = VelocityUtil.getEngine().getTemplate("/preview_left_menu.vl");
} else if (request.getParameter("mainFrame") != null) {
hostVariablesTemplate =
VelocityUtil.getEngine()
.getTemplate(
"/working/"
+ host.getIdentifier()
+ "."
+ Config.getStringProperty("VELOCITY_HOST_EXTENSION"));
template =
VelocityUtil.getEngine()
.getTemplate(
"/working/"
+ templateIdentifier.getInode()
+ "."
+ Config.getStringProperty("VELOCITY_TEMPLATE_EXTENSION"));
} else {
// Return a resource not found right away if the page is not found,
// not try to load the frames
if (!InodeUtils.isSet(templateIdentifier.getInode())) throw new ResourceNotFoundException("");
template = VelocityUtil.getEngine().getTemplate("/preview_mode.vl");
}
PrintWriter out = response.getWriter();
request.setAttribute("velocityContext", context);
try {
if (widgetPreExecute) {
VelocityUtil.getEngine().evaluate(context, out, "", preExecuteCode.toString());
}
if (hostVariablesTemplate != null) hostVariablesTemplate.merge(context, out);
template.merge(context, out);
} catch (ParseErrorException e) {
out.append(e.getMessage());
}
}
@SuppressWarnings("unchecked")
public void doPreviewMode(HttpServletRequest request, HttpServletResponse response)
throws Exception {
String uri = URLDecoder.decode(request.getRequestURI(), UtilMethods.getCharsetConfiguration());
uri = UtilMethods.cleanURI(uri);
Host host = hostWebAPI.getCurrentHost(request);
StringBuilder preExecuteCode = new StringBuilder();
Boolean widgetPreExecute = false;
// Getting the user to check the permissions
com.liferay.portal.model.User user = null;
HttpSession session = request.getSession(false);
try {
if (session != null)
user =
(com.liferay.portal.model.User)
session.getAttribute(com.dotmarketing.util.WebKeys.CMS_USER);
} catch (Exception nsue) {
Logger.warn(this, "Exception trying getUser: "******"idInode", id.getInode());
Logger.debug(VelocityServlet.class, "VELOCITY HTML INODE=" + id.getInode());
Template template = null;
Template hostVariablesTemplate = null;
// creates the context where to place the variables
response.setContentType(CHARSET);
Context context = VelocityUtil.getWebContext(request, response);
HTMLPage htmlPage =
(HTMLPage) APILocator.getVersionableAPI().findWorkingVersion(id, user, true);
HTMLPageAPI htmlPageAPI = APILocator.getHTMLPageAPI();
// to check user has permission to write on this page
boolean hasWritePermOverHTMLPage =
permissionAPI.doesUserHavePermission(htmlPage, PERMISSION_WRITE, user);
boolean hasPublishPermOverHTMLPage =
permissionAPI.doesUserHavePermission(htmlPage, PERMISSION_PUBLISH, user);
context.put("EDIT_HTMLPAGE_PERMISSION", new Boolean(hasWritePermOverHTMLPage));
context.put("PUBLISH_HTMLPAGE_PERMISSION", new Boolean(hasPublishPermOverHTMLPage));
boolean canUserWriteOnTemplate =
permissionAPI.doesUserHavePermission(
htmlPageAPI.getTemplateForWorkingHTMLPage(htmlPage), PERMISSION_WRITE, user, true);
context.put("EDIT_TEMPLATE_PERMISSION", canUserWriteOnTemplate);
com.dotmarketing.portlets.templates.model.Template cmsTemplate =
com.dotmarketing.portlets.htmlpages.factories.HTMLPageFactory.getHTMLPageTemplate(
htmlPage, true);
Identifier templateIdentifier = APILocator.getIdentifierAPI().find(cmsTemplate);
Logger.debug(VelocityServlet.class, "VELOCITY TEMPLATE INODE=" + cmsTemplate.getInode());
VelocityUtil.makeBackendContext(
context, htmlPage, cmsTemplate.getInode(), id.getURI(), request, true, false, true, host);
context.put("previewPage", "2");
context.put("livePage", "0");
// get the containers for the page and stick them in context
List<Container> containers =
APILocator.getTemplateAPI()
.getContainersInTemplate(cmsTemplate, APILocator.getUserAPI().getSystemUser(), false);
for (Container c : containers) {
context.put(
String.valueOf("container" + c.getIdentifier()),
"/working/"
+ c.getIdentifier()
+ "."
+ Config.getStringProperty("VELOCITY_CONTAINER_EXTENSION"));
context.put(
"EDIT_CONTAINER_PERMISSION" + c.getIdentifier(),
permissionAPI.doesUserHavePermission(c, PERMISSION_WRITE, user, true));
// to check user has permission to write this container
Structure st = (Structure) InodeFactory.getInode(c.getStructureInode(), Structure.class);
boolean hasWritePermOverTheStructure =
permissionAPI.doesUserHavePermission(st, PERMISSION_WRITE, user, true);
context.put(
"ADD_CONTENT_PERMISSION" + c.getIdentifier(), new Boolean(hasWritePermOverTheStructure));
Logger.debug(
VelocityServlet.class,
String.valueOf("container" + c.getIdentifier())
+ "=/working/"
+ c.getIdentifier()
+ "."
+ Config.getStringProperty("VELOCITY_CONTAINER_EXTENSION"));
String sort = (c.getSortContentletsBy() == null) ? "tree_order" : c.getSortContentletsBy();
boolean staticContainer = !UtilMethods.isSet(c.getLuceneQuery());
List<Contentlet> contentlets = null;
// get contentlets only for main frame
if (request.getParameter("mainFrame") != null) {
if (staticContainer) {
Logger.debug(VelocityServlet.class, "Static Container!!!!");
Logger.debug(
VelocityServlet.class, "html=" + htmlPage.getInode() + " container=" + c.getInode());
// The container doesn't have categories
Identifier idenHtmlPage = APILocator.getIdentifierAPI().find(htmlPage);
Identifier idenContainer = APILocator.getIdentifierAPI().find(c);
contentlets =
conAPI.findPageContentlets(
idenHtmlPage.getInode(), idenContainer.getInode(), sort, true, -1, user, true);
Logger.debug(
VelocityServlet.class,
"Getting contentlets for language="
+ (String)
request
.getSession()
.getAttribute(com.dotmarketing.util.WebKeys.HTMLPAGE_LANGUAGE)
+ " contentlets ="
+ contentlets.size());
}
if (UtilMethods.isSet(contentlets) && contentlets.size() > 0) {
Set<String> contentletIdentList = new HashSet<String>();
List<Contentlet> contentletsFilter = new ArrayList<Contentlet>();
for (Contentlet cont : contentlets) {
if (!contentletIdentList.contains(cont.getIdentifier())) {
contentletIdentList.add(cont.getIdentifier());
contentletsFilter.add(cont);
}
}
contentlets = contentletsFilter;
}
List<String> contentletList = new ArrayList<String>();
if (contentlets != null && contentlets.size() > 0) {
Iterator<Contentlet> iter = contentlets.iterator();
int count = 0;
while (iter.hasNext() && (count < c.getMaxContentlets())) {
count++;
Contentlet contentlet = (Contentlet) iter.next();
Identifier contentletIdentifier = APILocator.getIdentifierAPI().find(contentlet);
boolean hasWritePermOverContentlet =
permissionAPI.doesUserHavePermission(contentlet, PERMISSION_WRITE, user, true);
context.put(
"EDIT_CONTENT_PERMISSION" + contentletIdentifier.getInode(),
new Boolean(hasWritePermOverContentlet));
contentletList.add(String.valueOf(contentletIdentifier.getInode()));
Logger.debug(this, "Adding contentlet=" + contentletIdentifier.getInode());
Structure contStructure = contentlet.getStructure();
if (contStructure.getStructureType() == Structure.STRUCTURE_TYPE_WIDGET) {
Field field = contStructure.getFieldVar("widgetPreexecute");
if (field != null && UtilMethods.isSet(field.getValues())) {
preExecuteCode.append(field.getValues().trim() + "\n");
widgetPreExecute = true;
}
}
}
}
// sets contentletlist with all the files to load per
// container
context.put("contentletList" + c.getIdentifier(), contentletList);
context.put("totalSize" + c.getIdentifier(), new Integer(contentletList.size()));
}
}
Logger.debug(
VelocityServlet.class,
"Before finding template: /working/"
+ templateIdentifier.getInode()
+ "."
+ Config.getStringProperty("VELOCITY_TEMPLATE_EXTENSION"));
Logger.debug(
VelocityServlet.class,
"Velocity directory:"
+ VelocityUtil.getEngine().getProperty(RuntimeConstants.FILE_RESOURCE_LOADER_PATH));
if (request.getParameter("leftMenu") != null) {
/*
* try to get the messages from the session
*/
List<String> list = new ArrayList<String>();
if (SessionMessages.contains(request, "message")) {
list.add((String) SessionMessages.get(request, "message"));
SessionMessages.clear(request);
}
if (SessionMessages.contains(request, "custommessage")) {
list.add((String) SessionMessages.get(request, "custommessage"));
SessionMessages.clear(request);
}
if (list.size() > 0) {
ArrayList<String> mymessages = new ArrayList<String>();
Iterator<String> it = list.iterator();
while (it.hasNext()) {
try {
String message = (String) it.next();
Company comp = PublicCompanyFactory.getDefaultCompany();
mymessages.add(LanguageUtil.get(comp.getCompanyId(), user.getLocale(), message));
} catch (Exception e) {
}
}
context.put("vmessages", mymessages);
}
template = VelocityUtil.getEngine().getTemplate("/preview_left_menu.vl");
} else if (request.getParameter("mainFrame") != null) {
hostVariablesTemplate =
VelocityUtil.getEngine()
.getTemplate(
"/working/"
+ host.getIdentifier()
+ "."
+ Config.getStringProperty("VELOCITY_HOST_EXTENSION"));
template =
VelocityUtil.getEngine()
.getTemplate(
"/working/"
+ templateIdentifier.getInode()
+ "."
+ Config.getStringProperty("VELOCITY_TEMPLATE_EXTENSION"));
} else {
template = VelocityUtil.getEngine().getTemplate("/preview_mode.vl");
}
PrintWriter out = response.getWriter();
request.setAttribute("velocityContext", context);
try {
if (widgetPreExecute) {
VelocityUtil.getEngine().evaluate(context, out, "", preExecuteCode.toString());
}
if (hostVariablesTemplate != null) hostVariablesTemplate.merge(context, out);
template.merge(context, out);
} catch (ParseErrorException e) {
out.append(e.getMessage());
}
}
public void doLiveMode(HttpServletRequest request, HttpServletResponse response)
throws Exception {
String uri = URLDecoder.decode(request.getRequestURI(), UtilMethods.getCharsetConfiguration());
uri = UtilMethods.cleanURI(uri);
Host host = hostWebAPI.getCurrentHost(request);
// Map with all identifier inodes for a given uri.
String idInode = APILocator.getIdentifierAPI().find(host, uri).getInode();
// Checking the path is really live using the livecache
String cachedUri = LiveCache.getPathFromCache(uri, host);
// if we still have nothing.
if (!InodeUtils.isSet(idInode) || cachedUri == null) {
throw new ResourceNotFoundException(
String.format("Resource %s not found in Live mode!", uri));
}
response.setContentType(CHARSET);
request.setAttribute("idInode", String.valueOf(idInode));
Logger.debug(VelocityServlet.class, "VELOCITY HTML INODE=" + idInode);
/*
* JIRA http://jira.dotmarketing.net/browse/DOTCMS-4659
//Set long lived cookie regardless of who this is */
String _dotCMSID =
UtilMethods.getCookieValue(
request.getCookies(), com.dotmarketing.util.WebKeys.LONG_LIVED_DOTCMS_ID_COOKIE);
if (!UtilMethods.isSet(_dotCMSID)) {
// create unique generator engine
Cookie idCookie = CookieUtil.createCookie();
response.addCookie(idCookie);
}
com.liferay.portal.model.User user = null;
HttpSession session = request.getSession(false);
try {
if (session != null)
user =
(com.liferay.portal.model.User)
session.getAttribute(com.dotmarketing.util.WebKeys.CMS_USER);
} catch (Exception nsue) {
Logger.warn(this, "Exception trying to getUser: "******"Page Permissions for URI=" + uri);
HTMLPage page = null;
try {
// we get the page and check permissions below
page =
APILocator.getHTMLPageAPI()
.loadLivePageById(idInode, APILocator.getUserAPI().getSystemUser(), false);
} catch (Exception e) {
Logger.error(
HTMLPageWebAPI.class,
"unable to load live version of page: " + idInode + " because " + e.getMessage());
return;
}
// Check if the page is visible by a CMS Anonymous role
if (!permissionAPI.doesUserHavePermission(page, PERMISSION_READ, user, true)) {
// this page is protected. not anonymous access
/**
* ***************************************************************** If we need to redirect
* someone somewhere to login before seeing a page, we need to edit the /portal/401.jsp page
* to sendRedirect the user to the proper login page. We are not using the REDIRECT_TO_LOGIN
* variable in the config any longer.
* ****************************************************************
*/
if (!signedIn) {
// No need for the below LAST_PATH attribute on the front end
// http://jira.dotmarketing.net/browse/DOTCMS-2675
// request.getSession().setAttribute(WebKeys.LAST_PATH,
// new ObjectValuePair(uri, request.getParameterMap()));
request.getSession().setAttribute(com.dotmarketing.util.WebKeys.REDIRECT_AFTER_LOGIN, uri);
Logger.debug(
VelocityServlet.class,
"VELOCITY CHECKING PERMISSION: Page doesn't have anonymous access" + uri);
Logger.debug(VelocityServlet.class, "401 URI = " + uri);
Logger.debug(VelocityServlet.class, "Unauthorized URI = " + uri);
response.sendError(401, "The requested page/file is unauthorized");
return;
} else if (!permissionAPI
.getReadRoles(ident)
.contains(APILocator.getRoleAPI().loadLoggedinSiteRole())) {
// user is logged in need to check user permissions
Logger.debug(VelocityServlet.class, "VELOCITY CHECKING PERMISSION: User signed in");
// check user permissions on this asset
if (!permissionAPI.doesUserHavePermission(ident, PERMISSION_READ, user, true)) {
// the user doesn't have permissions to see this page
// go to unauthorized page
Logger.warn(
VelocityServlet.class,
"VELOCITY CHECKING PERMISSION: Page doesn't have any access for this user");
response.sendError(403, "The requested page/file is forbidden");
return;
}
}
}
Logger.debug(VelocityServlet.class, "Recording the ClickStream");
if (Config.getBooleanProperty("ENABLE_CLICKSTREAM_TRACKING", false)) {
if (user != null) {
UserProxy userProxy =
com.dotmarketing.business.APILocator.getUserProxyAPI()
.getUserProxy(user, APILocator.getUserAPI().getSystemUser(), false);
if (!userProxy.isNoclicktracking()) {
ClickstreamFactory.addRequest(
(HttpServletRequest) request, ((HttpServletResponse) response), host);
}
} else {
ClickstreamFactory.addRequest(
(HttpServletRequest) request, ((HttpServletResponse) response), host);
}
}
// Begin Page Caching
boolean buildCache = false;
String key = getPageCacheKey(request);
if (key != null) {
String cachedPage = CacheLocator.getBlockDirectiveCache().get(key, (int) page.getCacheTTL());
if (cachedPage == null
|| "refresh".equals(request.getParameter("dotcache"))
|| "refresh".equals(request.getAttribute("dotcache"))
|| "refresh".equals(request.getSession().getAttribute("dotcache"))) {
// build cached response
buildCache = true;
} else {
// have cached response and are not refreshing, send it
response.getWriter().write(cachedPage);
return;
}
}
Writer out =
(buildCache) ? new StringWriter(4096) : new VelocityFilterWriter(response.getWriter());
// get the context from the requst if possible
Context context = VelocityUtil.getWebContext(request, response);
request.setAttribute("velocityContext", context);
Logger.debug(VelocityServlet.class, "HTMLPage Identifier:" + idInode);
try {
VelocityUtil.getEngine()
.getTemplate("/live/" + idInode + "." + VELOCITY_HTMLPAGE_EXTENSION)
.merge(context, out);
} catch (ParseErrorException e) {
// out.append(e.getMessage());
}
context = null;
if (buildCache) {
String trimmedPage = out.toString().trim();
response.getWriter().write(trimmedPage);
response.getWriter().close();
synchronized (key) {
String x = CacheLocator.getBlockDirectiveCache().get(key, (int) page.getCacheTTL());
if (x != null) {
return;
}
CacheLocator.getBlockDirectiveCache()
.add(getPageCacheKey(request), trimmedPage, (int) page.getCacheTTL());
}
} else {
out.close();
}
}