Skip to content
GitLab
Explore
Sign in
Register
Primary navigation
Search or go to…
Project
V
VIPSLogic
Manage
Activity
Members
Labels
Plan
Issues
Issue boards
Milestones
Wiki
Code
Merge requests
Repository
Branches
Commits
Tags
Repository graph
Compare revisions
Build
Pipelines
Jobs
Pipeline schedules
Artifacts
Deploy
Releases
Container registry
Model registry
Operate
Environments
Monitor
Incidents
Analyze
Value stream analytics
Contributor analytics
CI/CD analytics
Repository analytics
Model experiments
Help
Help
Support
GitLab documentation
Compare GitLab plans
Community forum
Contribute to GitLab
Provide feedback
Keyboard shortcuts
?
Snippets
Groups
Projects
Show more breadcrumbs
VIPS
VIPSLogic
Commits
1353d3fb
Commit
1353d3fb
authored
10 months ago
by
Tor-Einar Skog
Browse files
Options
Downloads
Patches
Plain Diff
Fix uUUID lifecycle issue
parent
a35e9977
No related branches found
No related tags found
1 merge request
!191
Add map module and Open-Meteo support
Changes
1
Hide whitespace changes
Inline
Side-by-side
Showing
1 changed file
src/main/java/no/nibio/vips/logic/controller/servlet/LoginController.java
+26
-13
26 additions, 13 deletions
.../nibio/vips/logic/controller/servlet/LoginController.java
with
26 additions
and
13 deletions
src/main/java/no/nibio/vips/logic/controller/servlet/LoginController.java
+
26
−
13
View file @
1353d3fb
...
...
@@ -85,12 +85,18 @@ public class LoginController extends HttpServlet {
// A log out request
if
(
request
.
getServletPath
().
contains
(
"logout"
))
{
VipsLogicUser
user
=
request
.
getSession
().
getAttribute
(
"user"
)
!=
null
?
(
VipsLogicUser
)
request
.
getSession
().
getAttribute
(
"user"
)
:
null
;
// Make sure we delete the current user and their UUID
userBean
.
deleteUserUuid
(
user
.
getUserUuid
());
request
.
getSession
().
removeAttribute
(
"user"
);
// Check if we have a cookie to delete as well
Cookie
rememberedUser
=
ServletUtil
.
getCookie
(
request
,
"rememberedUser"
);
if
(
rememberedUser
!=
null
)
{
rememberedUser
.
setMaxAge
(
0
);
response
.
addCookie
(
rememberedUser
);
// This is likely duplication(?) - or are there cases where this makes sense?
userBean
.
deleteUserUuid
(
UUID
.
fromString
(
rememberedUser
.
getValue
()));
}
request
.
setAttribute
(
"messageKey"
,
"logoutsuccess"
);
...
...
@@ -119,16 +125,19 @@ public class LoginController extends HttpServlet {
String
password
=
request
.
getParameter
(
"password"
);
try
(
PrintWriter
out
=
response
.
getWriter
())
{
Map
<
String
,
String
>
creds
=
new
HashMap
();
Map
<
String
,
String
>
creds
=
new
HashMap
<>
();
creds
.
put
(
"username"
,
username
);
creds
.
put
(
"password"
,
password
);
// Check user credentials
VipsLogicUser
user
=
userBean
.
authenticateUser
(
creds
);
if
(
user
!=
null
&&
user
.
getUserStatusId
().
equals
(
Globals
.
USER_STATUS_APPROVED
))
{
UserUuid
uUUID
=
userBean
.
createAndPersistUserUuid
(
user
);
user
.
setUserUuid
(
uUUID
.
getUserUuidPK
().
getUserUuid
());
request
.
getSession
().
setAttribute
(
"user"
,
user
);
UUID
uUUID
=
this
.
handleRememberUser
(
request
,
response
,
user
,
returnUUID
);
this
.
handleRememberUser
(
request
,
response
,
user
,
returnUUID
);
if
(
returnUUID
)
{
nextPage
+=
(
nextPage
.
contains
(
"?"
)
?
"&"
:
"?"
)
+
"returnUUID="
+
uUUID
.
toString
();
...
...
@@ -168,14 +177,14 @@ public class LoginController extends HttpServlet {
request
.
getRequestDispatcher
(
"/login.ftl"
).
forward
(
request
,
response
);
}
}
// Login from a remote resource. Return UUID
// Login from a remote resource
, e.g. an app
. Return UUID
else
if
(
request
.
getServletPath
().
contains
(
"remotelogin"
))
{
String
username
=
request
.
getParameter
(
"username"
);
String
password
=
request
.
getParameter
(
"password"
);
Map
<
String
,
String
>
creds
=
new
HashMap
();
Map
<
String
,
String
>
creds
=
new
HashMap
<>
();
creds
.
put
(
"username"
,
username
);
creds
.
put
(
"password"
,
password
);
...
...
@@ -184,10 +193,11 @@ public class LoginController extends HttpServlet {
if
(
user
!=
null
&&
user
.
getUserStatusId
().
equals
(
Globals
.
USER_STATUS_APPROVED
))
{
request
.
getSession
().
setAttribute
(
"user"
,
user
);
UUID
uUUID
=
this
.
handleRememberUser
(
request
,
response
,
user
,
returnUUID
);
UserUuid
uUUID
=
userBean
.
createAndPersistUserUuid
(
user
);
user
.
setUserUuid
(
uUUID
.
getUserUuidPK
().
getUserUuid
());
this
.
handleRememberUser
(
request
,
response
,
user
,
returnUUID
);
// All is well, return object
ObjectMapper
mapper
=
new
ObjectMapper
();
user
.
setUserUuid
(
uUUID
);
mapper
.
writeValue
(
out
,
user
);
out
.
close
();
}
...
...
@@ -262,27 +272,30 @@ public class LoginController extends HttpServlet {
*
* @param request
* @param response
* @param user
* @param user the VIPS user
* @param returnUUID has a UUID been requested to be returned to the client?
* @return
*/
private
UUID
handleRememberUser
(
HttpServletRequest
request
,
HttpServletResponse
response
,
VipsLogicUser
user
,
Boolean
returnUUID
)
private
void
handleRememberUser
(
HttpServletRequest
request
,
HttpServletResponse
response
,
VipsLogicUser
user
,
Boolean
returnUUID
)
{
// This is from the login form, the checkbox that you tick off to save your login
String
rememberUser
=
request
.
getParameter
(
"rememberUser"
)
!=
null
?
request
.
getParameter
(
"rememberUser"
)
:
(
String
)
request
.
getSession
().
getAttribute
(
"rememberUser"
);
request
.
getSession
().
removeAttribute
(
"rememberUser"
);
if
(
returnUUID
||
(
rememberUser
!=
null
&&
rememberUser
.
equals
(
"on"
)))
{
UserUuid
uUUID
=
userBean
.
createAndPersistUserUuid
(
user
);
if
(
rememberUser
!=
null
&&
rememberUser
.
equals
(
"on"
))
{
Cookie
rememberedUser
=
new
Cookie
(
"rememberedUser"
,
u
UUID
.
getUserUuidPK
()
.
getUserUuid
().
toString
());
Cookie
rememberedUser
=
new
Cookie
(
"rememberedUser"
,
u
ser
.
getUserUuid
().
toString
());
rememberedUser
.
setPath
(
"/"
);
rememberedUser
.
setMaxAge
(
Globals
.
DEFAULT_UUID_VALIDITY_DURATION_DAYS
*
24
*
60
*
60
);
response
.
addCookie
(
rememberedUser
);
}
return
uUUID
.
getUserUuidPK
().
getUserUuid
();
//
return uUUID.getUserUuidPK().getUserUuid();
}
// Unremember the user both server side and browser side
else
{
Cookie
rememberedUser
=
ServletUtil
.
getCookie
(
request
,
"rememberedUser"
);
...
...
@@ -292,7 +305,7 @@ public class LoginController extends HttpServlet {
response
.
addCookie
(
rememberedUser
);
userBean
.
deleteUserUuid
(
UUID
.
fromString
(
rememberedUser
.
getValue
()));
}
return
null
;
//
return null;
}
}
...
...
This diff is collapsed.
Click to expand it.
Preview
0%
Loading
Try again
or
attach a new file
.
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Save comment
Cancel
Please
register
or
sign in
to comment
