View Javadoc
1   /*
2    * Copyright (c) 2002-2014, Mairie de Paris
3    * All rights reserved.
4    *
5    * Redistribution and use in source and binary forms, with or without
6    * modification, are permitted provided that the following conditions
7    * are met:
8    *
9    *  1. Redistributions of source code must retain the above copyright notice
10   *     and the following disclaimer.
11   *
12   *  2. Redistributions in binary form must reproduce the above copyright notice
13   *     and the following disclaimer in the documentation and/or other materials
14   *     provided with the distribution.
15   *
16   *  3. Neither the name of 'Mairie de Paris' nor 'Lutece' nor the names of its
17   *     contributors may be used to endorse or promote products derived from
18   *     this software without specific prior written permission.
19   *
20   * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
21   * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22   * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23   * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDERS OR CONTRIBUTORS BE
24   * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
25   * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
26   * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
27   * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
28   * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
29   * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
30   * POSSIBILITY OF SUCH DAMAGE.
31   *
32   * License 1.0
33   */
34  package fr.paris.lutece.plugins.mylutece.modules.persona.web;
35  
36  import fr.paris.lutece.plugins.mylutece.modules.persona.service.PersonaService;
37  import fr.paris.lutece.portal.service.util.AppLogService;
38  import fr.paris.lutece.util.httpaccess.HttpAccess;
39  import fr.paris.lutece.util.httpaccess.HttpAccessException;
40  
41  import java.io.IOException;
42  import java.io.Writer;
43  
44  import java.util.HashMap;
45  import java.util.Map;
46  
47  import javax.servlet.ServletException;
48  import javax.servlet.http.HttpServlet;
49  import javax.servlet.http.HttpServletRequest;
50  import javax.servlet.http.HttpServletResponse;
51  
52  
53  /**
54   * AuthLoginServlet
55   */
56  public class AuthLoginServlet extends HttpServlet
57  {
58      private static final String PARAMETER_ASSERTION = "assertion";
59      private static final String PARAMETER_AUDIENCE = "audience";
60      private static final String URL_VERIFIER = "https://verifier.login.persona.org/verify";
61  
62      @Override
63      protected void service( HttpServletRequest request, HttpServletResponse response )
64          throws ServletException, IOException
65      {
66          String strAssertion = request.getParameter( PARAMETER_ASSERTION );
67          Map<String, String> mapParams = new HashMap<String, String>(  );
68          mapParams.put( PARAMETER_ASSERTION, strAssertion );
69          mapParams.put( PARAMETER_AUDIENCE,
70              request.getScheme(  ) + "://" + request.getServerName(  ) + ":" +
71              ( ( request.getServerPort(  ) == 80 ) ? "" : request.getServerPort(  ) ) );
72  
73          HttpAccess httpClient = new HttpAccess(  );
74  
75          response.setStatus( HttpServletResponse.SC_OK );
76          response.setContentType( "text/html" );
77  
78          Writer out = response.getWriter(  );
79  
80          try
81          {
82              String strResponse = httpClient.doPost( URL_VERIFIER, mapParams );
83              PersonaService.processAuthentication( request, strResponse );
84              out.write( "Authentication successful" );
85          }
86          catch ( HttpAccessException ex )
87          {
88              AppLogService.error( "Error processing Persona authentication : " + ex.getMessage(  ), ex );
89              out.write( "Authentication failed : " + ex.getMessage(  ) );
90          }
91  
92          out.flush(  );
93          out.close(  );
94      }
95  }