| .. | .. |
|---|
| 3 | 3 | import java.io.IOException; |
|---|
| 4 | 4 | import java.net.URI; |
|---|
| 5 | 5 | |
|---|
| 6 | +import javax.annotation.security.RolesAllowed; |
|---|
| 6 | 7 | import javax.servlet.http.HttpServletRequest; |
|---|
| 7 | 8 | import javax.ws.rs.FormParam; |
|---|
| 8 | 9 | import javax.ws.rs.GET; |
|---|
| .. | .. |
|---|
| 40 | 41 | @GET |
|---|
| 41 | 42 | @Produces( |
|---|
| 42 | 43 | { MediaType.TEXT_HTML }) |
|---|
| 43 | | - public Response index() { |
|---|
| 44 | | - |
|---|
| 44 | + public Response index(@Context HttpServletRequest request) { |
|---|
| 45 | + log.info("index session: " + request.getSession()); |
|---|
| 45 | 46 | URI uri = UriBuilder.fromUri("/login").build(); |
|---|
| 46 | 47 | return Response.seeOther(uri).build(); |
|---|
| 47 | 48 | // return Response.ok().entity("License server").build(); |
|---|
| .. | .. |
|---|
| 51 | 52 | @Path("/login") |
|---|
| 52 | 53 | @Produces( |
|---|
| 53 | 54 | { MediaType.TEXT_HTML }) |
|---|
| 54 | | - public Response login() { |
|---|
| 55 | + public Response login(@Context HttpServletRequest request) { |
|---|
| 56 | + log.info("index login: " + request.getSession()); |
|---|
| 55 | 57 | try { |
|---|
| 56 | 58 | String index = IOUtils.toString(this.getClass().getResourceAsStream("/static/login.html")); |
|---|
| 57 | 59 | return Response.ok().entity(index).build(); |
|---|
| .. | .. |
|---|
| 67 | 69 | @Produces( |
|---|
| 68 | 70 | { MediaType.TEXT_HTML }) |
|---|
| 69 | 71 | public Response login(@FormParam("user") String user, @FormParam("password") String password, @Context HttpServletRequest request) { |
|---|
| 72 | + log.info("index session: " + request.getSession()); |
|---|
| 70 | 73 | log.info("Request: " + request.getParameter("user")); |
|---|
| 71 | | - log.info("user/pass: {} == {} ? ", user, password); |
|---|
| 74 | + log.info("is user in role: {} == {} ? ", "advance", request.isUserInRole("advance")); |
|---|
| 72 | 75 | // log.info("user: {} == {} ? " + request.getParameter("user"), user); |
|---|
| 76 | + request.getSession().setAttribute("user", user); |
|---|
| 73 | 77 | URI uri = UriBuilder.fromUri("/main").build(); |
|---|
| 74 | 78 | return Response.seeOther(uri).build(); |
|---|
| 75 | 79 | } |
|---|
| .. | .. |
|---|
| 81 | 85 | @Path("/main") |
|---|
| 82 | 86 | @Produces( |
|---|
| 83 | 87 | { MediaType.TEXT_HTML }) |
|---|
| 84 | | - public Response main() { |
|---|
| 88 | + @RolesAllowed("advance") |
|---|
| 89 | + public Response main(@Context HttpServletRequest request) { |
|---|
| 85 | 90 | try { |
|---|
| 91 | + log.info("Is user in role advance: {}", request.isUserInRole("advance")); |
|---|
| 86 | 92 | String index = IOUtils.toString(this.getClass().getResourceAsStream("/static/main.html")); |
|---|
| 87 | 93 | return Response.ok().entity(index).build(); |
|---|
| 88 | 94 | } catch (IOException e) { |
|---|
| .. | .. |
|---|
| 92 | 98 | return Response.status(Status.FORBIDDEN).build(); |
|---|
| 93 | 99 | |
|---|
| 94 | 100 | } |
|---|
| 101 | + |
|---|
| 102 | + @GET |
|---|
| 103 | + @Path("/logout") |
|---|
| 104 | + @Produces( |
|---|
| 105 | + { MediaType.TEXT_HTML }) |
|---|
| 106 | + public Response logout(@Context HttpServletRequest request) { |
|---|
| 107 | + request.getSession().setAttribute("user", null); |
|---|
| 108 | + URI uri = UriBuilder.fromUri("/login").build(); |
|---|
| 109 | + return Response.seeOther(uri).build(); |
|---|
| 110 | + |
|---|
| 111 | + } |
|---|
| 112 | + |
|---|
| 95 | 113 | // |
|---|
| 96 | 114 | // private <T> ServiceResponse<T> buildErrorResponse(ServiceResponse<T> response, String msgErrorCode) { |
|---|
| 97 | 115 | // response.setSuccess(false); |
|---|
