Examples of org.apache.isis.runtimes.dflt.webapp.auth.AuthenticationSessionLookupStrategyDefault

• org.apache.isis.runtimes.dflt.webapp.auth.AuthenticationSessionLookupStrategyDefault
  Returns a valid {@link AuthenticationSession} through a number of mechanisms.

  Specifically:

  • it looks up from the {@link HttpSession} using the value{@value WebAppConstants#HTTP_SESSION_AUTHENTICATION_SESSION_KEY}
  • failing that, if in exploration mode, then returns an exploration session
  • failing that, if a {@link LogonFixture} has been provided and not already used,will provide an session for that fixture. The {@link HttpSession} also stores the value{@value WebAppConstants#HTTP_SESSION_LOGGED_ON_PREVIOUSLY_USING_LOGON_FIXTURE_KEY} in the sessionto track whether this has been done

    @Override
    protected void doPost(final HttpServletRequest request, final HttpServletResponse response)
        throws ServletException, IOException {

        AuthenticationSession authSession = new AuthenticationSessionLookupStrategyDefault().lookup(request, response);
        if (authSession != null) {
            final boolean sessionValid = IsisContext.getAuthenticationManager().isSessionValid(authSession);
            if (sessionValid) {
                loggedIn(response, authSession.getUserName());
                return;