/*
* $$Id: LogonAction.java,v 1.29 2004/09/11 07:16:35 bel70 Exp $$
*
* ***** BEGIN LICENSE BLOCK *****
* The contents of this file are subject to the Mozilla Public License
* Version 1.1 (the "License"); you may not use this file except in
* compliance with the License. You may obtain a copy of the License
* at http://www.mozilla.org/MPL/
*
* Software distributed under the License is distributed on an "AS IS"
* basis, WITHOUT WARRANTY OF ANY KIND, either express or implied. See
* the License for the specific language governing rights and
* limitations under the License.
*
* The Original Code is JGossip forum code.
*
* The Initial Developer of the Original Code is the JResearch, Org.
* Portions created by the Initial Developer are Copyright (C) 2004
* the Initial Developer. All Rights Reserved.
*
* Contributor(s):
* Dmitry Belov <bel@jresearch.org>
*
* ***** END LICENSE BLOCK ***** */
package org.jresearch.gossip.actions.user;
import java.sql.SQLException;
import javax.servlet.http.Cookie;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
import org.apache.struts.action.ActionError;
import org.apache.struts.action.ActionErrors;
import org.apache.struts.action.ActionForm;
import org.apache.struts.action.ActionForward;
import org.apache.struts.action.ActionMapping;
import org.apache.struts.util.MessageResources;
import org.jresearch.gossip.IConst;
import org.jresearch.gossip.actions.BaseAction;
import org.jresearch.gossip.beans.user.User;
import org.jresearch.gossip.configuration.Configurator;
import org.jresearch.gossip.dao.UserDAO;
import org.jresearch.gossip.exception.SystemException;
import org.jresearch.gossip.forms.LogonForm;
import org.jresearch.gossip.log.LogLevel;
import org.jresearch.gossip.log.avalon.JGossipLog;
/**
* Implementation of <strong>Action</strong> that validates a user logon.
*
* @version $Revision: 1.29 $ $Date: 2004/09/11 07:16:35 $
*/
public final class LogonAction extends BaseAction {
/**
* DOCUMENT ME!
*
* @param mapping DOCUMENT ME!
* @param form DOCUMENT ME!
* @param request DOCUMENT ME!
* @param response DOCUMENT ME!
*
* @return DOCUMENT ME!
*/
public ActionForward process(ActionMapping mapping, ActionForm form,
HttpServletRequest request, HttpServletResponse response)
throws SystemException {
if (IConst.VALUES.FALSE.equals(Configurator.getInstance().get(IConst.CONFIG.ENABLE_FORUM_SIGN_ON))) {
return (mapping.findForward(IConst.TOKEN.DENIED));
}
// Extract attributes we will need
HttpSession session = request.getSession();
MessageResources messages = getResources(request);
LogonForm logonForm = (LogonForm) form;
User user = new User();
ActionErrors errors = new ActionErrors();
String username = logonForm.getUsername();
String password = logonForm.getPassword();
UserDAO userDAO = UserDAO.getInstance();
try {
user = userDAO.getUser(username, password);
user.setIp(request.getRemoteAddr());
if (user.getStatus() == 0) {
errors.add(ActionErrors.GLOBAL_ERROR,
new ActionError("forum.LOG_FAIL",
new Object[] {
response.encodeURL("showFogotPass.do?uid=" +
username)
}));
JGossipLog.audit(
LogLevel.WARN,
user,
messages.getMessage("logs.LOG2")+" \""+username+"\"",
session);
} else {
session.setAttribute(IConst.SESSION.USER_KEY, user);
session.removeAttribute(IConst.SESSION.GROUPS_KEY);
log(request, "logs.LOG1");
}
} catch (SQLException sqle) {
getServlet().log("Connection.process", sqle);
throw new SystemException(sqle);
}
// Report any errors we have discovered back to the original form
if (!errors.isEmpty()) {
saveErrors(request, errors);
return (mapping.getInputForward());
}
if (IConst.VALUES.TRUE.equals(Configurator.getInstance().get(IConst.CONFIG.ENABLE_AUTO_LOGIN))) {
//set autolog cookies if needed...
if (user.getSettings().isAutologin()) {
Cookie userCookie = new Cookie(IConst.COOKIE.USER_COOKIE,
user.getName() + "*" + user.getPassword());
userCookie.setMaxAge(IConst.COOKIE.SECONDS_PER_YEAR);
((HttpServletResponse) response).addCookie(userCookie);
}
}
// Remove the obsolete form bean
if (mapping.getAttribute() != null) {
if ("request".equals(mapping.getScope())) {
request.removeAttribute(mapping.getAttribute());
} else {
session.removeAttribute(mapping.getAttribute());
}
}
// Forward control to the specified success URI
String redirectUri = logonForm.getRedirectUri();
if ((redirectUri != null) && !redirectUri.equals("")) {
return (new ActionForward(redirectUri, true));
}
return (mapping.findForward(IConst.TOKEN.WELCOME));
}
}