[Yanel-commits] rev 33639 -
public/yanel/trunk/src/webapp/src/java/org/wyona/yanel/servlet
michi at wyona.com
michi at wyona.com
Tue Mar 18 23:03:09 CET 2008
Author: michi
Date: 2008-03-18 23:03:08 +0100 (Tue, 18 Mar 2008)
New Revision: 33639
Modified:
public/yanel/trunk/src/webapp/src/java/org/wyona/yanel/servlet/YanelServlet.java
Log:
obsolete code removed
Modified: public/yanel/trunk/src/webapp/src/java/org/wyona/yanel/servlet/YanelServlet.java
===================================================================
--- public/yanel/trunk/src/webapp/src/java/org/wyona/yanel/servlet/YanelServlet.java 2008-03-18 18:56:46 UTC (rev 33638)
+++ public/yanel/trunk/src/webapp/src/java/org/wyona/yanel/servlet/YanelServlet.java 2008-03-18 22:03:08 UTC (rev 33639)
@@ -1045,72 +1045,6 @@
throw new ServletException(e.getMessage());
}
-
-
-
-/*
- // HTTP BASIC Authorization (For clients such as for instance Sunbird, OpenOffice or cadaver)
- // IMPORT NOTE: BASIC Authentication needs to be checked on every request, because clients often do not support session handling
-
- String authorization = request.getHeader("Authorization");
- log.debug("Checking for Authorization Header: " + authorization);
- if (authorization != null) {
- if (authorization.toUpperCase().startsWith("BASIC")) {
- log.debug("Using BASIC authorization ...");
- // Get encoded user and password, comes after "BASIC "
- String userpassEncoded = authorization.substring(6);
- // Decode it, using any base 64 decoder
- sun.misc.BASE64Decoder dec = new sun.misc.BASE64Decoder();
- String userpassDecoded = new String(dec.decodeBuffer(userpassEncoded));
- log.debug("Username and Password Decoded: " + userpassDecoded);
- String[] up = userpassDecoded.split(":");
- String username = up[0];
- String password = up[1];
- log.debug("username: " + username + ", password: " + password);
- try {
- User user = realm.getIdentityManager().getUserManager().getUser(username);
- if (user != null && user.authenticate(password)) {
- authorized = realm.getPolicyManager().authorize(path, new Identity(user), new Usecase("view"));
- if(authorized) {
- return null;
- } else {
- log.warn("HTTP BASIC Authorization failed for " + username + "!");
- response.setHeader("WWW-Authenticate", "BASIC realm=\"" + realm.getName() + "\"");
- response.sendError(response.SC_UNAUTHORIZED);
- PrintWriter writer = response.getWriter();
- writer.print("BASIC Authorization Failed!");
- return response;
- }
- } else {
- log.warn("HTTP BASIC Authentication failed for " + username + "!");
- response.setHeader("WWW-Authenticate", "BASIC realm=\"" + realm.getName() + "\"");
- response.sendError(response.SC_UNAUTHORIZED);
- PrintWriter writer = response.getWriter();
- writer.print("BASIC Authentication Failed!");
- return response;
- }
- } catch (Exception e) {
- log.error(e.getMessage(), e);
- throw new ServletException(e.getMessage(), e);
- }
- } else if (authorization.toUpperCase().startsWith("DIGEST")) {
- log.error("DIGEST is not implemented");
- authorized = false;
- response.sendError(response.SC_UNAUTHORIZED);
- response.setHeader("WWW-Authenticate", "DIGEST realm=\"" + realm.getName() + "\"");
- PrintWriter writer = response.getWriter();
- writer.print("DIGEST is not implemented!");
- return response;
- } else {
- log.warn("No such authorization implemented resp. handled by session based authorization: " + authorization);
- authorized = false;
- }
- }
-*/
-
-
-
-
// Check Authorization
boolean authorized = false;
try {
More information about the Yanel-commits
mailing list