KickJava   Java API By Example, From Geeks To Geeks.

Java > Open Source Codes > org > jboss > ejb3 > test > dd > web > servlets > SecuredPostServlet


1 /*
2   * JBoss, Home of Professional Open Source
3   * Copyright 2005, JBoss Inc., and individual contributors as indicated
4   * by the @authors tag. See the copyright.txt in the distribution for a
5   * full listing of individual contributors.
6   *
7   * This is free software; you can redistribute it and/or modify it
8   * under the terms of the GNU Lesser General Public License as
9   * published by the Free Software Foundation; either version 2.1 of
10   * the License, or (at your option) any later version.
11   *
12   * This software is distributed in the hope that it will be useful,
13   * but WITHOUT ANY WARRANTY; without even the implied warranty of
14   * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
15   * Lesser General Public License for more details.
16   *
17   * You should have received a copy of the GNU Lesser General Public
18   * License along with this software; if not, write to the Free
19   * Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
20   * 02110-1301 USA, or see the FSF site: http://www.fsf.org.
21   */
22 package org.jboss.ejb3.test.dd.web.servlets;
23
24 import java.io.IOException JavaDoc;
25 import java.io.PrintWriter JavaDoc;
26 import java.security.Principal JavaDoc;
27 import javax.servlet.ServletException JavaDoc;
28 import javax.servlet.http.HttpServlet JavaDoc;
29 import javax.servlet.http.HttpServletRequest JavaDoc;
30 import javax.servlet.http.HttpServletResponse JavaDoc;
31
32 /** A secured servlet which is the target of a post from an unsecured servlet.
33  * This validates that the post data is not lost when the original post is
34  * redirected to the form auth login page.
35  *
36  * @author Scott.Stark@jboss.org
37  * @version $Revision: 37459 $
38  */
39 public class SecuredPostServlet extends HttpServlet JavaDoc
40 {
41    protected void processRequest(HttpServletRequest JavaDoc request, HttpServletResponse JavaDoc response)
42       throws ServletException JavaDoc, IOException JavaDoc
43    {
44       Principal JavaDoc user = request.getUserPrincipal();
45       String JavaDoc path = request.getPathInfo();
46       // Validate that there is an authenticated user
47 if( user == null )
48          throw new ServletException JavaDoc(path+" not secured");
49       // Validate that the original post data was not lost
50 String JavaDoc value = request.getParameter("checkParam");
51       if( value == null || value.equals("123456") == false )
52          throw new ServletException JavaDoc("Did not find checkParam=123456");
53
54       PrintWriter JavaDoc out = response.getWriter();
55       response.setContentType("text/html");
56       out.println("<html>");
57       out.println("<head><title>"+path+"</title></head><body>");
58       out.println("<h1>"+path+" Accessed</h1>");
59       out.println("You have accessed this servlet as user: " + user);
60       out.println("</body></html>");
61       out.close();
62    }
63
64    protected void doGet(HttpServletRequest JavaDoc request, HttpServletResponse JavaDoc response)
65       throws ServletException JavaDoc, IOException JavaDoc
66    {
67       processRequest(request, response);
68    }
69
70    protected void doPost(HttpServletRequest JavaDoc request, HttpServletResponse JavaDoc response)
71       throws ServletException JavaDoc, IOException JavaDoc
72    {
73       processRequest(request, response);
74    }
75
76 }
77
Popular Tags