1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34 package info.magnolia.cms.security.auth.login;
35
36 import info.magnolia.cms.security.auth.callback.CredentialsCallbackHandler;
37 import info.magnolia.cms.security.auth.callback.PlainTextCallbackHandler;
38
39 import javax.servlet.http.HttpServletRequest;
40 import javax.servlet.http.HttpServletResponse;
41
42 import org.apache.commons.lang.StringUtils;
43 import org.slf4j.Logger;
44 import org.slf4j.LoggerFactory;
45
46
47
48
49
50 public class FormLogin extends LoginHandlerBase implements LoginHandler {
51
52 private static final Logger log = LoggerFactory.getLogger(FormLogin.class);
53
54 public static final String PARAMETER_USER_ID = "mgnlUserId";
55
56 public static final String PARAMETER_PSWD = "mgnlUserPSWD";
57
58 public static final String PARAMETER_REALM = "mgnlRealm";
59
60
61
62
63
64 private String jaasChain = "magnolia";
65
66 public LoginResult handle(HttpServletRequest request, HttpServletResponse response) {
67 String userid = request.getParameter(PARAMETER_USER_ID);
68 if (StringUtils.isNotEmpty(userid)) {
69 String pswd = StringUtils.defaultString(request.getParameter(PARAMETER_PSWD));
70 String realm = StringUtils.defaultString(request.getParameter(PARAMETER_REALM));
71
72 CredentialsCallbackHandler callbackHandler = new PlainTextCallbackHandler(userid, pswd.toCharArray(), realm);
73 return authenticate(callbackHandler, getJaasChain());
74 }
75 return LoginResult.NOT_HANDLED;
76 }
77
78 public String getJaasChain() {
79 return this.jaasChain;
80 }
81
82
83 public void setJaasChain(String jaasChain) {
84 this.jaasChain = jaasChain;
85 }
86
87 }