AuthView.java

package fi.codecrew.moya.web.cdiview.user;

import java.security.Principal;

import javax.ejb.EJB;
import javax.enterprise.context.RequestScoped;
import javax.faces.context.ExternalContext;
import javax.faces.context.FacesContext;
import javax.inject.Inject;
import javax.inject.Named;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServletRequest;

import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

import fi.codecrew.moya.beans.BootstrapBeanLocal;
import fi.codecrew.moya.handler.NavigationHandler;
import fi.codecrew.moya.model.EventUser;
import fi.codecrew.moya.model.User;
import fi.codecrew.moya.web.cdiview.GenericCDIView;

@Named
@RequestScoped
public class AuthView extends GenericCDIView {

	private static final long serialVersionUID = -124938035666457802L;

	private static final Logger logger = LoggerFactory.getLogger(AuthView.class);

	private String login;
	private String password;

	@Inject
	private NavigationHandler navihandler;
	
	@EJB
	private transient BootstrapBeanLocal bootStrapBean;

	private HttpServletRequest getRequest() {
		FacesContext facesContext = FacesContext.getCurrentInstance();
		ExternalContext externalContext = facesContext.getExternalContext();
		Object request = externalContext.getRequest();
		return request instanceof HttpServletRequest ? (HttpServletRequest) request : null;
	}

	public void executeLogout() {
		HttpServletRequest req = getRequest();
		if (permbean.isLoggedIn()) {
			try {
				req.logout();
			} catch (ServletException e) {
				logger.warn("Error executing logout", e);
			}
		}
		
		req.getSession().invalidate();

		navihandler.forward("/frontpage");
	}
	
	
	public String doLogout() {
		HttpServletRequest req = getRequest();
		if (permbean.isLoggedIn()) {
			try {
				req.logout();
			} catch (ServletException e) {
				logger.warn("Error executing logout", e);
			}
		}
		
		req.getSession().invalidate();
		
		navihandler.forward("/frontpage");
		
		return "/frontpage";
	}
	
	public void executeLogin() {
		executeLogin(null);
	}
	
	public void executeLogin(String onError) {
		if(onError == null)
			onError = "/auth/loginError";
		doLogin(onError);
	}

	private void doLogin(String onError) {
		
		bootStrapBean.saneDefaults();
		
		if (login == null || password == null || login.isEmpty() || password.isEmpty()) {
			return;
		}

		HttpServletRequest request = getRequest();

		if (request.getUserPrincipal() != null) {
			logger.info("Principal not empty. need to logout first");
			try {
				request.logout();
			} catch (ServletException e) {
				logger.info("Error logging out before logging in...");
			}
		}

		try {
			request.login(login.toLowerCase(), password);
		} catch (Throwable e) {
			logger.info("Error while trying to login {}", e.getMessage());

		} finally {
			Principal principal = request.getUserPrincipal();

			logger.info("Logged in principal: {}", principal);
			if (principal != null) {
				navihandler.redirectToSaved();
			} else {
				navihandler.forward(onError);
				try {
					request.login(User.ANONYMOUS_LOGINNAME, null);
				} catch (ServletException e) {
					logger.warn("Error while trying to relogin as anonymous", e);
				}
			}

		}
		
		return;
	}
	
	public void executeAdduserViewLogin() {
		navihandler.saveNavigation("/admin/adduser/update");
		doLogin("/admin/adduser/login");
	}
 	
	public String executeLoginAction() {
		executeLogin();
		return null;
	}

	public String getLogin() {
		return login;
	}

	public void setLogin(String login) {
		this.login = login;
	}

	public String getPassword() {
		return password;
	}

	public void setPassword(String password) {
		this.password = password;
	}

	public void executeAdduserAutoLogin(EventUser user, String password2) {
		// TODO Auto-generated method stub
		this.login = user.getLogin();
		this.password = password2;
		navihandler.saveNavigation("/admin/adduser/update");
		doLogin("/admin/adduser/loginerror");
	}

}