Custom Authenticator with FormLogin and UserInRole
From Resin 3.0
(Difference between revisions)
(New page: Category: Cookbook Category: Security === WEB-INF/resin-web.xml === <web-app xmlns="http://caucho.com/ns/resin" xmlns:resin="urn:java:com.caucho.resin" xmlns...) |
m (Cookbook: Custom Authenticator with FormLogin and UserInRole moved to Custom Authenticator with FormLogin and UserInRole) |
||
| (4 intermediate revisions by one user not shown) | |||
| Line 20: | Line 20: | ||
package qa; | package qa; | ||
| − | + | ||
import java.security.*; | import java.security.*; | ||
| − | + | ||
import com.caucho.security.*; | import com.caucho.security.*; | ||
| − | + | ||
public class TestAuthenticator extends AbstractAuthenticator { | public class TestAuthenticator extends AbstractAuthenticator { | ||
@Override | @Override | ||
| Line 46: | Line 46: | ||
} | } | ||
| − | === login. | + | === login.jsp === |
<html> | <html> | ||
<form url='j_security_check'> | <form url='j_security_check'> | ||
| − | User: <input type='text' name='j_username'> | + | User: <input type='text' name='j_username'><br> |
| − | Password: <input type='password' name='j_password'> | + | Password: <input type='password' name='j_password'><br> |
<input type='submit'> | <input type='submit'> | ||
</form> | </form> | ||
</html> | </html> | ||
| − | === error. | + | === error.jsp === |
<html> | <html> | ||
| − | + | <h1>failed login</h1> | |
| − | User: <input type='text' name='j_username'> | + | User: <input type='text' name='j_username'><br> |
| − | Password: <input type='password' name='j_password'> | + | Password: <input type='password' name='j_password'><br> |
<input type='submit'> | <input type='submit'> | ||
</form> | </form> | ||
</html> | </html> | ||
Latest revision as of 17:36, 21 October 2011
Contents |
[edit] WEB-INF/resin-web.xml
<web-app xmlns="http://caucho.com/ns/resin" xmlns:resin="urn:java:com.caucho.resin" xmlns:qa="urn:java:qa"> <qa:TestAuthenticator/> <resin:FormLogin form-login-page="/login.jsp" form-error-page="/error.jsp"/> <resin:Allow url-pattern="/admin/*"> <resin:IfUserInRole role="admin"/> </resin:Allow> </web-app>
[edit] test.MyAuthenticator
package qa;
import java.security.*;
import com.caucho.security.*;
public class TestAuthenticator extends AbstractAuthenticator {
@Override
public Principal authenticate(Principal principal, char []password)
{
if (principal.getName().equals("harry")
&& "quidditch".equals(new String(password))) {
return new MyPrincipal("harry");
}
else {
return null;
}
}
@Override
public boolean isUserInRole(Principal user, String role)
{
return "admin".equals(role)
&& user != null && user.getName().equals("harry");
}
}
[edit] login.jsp
<html> <form url='j_security_check'> User: <input type='text' name='j_username'><br> Password: <input type='password' name='j_password'><br> <input type='submit'> </form> </html>
[edit] error.jsp
<html> <h1>failed login</h1> User: <input type='text' name='j_username'><br> Password: <input type='password' name='j_password'><br> <input type='submit'> </form> </html>
