// Get application from session
ApplicationController appController = (ApplicationController) session.getAttribute("application");
// Login credentials from FrontController
Login userLogin = request.getDatabase().getLogin();
// Create GUI if null
if (appController == null)
{
// FIXME: never reached? isLoginRequired is FALSE in both
// implementations?
// also, what is request.getRequest().getParameter("logout") ?
// and when session.isNew() ?
if ((!userLogin.isAuthenticated() && userLogin.isLoginRequired())
|| (request.getRequest().getParameter("logout") != null && !session.isNew()))
{
response.getResponse().setHeader("WWW-Authenticate", "BASIC realm=\"MOLGENIS\"");
response.getResponse().sendError(HttpServletResponse.SC_UNAUTHORIZED);
session.invalidate();