Source Code of org.jresearch.gossip.actions.user.LogonAction

/*
 * $$Id: LogonAction.java,v 1.29 2004/09/11 07:16:35 bel70 Exp $$
 *
 * ***** BEGIN LICENSE BLOCK *****
 * The contents of this file are subject to the Mozilla Public License
 * Version 1.1 (the "License"); you may not use this file except in
 * compliance with the License. You may obtain a copy of the License
 * at http://www.mozilla.org/MPL/
 *
 * Software distributed under the License is distributed on an "AS IS"
 * basis, WITHOUT WARRANTY OF ANY KIND, either express or implied. See
 * the License for the specific language governing rights and
 * limitations under the License.
 *
 * The Original Code is JGossip forum code.
 *
 * The Initial Developer of the Original Code is the JResearch, Org.
 * Portions created by the Initial Developer are Copyright (C) 2004
 * the Initial Developer. All Rights Reserved.
 *
 * Contributor(s):
 *              Dmitry Belov <bel@jresearch.org>
 *
 * ***** END LICENSE BLOCK ***** */
package org.jresearch.gossip.actions.user;

import java.sql.SQLException;

import javax.servlet.http.Cookie;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;

import org.apache.struts.action.ActionError;
import org.apache.struts.action.ActionErrors;
import org.apache.struts.action.ActionForm;
import org.apache.struts.action.ActionForward;
import org.apache.struts.action.ActionMapping;
import org.apache.struts.util.MessageResources;
import org.jresearch.gossip.IConst;
import org.jresearch.gossip.actions.BaseAction;
import org.jresearch.gossip.beans.user.User;
import org.jresearch.gossip.configuration.Configurator;
import org.jresearch.gossip.dao.UserDAO;
import org.jresearch.gossip.exception.SystemException;
import org.jresearch.gossip.forms.LogonForm;
import org.jresearch.gossip.log.LogLevel;
import org.jresearch.gossip.log.avalon.JGossipLog;


/**
 * Implementation of <strong>Action</strong> that validates a user logon.
 *
 * @version $Revision: 1.29 $ $Date: 2004/09/11 07:16:35 $
 */
public final class LogonAction extends BaseAction {
    /**
     * DOCUMENT ME!
     *
     * @param mapping DOCUMENT ME!
     * @param form DOCUMENT ME!
     * @param request DOCUMENT ME!
     * @param response DOCUMENT ME!
     *
     * @return DOCUMENT ME!
     */
    public ActionForward process(ActionMapping mapping, ActionForm form,
        HttpServletRequest request, HttpServletResponse response)
        throws SystemException {
        if (IConst.VALUES.FALSE.equals(Configurator.getInstance().get(IConst.CONFIG.ENABLE_FORUM_SIGN_ON))) {
            return (mapping.findForward(IConst.TOKEN.DENIED));
        }

        // Extract attributes we will need
        HttpSession session = request.getSession();
        MessageResources messages = getResources(request);
        LogonForm logonForm = (LogonForm) form;
        User user = new User();

        ActionErrors errors = new ActionErrors();

        String username = logonForm.getUsername();
        String password = logonForm.getPassword();

        UserDAO userDAO = UserDAO.getInstance();

        try {

            user = userDAO.getUser(username, password);
            user.setIp(request.getRemoteAddr());

            if (user.getStatus() == 0) {
                errors.add(ActionErrors.GLOBAL_ERROR,
                    new ActionError("forum.LOG_FAIL",
                        new Object[] {
                            response.encodeURL("showFogotPass.do?uid=" +
                                username)
                        }));
                JGossipLog.audit(
          LogLevel.WARN,
          user,
          messages.getMessage("logs.LOG2")+" \""+username+"\"",
          session);
            } else {
                session.setAttribute(IConst.SESSION.USER_KEY, user);
                session.removeAttribute(IConst.SESSION.GROUPS_KEY);
                log(request, "logs.LOG1");
            }
        } catch (SQLException sqle) {
            getServlet().log("Connection.process", sqle);
            throw new SystemException(sqle);
        }

        // Report any errors we have discovered back to the original form
        if (!errors.isEmpty()) {
            saveErrors(request, errors);

            return (mapping.getInputForward());
        }

        if (IConst.VALUES.TRUE.equals(Configurator.getInstance().get(IConst.CONFIG.ENABLE_AUTO_LOGIN))) {
            //set autolog cookies if needed...
            if (user.getSettings().isAutologin()) {
                Cookie userCookie = new Cookie(IConst.COOKIE.USER_COOKIE,
                        user.getName() + "*" + user.getPassword());
                userCookie.setMaxAge(IConst.COOKIE.SECONDS_PER_YEAR);
                ((HttpServletResponse) response).addCookie(userCookie);
            }
        }

        // Remove the obsolete form bean
        if (mapping.getAttribute() != null) {
            if ("request".equals(mapping.getScope())) {
                request.removeAttribute(mapping.getAttribute());
            } else {
                session.removeAttribute(mapping.getAttribute());
            }
        }

        // Forward control to the specified success URI
        String redirectUri = logonForm.getRedirectUri();

        if ((redirectUri != null) && !redirectUri.equals("")) {
            return (new ActionForward(redirectUri, true));
        }

        return (mapping.findForward(IConst.TOKEN.WELCOME));
    }
}