use of org.xdi.context.J2EContext in project oxTrust by GluuFederation.
the class ClientAction method doExecute.
/**
* {@InheritDoc}
*/
@Override
protected Event doExecute(final RequestContext context) throws Exception {
final HttpServletRequest request = WebUtils.getHttpServletRequest(context);
final HttpServletResponse response = WebUtils.getHttpServletResponse(context);
// Web context
final WebContext webContext = new J2EContext(request, response);
// It's an authentication
if (client.isAuthorizationResponse(webContext)) {
logger.info("Procession authentication request");
// Check if oxAuth request state is correct
if (!client.isValidRequestState(webContext)) {
logger.warn("The state in session and in request are not equals");
// Reinit login page
prepareForLoginPage(context, webContext);
return new Event(this, "stop");
}
// Try to authenticate
final ClientCredential credentials = getClientCrendentials(context, webContext);
if (credentials != null) {
WebUtils.putTicketGrantingTicketInRequestScope(context, this.centralAuthenticationService.createTicketGrantingTicket(credentials));
return success();
}
}
// Go to login page
prepareForLoginPage(context, webContext);
return error();
}
use of org.xdi.context.J2EContext in project oxTrust by GluuFederation.
the class ClientAuthenticationHandler method doAuthentication.
/**
* {@InheritDoc}
*/
@Override
protected HandlerResult doAuthentication(final Credential credential) throws GeneralSecurityException, PreventedException {
final ClientCredential clientCredentials = (ClientCredential) credential;
final OpenIdCredentials openIdCredentials = clientCredentials.getOpenIdCredentials();
logger.debug("Client credentials : '{}'", clientCredentials);
final String clientName = openIdCredentials.getClientName();
logger.debug("Client name : '{}'", clientName);
// Web context
final ServletExternalContext servletExternalContext = (ServletExternalContext) ExternalContextHolder.getExternalContext();
final HttpServletRequest request = (HttpServletRequest) servletExternalContext.getNativeRequest();
final HttpServletResponse response = (HttpServletResponse) servletExternalContext.getNativeResponse();
final WebContext webContext = new J2EContext(request, response);
// Get user profile
final UserProfile userProfile = this.client.getUserProfile(openIdCredentials, webContext);
logger.debug("userProfile : {}", userProfile);
if (userProfile != null) {
final String id = userProfile.getId();
if (StringHelper.isNotEmpty(id)) {
openIdCredentials.setUserProfile(userProfile);
return new HandlerResult(this, clientCredentials, new SimplePrincipal(id, userProfile.getAttributes()));
}
}
throw new FailedLoginException("Provider did not produce profile for " + clientCredentials);
}
Aggregations