JBossWeb SVN: r1387 - trunk/java/org/apache/catalina/connector. - jbossweb-commits

Tuesday, 16 February 2010

Author: remy.maucherat(a)jboss.com
Date: 2010-02-16 20:28:24 -0500 (Tue, 16 Feb 2010)
New Revision: 1387

Modified:
   trunk/java/org/apache/catalina/connector/Request.java
Log:
- Add optional code to expose the principal associated with the session (without any auth
or login, obviously).

Modified: trunk/java/org/apache/catalina/connector/Request.java
===================================================================

--- trunk/java/org/apache/catalina/connector/Request.java	2010-02-10 17:25:53 UTC (rev
1386)
+++ trunk/java/org/apache/catalina/connector/Request.java	2010-02-17 01:28:24 UTC (rev
1387)
@@ -147,7 +147,11 @@
         Globals.STRICT_SERVLET_COMPLIANCE
         ||
Boolean.valueOf(System.getProperty("org.apache.catalina.connector.Request.CHECK_ASYNC",
"true")).booleanValue();
 
-    
+
+    protected static final boolean USE_PRINCIPAL_FROM_SESSION = 
+       
Boolean.valueOf(System.getProperty("org.apache.catalina.connector.Request.USE_PRINCIPAL_FROM_SESSION",
"false")).booleanValue();
+
+
     // ----------------------------------------------------------- Constructors
 
 
@@ -2379,7 +2383,8 @@
     public boolean isUserInRole(String role) {
 
         // Have we got an authenticated principal at all?
-        if (userPrincipal == null)
+        Principal principal = doGetUserPrincipal();
+        if (principal == null)
             return (false);
 
         // Identify the Realm we will use for checking role assignmenets
@@ -2393,12 +2398,12 @@
         if (wrapper != null) {
             String realRole = wrapper.findSecurityReference(role);
             if ((realRole != null) &&
-                realm.hasRole(userPrincipal, realRole))
+                realm.hasRole(principal, realRole))
                 return (true);
         }
 
         // Check for a role defined directly as a <security-role>
-        return (realm.hasRole(userPrincipal, role));
+        return (realm.hasRole(principal, role));
 
     }
 
@@ -2415,15 +2420,30 @@
      * Return the principal that has been authenticated for this Request.
      */
     public Principal getUserPrincipal() {
-        if (userPrincipal instanceof GenericPrincipal) {
-            return ((GenericPrincipal) userPrincipal).getUserPrincipal();
+        Principal principal = doGetUserPrincipal();
+        if (principal instanceof GenericPrincipal) {
+            return ((GenericPrincipal) principal).getUserPrincipal();
         } else {
-            return (userPrincipal);
+            return (principal);
         }
     }
 
 
     /**
+     * Return the principal that has been authenticated for this Request.
+     */
+    protected Principal doGetUserPrincipal() {
+        if (USE_PRINCIPAL_FROM_SESSION && userPrincipal == null) {
+            Session session = doGetSession(false);
+            Principal principal = session.getPrincipal();
+            if (principal != null)
+            return principal;
+        }
+        return userPrincipal;
+    }
+
+
+    /**
      * Return the session associated with this Request, creating one
      * if necessary.
      */


    

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

JBossWeb SVN: r1387 - trunk/java/org/apache/catalina/connector.