[jboss-user] [JBoss Seam] - Re: page action not called when login-required=
PatrickMadden
do-not-reply at jboss.com
Mon Apr 9 23:45:35 EDT 2007
What version of Seam are you using. Are you using the new Identity and Authenticator paradigm?
If so here is how I define pages that are required to have the user logged in and I successfully get redirected to the proper page when login is successful.
Here is an snippet from my pages.xml:
| <page view-id="/download.xhtml">
| <restrict>#{s:hasRole('user')}</restrict>
| </page>
|
| <page view-id="/shop.xhtml">
| <restrict>#{s:hasRole('user')}</restrict>
| </page>
|
Here is my Authenticator object which is generated by seam-gen and then edited by me.
| package com.clooster.web.ejb.session;
|
| import java.util.List;
|
| import javax.faces.application.FacesMessage;
| import javax.faces.context.FacesContext;
| import javax.naming.NamingException;
| import javax.persistence.EntityManager;
| import javax.persistence.EntityManagerFactory;
|
| import org.jboss.seam.annotations.In;
| import org.jboss.seam.annotations.Logger;
| import org.jboss.seam.annotations.Name;
| import org.jboss.seam.contexts.Context;
| import org.jboss.seam.core.FacesMessages;
| import org.jboss.seam.log.Log;
| import org.jboss.seam.security.Identity;
| import org.jboss.seam.util.Naming;
|
| import com.clooster.web.ejb.entity.ClUsers;
| import com.clooster.xjava.common.XSystem;
|
| @Name("authenticator")
| public class Authenticator
| {
| @Logger
| Log log;
|
| @In
| Identity identity;
|
| @In
| FacesMessages facesMessages;
|
| @In
| private transient Context sessionContext;
|
| @In
| private transient FacesContext facesContext;
|
| @SuppressWarnings("unchecked")
| public boolean authenticate()
| {
| boolean rc;
|
| log.info("authenticating #0", identity.getUsername());
|
| EntityManager em;
| try
| {
| em = this.getEntityManager();
|
| List<ClUsers> results = em
| .createQuery(
| "from ClUsers where cloosterid=:cloosterid and password=:password")
| .setParameter("cloosterid", identity.getUsername())
| .setParameter("password",
| identity.getPassword().getBytes())
| .getResultList();
|
| if (results.size() == 0)
| {
| facesContext.addMessage(null, new FacesMessage(
| "Invalid login"));
|
| rc = false;
| }
| else
| {
| ClUsers user = results.get(0);
|
| // log.info("Logged in user = " + user.getFirstname() +
| // " " + user.getLastname());
| sessionContext.set("loggedIn", true);
| sessionContext.set("user", user);
|
| // write your authentication logic here,
| // return true if the authentication was
| // successful, false otherwise
| identity.addRole("user");
|
| log.info("Logged In");
| rc = true;
| }
| }
| catch (NamingException e)
| {
| facesContext
| .addMessage(
| null,
| new FacesMessage(
| "Internal Error obtaining EntiryManager - contact webmaster at cloostr.com"));
|
| XSystem.logException(e);
|
| rc = false;
| }
|
| return rc;
| }
|
| protected EntityManager getEntityManager() throws NamingException
| {
| EntityManagerFactory factory = (EntityManagerFactory) Naming
| .getInitialContext().lookup(
| "java:/CloosterEntityManagerFactory");
|
| EntityManager em = factory.createEntityManager();
|
| return em;
| }
| }
|
Here is my login.xhtml mainly generated via seam-gen as well:
| <!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
| "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
| <ui:composition xmlns="http://www.w3.org/1999/xhtml"
| xmlns:s="http://jboss.com/products/seam/taglib"
| xmlns:ui="http://java.sun.com/jsf/facelets"
| xmlns:f="http://java.sun.com/jsf/core"
| xmlns:h="http://java.sun.com/jsf/html"
| xmlns:rich="http://richfaces.ajax4jsf.org/rich"
| template="layout/template.xhtml">
|
| <ui:define name="body">
|
| <h:messages styleClass="message"/>
|
| <h:form id="login">
|
| <rich:panel>
| <f:facet name="header">Login</f:facet>
|
| <p>Please login using any username and password</p>
|
| <div class="dialog">
| <h:panelGrid columns="2" rowClasses="prop" columnClasses="name,value">
| <h:outputLabel for="username">Username</h:outputLabel>
| <h:inputText id="username"
| value="#{identity.username}"/>
| <h:outputLabel for="password">Password</h:outputLabel>
| <h:inputSecret id="password"
| value="#{identity.password}"/>
| <h:outputLabel for="rememberMe">Remember me</h:outputLabel>
| <h:selectBooleanCheckbox id="rememberMe"
| value="#{identity.rememberMe}"/>
| </h:panelGrid>
| </div>
|
| </rich:panel>
|
| <div class="actionButtons">
| <h:commandButton value="Login" action="#{identity.login}"/>
| </div>
|
| </h:form>
|
| </ui:define>
| </ui:composition>
|
The identity object looks up the authenticator binding and calls the Authenticator.authenticate method.
If your using older seam it may be good to just create an empty shell project and port the newer code into your old project.
Its working for me without much hassel at all.
The other option is to not even show the account link unless the user is currently logged in. Here is my menu.xhtml that is shown at the top of every page in my app:
| <rich:toolBar
| xmlns="http://www.w3.org/1999/xhtml"
| xmlns:ui="http://java.sun.com/jsf/facelets"
| xmlns:h="http://java.sun.com/jsf/html"
| xmlns:f="http://java.sun.com/jsf/core"
| xmlns:s="http://jboss.com/products/seam/taglib"
| xmlns:rich="http://richfaces.ajax4jsf.org/rich"
| xmlns:a="https://ajax4jsf.dev.java.net/ajax">
| <rich:toolBarGroup>
| <h:outputText value="Clooster"/>
| <s:link view="/home.xhtml" value="Home"/>
| <s:link view="/search.xhtml" value="Search"/>
| <s:link view="/searchApplet.xhtml" value="Search Applet"/>
| <s:link view="/headlines.xhtml" value="Headlines"/>
| <s:link view="/download.xhtml" value="Download"/>
| <s:link view="/shop.xhtml" value="Shop"/>
| </rich:toolBarGroup>
| <rich:toolBarGroup location="right">
| <a:status startText="In Progress" stopText="Ready"/>
| </rich:toolBarGroup>
| <rich:toolBarGroup itemSeparator="line" location="right">
| <h:outputText value="Welcome, #{user.firstname} #{user.lastname}" rendered="#{identity.loggedIn}"/>
| <s:link view="/myAccount.xhtml" value="My Account" rendered="#{identity.loggedIn}"/>
| <s:link view="/login.xhtml" value="Login" rendered="#{not identity.loggedIn}"/>
| <s:link view="/registerUser.xhtml" value="Create Account" rendered="#{not identity.loggedIn}"/>
| <s:link view="/home.xhtml" action="#{identity.logout}" value="Logout" rendered="#{identity.loggedIn}"/>
| </rich:toolBarGroup>
| </rich:toolBar>
|
Here you can see when the user logs out it bring the user back to the home page. Also it won't render the "My Account" page until the user is logged in.
Hope this helps,
PVM
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4035857#4035857
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4035857
More information about the jboss-user
mailing list