Rev 23 | Rev 30 | Go to most recent revision | Details | Compare with Previous | Last modification | View Log | RSS feed
Rev | Author | Line No. | Line |
---|---|---|---|
18 | moos | 1 | package ch.ffhs.webE.action; |
2 | |||
20 | moos | 3 | import java.util.Map; |
4 | |||
19 | moos | 5 | import ch.ffhs.webE.dao.UserDAO; |
6 | import ch.ffhs.webE.dao.UserDAOImpl; |
||
7 | import ch.ffhs.webE.domain.User; |
||
8 | |||
20 | moos | 9 | import com.opensymphony.xwork2.ActionContext; |
18 | moos | 10 | import com.opensymphony.xwork2.ActionSupport; |
19 | moos | 11 | import com.opensymphony.xwork2.ModelDriven; |
18 | moos | 12 | |
26 | moos | 13 | public class LoginAction extends ActionSupport implements ModelDriven<User> |
14 | { |
||
20 | moos | 15 | |
26 | moos | 16 | private static final long serialVersionUID = 1799753056277211344L; |
17 | private User user = new User(); |
||
18 | private UserDAO userDAO = new UserDAOImpl(); |
||
18 | moos | 19 | |
26 | moos | 20 | // Form fields |
21 | private String userName; |
||
22 | private String pw; |
||
18 | moos | 23 | |
26 | moos | 24 | // Session Object |
25 | Map<String, Object> session = ActionContext.getContext().getSession(); |
||
19 | moos | 26 | |
26 | moos | 27 | public LoginAction() |
28 | { |
||
29 | } |
||
30 | |||
31 | public String doLogin() |
||
32 | { |
||
33 | |||
34 | // If password or user name are empty, the login fails. |
||
35 | if ("".equals(getUserName()) || "".equals(getPw()) |
||
36 | || getUserName() == null || getPw() == null) |
||
37 | { |
||
38 | return ERROR; |
||
39 | } |
||
40 | |||
41 | String verifiedUser = verifyUser(getUserName(), getPw()); |
||
42 | if (verifiedUser.equals("failed")) |
||
43 | { |
||
44 | return ERROR; |
||
45 | } |
||
46 | else |
||
47 | { |
||
48 | |||
49 | // Put user name, password into session |
||
50 | session.put("username", getUserName()); |
||
51 | session.put("pw", getPw()); |
||
52 | return verifiedUser; |
||
53 | } |
||
54 | } |
||
55 | |||
56 | public String doLogout() |
||
57 | { |
||
58 | // TODO: Kill session content for logout |
||
59 | return SUCCESS; |
||
60 | } |
||
61 | |||
62 | /** |
||
63 | * Verify user credentials |
||
64 | * |
||
65 | * @param String |
||
66 | * username: User name |
||
67 | * @param String |
||
68 | * password: Password (hashed) |
||
69 | * @return |
||
70 | */ |
||
71 | public String verifyUser(String username, String password) |
||
72 | { |
||
73 | // DB Query |
||
74 | User u = userDAO.searchUsername(username); |
||
75 | |||
76 | // User does not exist |
||
77 | if (u == null) |
||
78 | return ERROR; |
||
79 | |||
80 | // User password does not match |
||
81 | if (!u.getPassword().equals(password)) |
||
82 | return ERROR; |
||
83 | |||
84 | // User credentials are fine, check for admin rights |
||
85 | if (u.isAdmin()) |
||
86 | { |
||
87 | return "admin"; |
||
88 | } |
||
89 | else |
||
90 | { |
||
91 | return "user"; |
||
92 | } |
||
93 | } |
||
94 | |||
95 | public String getUserName() |
||
96 | { |
||
97 | return userName; |
||
98 | } |
||
99 | |||
100 | public void setUserName(String userName) |
||
101 | { |
||
102 | this.userName = userName; |
||
103 | } |
||
104 | |||
105 | public String getPw() |
||
106 | { |
||
107 | return pw; |
||
108 | } |
||
109 | |||
110 | public void setPw(String pw) |
||
111 | { |
||
112 | this.pw = pw; |
||
113 | } |
||
114 | |||
115 | @Override |
||
116 | public User getModel() |
||
117 | { |
||
118 | return user; |
||
119 | } |
||
18 | moos | 120 | } |