Rev 23 | Rev 30 | Go to most recent revision | Show entire file | Ignore whitespace | Details | Blame | Last modification | View Log | RSS feed
| Rev 23 | Rev 26 | ||
|---|---|---|---|
| Line 1... | Line 1... | ||
| 1 | package ch.ffhs.webE.action; |
1 | package ch.ffhs.webE.action; |
| 2 | 2 | ||
| 3 | - | ||
| 4 | import java.util.Map; |
3 | import java.util.Map; |
| 5 | 4 | ||
| 6 | import ch.ffhs.webE.dao.UserDAO; |
5 | import ch.ffhs.webE.dao.UserDAO; |
| 7 | import ch.ffhs.webE.dao.UserDAOImpl; |
6 | import ch.ffhs.webE.dao.UserDAOImpl; |
| 8 | import ch.ffhs.webE.domain.User; |
7 | import ch.ffhs.webE.domain.User; |
| 9 | 8 | ||
| 10 | import com.opensymphony.xwork2.ActionContext; |
9 | import com.opensymphony.xwork2.ActionContext; |
| 11 | import com.opensymphony.xwork2.ActionSupport; |
10 | import com.opensymphony.xwork2.ActionSupport; |
| 12 | import com.opensymphony.xwork2.ModelDriven; |
11 | import com.opensymphony.xwork2.ModelDriven; |
| 13 | 12 | ||
| 14 | public class LoginAction extends ActionSupport implements ModelDriven<User>{ |
13 | public class LoginAction extends ActionSupport implements ModelDriven<User> |
| - | 14 | {
|
|
| 15 | 15 | ||
| 16 | private static final long serialVersionUID = 1799753056277211344L; |
16 | private static final long serialVersionUID = 1799753056277211344L; |
| 17 | private User user = new User(); |
17 | private User user = new User(); |
| 18 | private UserDAO userDAO = new UserDAOImpl(); |
18 | private UserDAO userDAO = new UserDAOImpl(); |
| 19 | 19 | ||
| 20 | //Form fields
|
20 | // Form fields
|
| 21 | private String userName ; |
21 | private String userName; |
| 22 | private String pw; |
22 | private String pw; |
| 23 | 23 | ||
| 24 | //Session Object
|
24 | // Session Object
|
| 25 | Map<String, Object> session = ActionContext.getContext().getSession(); |
25 | Map<String, Object> session = ActionContext.getContext().getSession(); |
| 26 | - | ||
| 27 | 26 | ||
| 28 | public LoginAction() { |
27 | public LoginAction() |
| - | 28 | {
|
|
| 29 | }
|
29 | }
|
| 30 | 30 | ||
| 31 | public String doLogin() { |
31 | public String doLogin() |
| - | 32 | {
|
|
| 32 | 33 | ||
| 33 | //If password or user name are empty, the login fails.
|
34 | // If password or user name are empty, the login fails.
|
| - | 35 | if ("".equals(getUserName()) || "".equals(getPw()) |
|
| 34 | if("".equals(getUserName()) || "".equals(getPw()) || getUserName() == null || getPw() == null) { |
36 | || getUserName() == null || getPw() == null) |
| - | 37 | {
|
|
| 35 | return ERROR; |
38 | return ERROR; |
| 36 | }
|
39 | }
|
| 37 | 40 | ||
| 38 | String verifiedUser = verifyUser(getUserName(), getPw()); |
41 | String verifiedUser = verifyUser(getUserName(), getPw()); |
| 39 | if(verifiedUser.equals("failed")) { |
42 | if (verifiedUser.equals("failed")) |
| - | 43 | {
|
|
| 40 | return ERROR; |
44 | return ERROR; |
| - | 45 | }
|
|
| - | 46 | else
|
|
| 41 | } else { |
47 | {
|
| 42 | 48 | ||
| 43 | //Put user name, password into session
|
49 | // Put user name, password into session
|
| 44 | session.put("username", getUserName()); |
50 | session.put("username", getUserName()); |
| 45 | session.put("pw", getPw()); |
51 | session.put("pw", getPw()); |
| 46 | return verifiedUser; |
52 | return verifiedUser; |
| 47 | }
|
53 | }
|
| 48 | }
|
54 | }
|
| 49 | 55 | ||
| 50 | public String doLogout() { |
56 | public String doLogout() |
| - | 57 | {
|
|
| 51 | //TODO: Kill session content for logout
|
58 | // TODO: Kill session content for logout
|
| 52 | return SUCCESS; |
59 | return SUCCESS; |
| 53 | }
|
60 | }
|
| 54 | 61 | ||
| 55 | /**
|
62 | /**
|
| 56 | * Verify user credentials
|
63 | * Verify user credentials
|
| - | 64 | *
|
|
| - | 65 | * @param String
|
|
| 57 | * @param String username: User name
|
66 | * username: User name
|
| - | 67 | * @param String
|
|
| 58 | * @param String password: Password (hashed)
|
68 | * password: Password (hashed)
|
| 59 | * @return
|
69 | * @return
|
| 60 | */
|
70 | */
|
| 61 | public String verifyUser(String username, String password) { |
71 | public String verifyUser(String username, String password) |
| - | 72 | {
|
|
| 62 | //DB Query
|
73 | // DB Query
|
| 63 | User u = userDAO.searchUsername(username); |
74 | User u = userDAO.searchUsername(username); |
| 64 | 75 | ||
| 65 | //User does not exist
|
76 | // User does not exist
|
| 66 | if(u == null) |
77 | if (u == null) |
| 67 | return ERROR; |
78 | return ERROR; |
| 68 | 79 | ||
| 69 | //User password does not match
|
80 | // User password does not match
|
| 70 | if(!u.getPassword().equals(password)) |
81 | if (!u.getPassword().equals(password)) |
| 71 | return ERROR; |
82 | return ERROR; |
| 72 | 83 | ||
| 73 | //User credentials are fine, check for admin rights
|
84 | // User credentials are fine, check for admin rights
|
| 74 | if(u.isAdmin()) { |
85 | if (u.isAdmin()) |
| - | 86 | {
|
|
| 75 | return "admin"; |
87 | return "admin"; |
| - | 88 | }
|
|
| - | 89 | else
|
|
| 76 | } else { |
90 | {
|
| 77 | return "user"; |
91 | return "user"; |
| 78 | }
|
92 | }
|
| 79 | }
|
93 | }
|
| 80 | 94 | ||
| 81 | public String getUserName() { |
95 | public String getUserName() |
| - | 96 | {
|
|
| 82 | return userName; |
97 | return userName; |
| 83 | }
|
98 | }
|
| 84 | 99 | ||
| 85 | public void setUserName(String userName) { |
100 | public void setUserName(String userName) |
| - | 101 | {
|
|
| 86 | this.userName = userName; |
102 | this.userName = userName; |
| 87 | }
|
103 | }
|
| 88 | 104 | ||
| 89 | public String getPw() { |
105 | public String getPw() |
| - | 106 | {
|
|
| 90 | return pw; |
107 | return pw; |
| 91 | }
|
108 | }
|
| 92 | 109 | ||
| 93 | public void setPw(String pw) { |
110 | public void setPw(String pw) |
| - | 111 | {
|
|
| 94 | this.pw = pw; |
112 | this.pw = pw; |
| 95 | }
|
113 | }
|
| 96 | 114 | ||
| 97 | @Override |
115 | @Override |
| 98 | public User getModel() { |
116 | public User getModel() |
| - | 117 | {
|
|
| 99 | return user; |
118 | return user; |
| 100 | }
|
119 | }
|
| 101 | }
|
120 | }
|