01: /**
02: * Copyright (c) 2000-2008 Liferay, Inc. All rights reserved.
03: *
04: * Permission is hereby granted, free of charge, to any person obtaining a copy
05: * of this software and associated documentation files (the "Software"), to deal
06: * in the Software without restriction, including without limitation the rights
07: * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
08: * copies of the Software, and to permit persons to whom the Software is
09: * furnished to do so, subject to the following conditions:
10: *
11: * The above copyright notice and this permission notice shall be included in
12: * all copies or substantial portions of the Software.
13: *
14: * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
15: * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
16: * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
17: * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
18: * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
19: * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
20: * SOFTWARE.
21: */package com.liferay.portal.spring.remoting;
22:
23: import com.liferay.portal.PwdEncryptorException;
24: import com.liferay.portal.kernel.util.GetterUtil;
25: import com.liferay.portal.kernel.util.StringPool;
26: import com.liferay.portal.security.pwd.PwdEncryptor;
27:
28: import java.io.IOException;
29:
30: import java.net.HttpURLConnection;
31:
32: import org.apache.commons.codec.binary.Base64;
33:
34: import org.springframework.remoting.httpinvoker.SimpleHttpInvokerRequestExecutor;
35:
36: /**
37: * <a href="AuthenticatingHttpInvokerRequestExecutor.java.html"><b><i>
38: * View Source</i></b></a>
39: *
40: * <p>
41: * An HttpInvoker request executor for Spring Remoting that provides HTTP BASIC
42: * authentication information for service invocations.
43: * </p>
44: *
45: * @author Joel Kozikowski
46: *
47: */
48: public class AuthenticatingHttpInvokerRequestExecutor extends
49: SimpleHttpInvokerRequestExecutor {
50:
51: public AuthenticatingHttpInvokerRequestExecutor() {
52: super ();
53: }
54:
55: public long getUserId() {
56: return _userId;
57: }
58:
59: public void setUserId(long userId) {
60: _userId = userId;
61: }
62:
63: public String getPassword() {
64: return _password;
65: }
66:
67: public void setPassword(String password)
68: throws PwdEncryptorException {
69: _password = PwdEncryptor.encrypt(password);
70: }
71:
72: /**
73: * Called every time a HTTP invocation is made. This implementation allows
74: * the parent to setup the connection, and then adds an
75: * <code>Authorization</code> HTTP header property for BASIC authentication.
76: */
77: protected void prepareConnection(HttpURLConnection con,
78: int contentLength) throws IOException {
79:
80: prepareConnection(con, contentLength);
81:
82: if (getUserId() > 0) {
83: String password = GetterUtil.getString(getPassword());
84:
85: String base64 = getUserId() + StringPool.COLON + password;
86:
87: con.setRequestProperty("Authorization",
88: "Basic "
89: + new String(Base64.encodeBase64(base64
90: .getBytes())));
91: }
92: }
93:
94: private long _userId;
95: private String _password;
96:
97: }
|