Use standard ServletRequestWrapper instead of custom wrapper (issue 224)

James Moger

2013-03-28 1f596c9875687561548ac893d4f105da49d700b5

 src/main/java/com/gitblit/AuthenticationFilter.java

@@ -28,6 +28,7 @@
import javax.servlet.ServletRequest;

import javax.servlet.ServletResponse;

import javax.servlet.http.HttpServletRequest;

import javax.servlet.http.HttpServletRequestWrapper;

import javax.servlet.http.HttpServletResponse;

import javax.servlet.http.HttpSession;



@@ -105,7 +106,6 @@
   /**

    * Taken from Jetty's LoginAuthenticator.renewSessionOnAuthentication()

    */

   @SuppressWarnings("unchecked")

   protected void newSession(HttpServletRequest request, HttpServletResponse response) {

      HttpSession oldSession = request.getSession(false);

      if (oldSession != null && oldSession.getAttribute(SESSION_SECURED) == null) {

@@ -145,7 +145,7 @@
   /**

    * Wraps a standard HttpServletRequest and overrides user principal methods.

    */

   public static class AuthenticatedRequest extends ServletRequestWrapper {

   public static class AuthenticatedRequest extends HttpServletRequestWrapper {



      private UserModel user;