| | |
|---|
| | | import java.util.TimeZone;
|
|---|
| | | import java.util.regex.Pattern;
|
|---|
| | |
|
|---|
| | | import javax.servlet.http.Cookie;
|
|---|
| | | import javax.servlet.http.HttpServletRequest;
|
|---|
| | |
|
|---|
| | | import org.apache.wicket.Application;
|
|---|
| | |
|---|
| | | import com.gitblit.Constants;
|
|---|
| | | import com.gitblit.Constants.AccessPermission;
|
|---|
| | | import com.gitblit.Constants.AccessRestrictionType;
|
|---|
| | | import com.gitblit.Constants.AuthorizationControl;
|
|---|
| | | import com.gitblit.Constants.FederationStrategy;
|
|---|
| | | import com.gitblit.GitBlit;
|
|---|
| | | import com.gitblit.Keys;
|
|---|
| | |
|---|
| | | return GitBlitWebSession.get().getLocale().getLanguage();
|
|---|
| | | }
|
|---|
| | |
|
|---|
| | | protected String getCountryCode() {
|
|---|
| | | return GitBlitWebSession.get().getLocale().getCountry().toLowerCase();
|
|---|
| | | }
|
|---|
| | | |
|---|
| | | protected TimeUtils getTimeUtils() {
|
|---|
| | | if (timeUtils == null) {
|
|---|
| | | ResourceBundle bundle;
|
|---|
| | |
|---|
| | | }
|
|---|
| | |
|
|---|
| | | private void login() {
|
|---|
| | | Cookie[] cookies = ((WebRequest) getRequestCycle().getRequest()).getCookies();
|
|---|
| | | UserModel user = null;
|
|---|
| | | if (GitBlit.self().allowCookieAuthentication() && cookies != null && cookies.length > 0) {
|
|---|
| | | // Grab cookie from Browser Session
|
|---|
| | | user = GitBlit.self().authenticate(cookies);
|
|---|
| | | } else {
|
|---|
| | | user = GitBlit.self().authenticate(((WebRequest) getRequestCycle().getRequest()).getHttpServletRequest());
|
|---|
| | | GitBlitWebSession session = GitBlitWebSession.get();
|
|---|
| | | if (session.isLoggedIn() && !session.isSessionInvalidated()) {
|
|---|
| | | // already have a session
|
|---|
| | | return;
|
|---|
| | | }
|
|---|
| | | |
|---|
| | | // try to authenticate by servlet request
|
|---|
| | | HttpServletRequest httpRequest = ((WebRequest) getRequestCycle().getRequest()).getHttpServletRequest();
|
|---|
| | | UserModel user = GitBlit.self().authenticate(httpRequest);
|
|---|
| | |
|
|---|
| | | // Login the user
|
|---|
| | | if (user != null) {
|
|---|
| | | // Set the user into the session
|
|---|
| | | GitBlitWebSession session = GitBlitWebSession.get();
|
|---|
| | | // issue 62: fix session fixation vulnerability
|
|---|
| | | session.replaceSession();
|
|---|
| | | session.setUser(user);
|
|---|
| | |
|---|
| | | break;
|
|---|
| | | case FEDERATE_ORIGIN:
|
|---|
| | | map.put(type, getString("gb.federateOrigin"));
|
|---|
| | | break;
|
|---|
| | | }
|
|---|
| | | }
|
|---|
| | | return map;
|
|---|
| | | }
|
|---|
| | | |
|---|
| | | protected Map<AuthorizationControl, String> getAuthorizationControls() {
|
|---|
| | | Map<AuthorizationControl, String> map = new LinkedHashMap<AuthorizationControl, String>();
|
|---|
| | | for (AuthorizationControl type : AuthorizationControl.values()) {
|
|---|
| | | switch (type) {
|
|---|
| | | case AUTHENTICATED:
|
|---|
| | | map.put(type, getString("gb.allowAuthenticatedDescription"));
|
|---|
| | | break;
|
|---|
| | | case NAMED:
|
|---|
| | | map.put(type, getString("gb.allowNamedDescription"));
|
|---|
| | | break;
|
|---|
| | | }
|
|---|
| | | }
|
|---|
| | |
|---|
| | | public UserFragment(String id, String markupId, MarkupContainer markupProvider) {
|
|---|
| | | super(id, markupId, markupProvider);
|
|---|
| | |
|
|---|
| | | if (GitBlitWebSession.get().isLoggedIn()) {
|
|---|
| | | GitBlitWebSession session = GitBlitWebSession.get();
|
|---|
| | | if (session.isLoggedIn()) { |
|---|
| | | UserModel user = session.getUser();
|
|---|
| | | boolean editCredentials = GitBlit.self().supportsCredentialChanges(user);
|
|---|
| | | boolean standardLogin = session.authenticationType.isStandard();
|
|---|
| | |
|
|---|
| | | // username, logout, and change password
|
|---|
| | | add(new Label("username", GitBlitWebSession.get().getUser().getDisplayName() + ":"));
|
|---|
| | | add(new Label("username", user.getDisplayName() + ":"));
|
|---|
| | | add(new LinkPanel("loginLink", null, markupProvider.getString("gb.logout"),
|
|---|
| | | LogoutPage.class));
|
|---|
| | | boolean editCredentials = GitBlit.self().supportsCredentialChanges();
|
|---|
| | | LogoutPage.class).setVisible(standardLogin));
|
|---|
| | | |
|---|
| | | // quick and dirty hack for showing a separator
|
|---|
| | | add(new Label("separator", "|").setVisible(editCredentials));
|
|---|
| | | add(new Label("separator", "|").setVisible(standardLogin && editCredentials));
|
|---|
| | | add(new BookmarkablePageLink<Void>("changePasswordLink",
|
|---|
| | | ChangePasswordPage.class).setVisible(editCredentials));
|
|---|
| | | } else {
|
|---|
