From 79cad53bba094cffa1d25581edbf4972a5158cd4 Mon Sep 17 00:00:00 2001
From: James Moger <james.moger@gitblit.com>
Date: Fri, 29 Nov 2013 11:03:01 -0500
Subject: [PATCH] Update to Moxie 0.9.1

---
 src/main/java/com/gitblit/EnforceAuthenticationFilter.java |   44 ++++++++++++++++++++------------------------
 1 files changed, 20 insertions(+), 24 deletions(-)

diff --git a/src/main/java/com/gitblit/EnforceAuthenticationFilter.java b/src/main/java/com/gitblit/EnforceAuthenticationFilter.java
index ae91c32..12b0759 100644
--- a/src/main/java/com/gitblit/EnforceAuthenticationFilter.java
+++ b/src/main/java/com/gitblit/EnforceAuthenticationFilter.java
@@ -30,6 +30,8 @@
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 
+import com.gitblit.manager.IRuntimeManager;
+import com.gitblit.manager.ISessionManager;
 import com.gitblit.models.UserModel;
 
 /**
@@ -44,14 +46,15 @@
 
 	protected transient Logger logger = LoggerFactory.getLogger(getClass());
 
+	public EnforceAuthenticationFilter() {
+	}
+
 	/*
 	 * @see javax.servlet.Filter#init(javax.servlet.FilterConfig)
 	 */
 	@Override
 	public void init(FilterConfig filterConfig) throws ServletException {
-		// nothing to be done
-
-	} //init
+	}
 
 
 	/*
@@ -62,32 +65,28 @@
 	@Override
 	public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
 
-		/*
-		 * Determine whether to enforce the BASIC authentication:
-		 */
-		@SuppressWarnings("static-access")
-		Boolean mustForceAuth = GitBlit.self().getBoolean(Keys.web.authenticateViewPages, false)
-								&& GitBlit.self().getBoolean(Keys.web.enforceHttpBasicAuthentication, false);
+		IStoredSettings settings = GitBlit.getManager(IRuntimeManager.class).getSettings();
+		ISessionManager sessionManager = GitBlit.getManager(ISessionManager.class);
+		Boolean mustForceAuth = settings.getBoolean(Keys.web.authenticateViewPages, false)
+								&& settings.getBoolean(Keys.web.enforceHttpBasicAuthentication, false);
 
-		HttpServletRequest  HttpRequest  = (HttpServletRequest)request;
-		HttpServletResponse HttpResponse = (HttpServletResponse)response;
-		UserModel user = GitBlit.self().authenticate(HttpRequest);
+		HttpServletRequest  httpRequest  = (HttpServletRequest) request;
+		HttpServletResponse httpResponse = (HttpServletResponse) response;
+		UserModel user = sessionManager.authenticate(httpRequest);
 
 		if (mustForceAuth && (user == null)) {
 			// not authenticated, enforce now:
 			logger.debug(MessageFormat.format("EnforceAuthFilter: user not authenticated for URL {0}!", request.toString()));
-			@SuppressWarnings("static-access")
-			String CHALLENGE = MessageFormat.format("Basic realm=\"{0}\"", GitBlit.self().getString("web.siteName",""));
-			HttpResponse.setHeader("WWW-Authenticate", CHALLENGE);
-			HttpResponse.sendError(HttpServletResponse.SC_UNAUTHORIZED);
+			String challenge = MessageFormat.format("Basic realm=\"{0}\"", settings.getString(Keys.web.siteName, ""));
+			httpResponse.setHeader("WWW-Authenticate", challenge);
+			httpResponse.sendError(HttpServletResponse.SC_UNAUTHORIZED);
 			return;
 
 		} else {
 			// user is authenticated, or don't care, continue handling
-			chain.doFilter( request, response );
-
-		} // authenticated
-	} // doFilter
+			chain.doFilter(request, response);
+		}
+	}
 
 
 	/*
@@ -95,8 +94,5 @@
 	 */
 	@Override
 	public void destroy() {
-		// Nothing to be done
-
-	} // destroy
-
+	}
 }

--
Gitblit v1.9.1