diff options
Diffstat (limited to 'gerrit-openid/src/main/java/com/google/gerrit/httpd/auth/openid/OpenIdLoginServlet.java')
| -rw-r--r-- | gerrit-openid/src/main/java/com/google/gerrit/httpd/auth/openid/OpenIdLoginServlet.java | 57 |
1 files changed, 57 insertions, 0 deletions
diff --git a/gerrit-openid/src/main/java/com/google/gerrit/httpd/auth/openid/OpenIdLoginServlet.java b/gerrit-openid/src/main/java/com/google/gerrit/httpd/auth/openid/OpenIdLoginServlet.java new file mode 100644 index 0000000000..cfb767d0ba --- /dev/null +++ b/gerrit-openid/src/main/java/com/google/gerrit/httpd/auth/openid/OpenIdLoginServlet.java @@ -0,0 +1,57 @@ +// Copyright (C) 2008 The Android Open Source Project +// +// Licensed under the Apache License, Version 2.0 (the "License"); +// you may not use this file except in compliance with the License. +// You may obtain a copy of the License at +// +// http://www.apache.org/licenses/LICENSE-2.0 +// +// Unless required by applicable law or agreed to in writing, software +// distributed under the License is distributed on an "AS IS" BASIS, +// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +// See the License for the specific language governing permissions and +// limitations under the License. + +package com.google.gerrit.httpd.auth.openid; + +import com.google.inject.Inject; +import com.google.inject.Singleton; + +import java.io.IOException; + +import javax.servlet.http.HttpServlet; +import javax.servlet.http.HttpServletRequest; +import javax.servlet.http.HttpServletResponse; + +/** Handles the <code>/OpenID</code> URL for web based single-sign-on. */ +@SuppressWarnings("serial") +@Singleton +class OpenIdLoginServlet extends HttpServlet { + private final OpenIdServiceImpl impl; + + @Inject + OpenIdLoginServlet(final OpenIdServiceImpl i) { + impl = i; + } + + @Override + public void doGet(final HttpServletRequest req, final HttpServletResponse rsp) + throws IOException { + doPost(req, rsp); + } + + @Override + public void doPost(final HttpServletRequest req, final HttpServletResponse rsp) + throws IOException { + try { + rsp.setHeader("Expires", "Fri, 01 Jan 1980 00:00:00 GMT"); + rsp.setHeader("Pragma", "no-cache"); + rsp.setHeader("Cache-Control", "no-cache, must-revalidate"); + impl.doAuth(req, rsp); + } catch (Exception e) { + getServletContext().log("Unexpected error during authentication", e); + rsp.reset(); + rsp.sendError(500); + } + } +} |