AuthenticatingHttpInvokerRequestExecutor.java |
1 /** 2 * Copyright (c) 2000-2009 Liferay, Inc. All rights reserved. 3 * 4 * Permission is hereby granted, free of charge, to any person obtaining a copy 5 * of this software and associated documentation files (the "Software"), to deal 6 * in the Software without restriction, including without limitation the rights 7 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell 8 * copies of the Software, and to permit persons to whom the Software is 9 * furnished to do so, subject to the following conditions: 10 * 11 * The above copyright notice and this permission notice shall be included in 12 * all copies or substantial portions of the Software. 13 * 14 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR 15 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, 16 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE 17 * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER 18 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, 19 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE 20 * SOFTWARE. 21 */ 22 23 package com.liferay.portal.spring.remoting; 24 25 import com.liferay.portal.PwdEncryptorException; 26 import com.liferay.portal.kernel.util.GetterUtil; 27 import com.liferay.portal.kernel.util.StringPool; 28 import com.liferay.portal.security.pwd.PwdEncryptor; 29 30 import java.io.IOException; 31 32 import java.net.HttpURLConnection; 33 34 import org.apache.commons.codec.binary.Base64; 35 36 import org.springframework.remoting.httpinvoker.SimpleHttpInvokerRequestExecutor; 37 38 /** 39 * <a href="AuthenticatingHttpInvokerRequestExecutor.java.html"><b><i> 40 * View Source</i></b></a> 41 * 42 * <p> 43 * An HttpInvoker request executor for Spring Remoting that provides HTTP BASIC 44 * authentication information for service invocations. 45 * </p> 46 * 47 * @author Joel Kozikowski 48 * 49 */ 50 public class AuthenticatingHttpInvokerRequestExecutor 51 extends SimpleHttpInvokerRequestExecutor { 52 53 public AuthenticatingHttpInvokerRequestExecutor() { 54 super(); 55 } 56 57 public long getUserId() { 58 return _userId; 59 } 60 61 public void setUserId(long userId) { 62 _userId = userId; 63 } 64 65 public String getPassword() { 66 return _password; 67 } 68 69 public void setPassword(String password) throws PwdEncryptorException { 70 _password = PwdEncryptor.encrypt(password); 71 } 72 73 /** 74 * Called every time a HTTP invocation is made. This implementation allows 75 * the parent to setup the connection, and then adds an 76 * <code>Authorization</code> HTTP header property for BASIC authentication. 77 */ 78 protected void prepareConnection(HttpURLConnection con, int contentLength) 79 throws IOException { 80 81 super.prepareConnection(con, contentLength); 82 83 if (getUserId() > 0) { 84 String password = GetterUtil.getString(getPassword()); 85 86 String base64 = getUserId() + StringPool.COLON + password; 87 88 con.setRequestProperty( 89 "Authorization", 90 "Basic " + new String(Base64.encodeBase64(base64.getBytes()))); 91 } 92 } 93 94 private long _userId; 95 private String _password; 96 97 }