1
22
23 package com.liferay.portal.servlet.filters.sessionid;
24
25 import com.liferay.portal.kernel.log.Log;
26 import com.liferay.portal.kernel.log.LogFactoryUtil;
27 import com.liferay.portal.kernel.util.StringPool;
28 import com.liferay.portal.kernel.util.Validator;
29 import com.liferay.portal.util.CookieKeys;
30
31 import javax.servlet.http.Cookie;
32 import javax.servlet.http.HttpServletRequest;
33 import javax.servlet.http.HttpServletRequestWrapper;
34 import javax.servlet.http.HttpServletResponse;
35 import javax.servlet.http.HttpSession;
36
37
43 public class SessionIdServletRequest extends HttpServletRequestWrapper {
44
45 public SessionIdServletRequest(
46 HttpServletRequest request, HttpServletResponse response) {
47
48 super(request);
49
50 _response = response;
51 }
52
53 public HttpSession getSession() {
54 HttpSession session = super.getSession();
55
56 process(session);
57
58 return session;
59 }
60
61 public HttpSession getSession(boolean create) {
62 HttpSession session = super.getSession(create);
63
64 process(session);
65
66 return session;
67 }
68
69 protected void process(HttpSession session) {
70 if ((session == null) || !session.isNew() || !isSecure() ||
71 isRequestedSessionIdFromCookie()) {
72
73 return;
74 }
75
76 Object jsessionIdAlreadySet = getAttribute(_JESSIONID_ALREADY_SET);
77
78 if (jsessionIdAlreadySet == null) {
79 if (_log.isDebugEnabled()) {
80 _log.debug("Processing " + session.getId());
81 }
82
83 Cookie cookie = new Cookie(_JESSIONID, session.getId());
84
85 cookie.setMaxAge(-1);
86
87 String contextPath = getContextPath();
88
89 if (Validator.isNotNull(contextPath)) {
90 cookie.setPath(contextPath);
91 }
92 else {
93 cookie.setPath(StringPool.SLASH);
94 }
95
96 CookieKeys.addCookie(
97 (HttpServletRequest)super.getRequest(), _response, cookie);
98
99 setAttribute(_JESSIONID_ALREADY_SET, Boolean.TRUE);
100 }
101 }
102
103 private static final String _JESSIONID = "JSESSIONID";
104
105 private static final String _JESSIONID_ALREADY_SET =
106 "JESSIONID_ALREADY_SET";
107
108 private static Log _log =
109 LogFactoryUtil.getLog(SessionIdServletRequest.class);
110
111 private HttpServletResponse _response;
112
113 }