| AuthenticatingHttpInvokerRequestExecutor.java |
1 /**
2 * Copyright (c) 2000-2009 Liferay, Inc. All rights reserved.
3 *
4 * Permission is hereby granted, free of charge, to any person obtaining a copy
5 * of this software and associated documentation files (the "Software"), to deal
6 * in the Software without restriction, including without limitation the rights
7 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
8 * copies of the Software, and to permit persons to whom the Software is
9 * furnished to do so, subject to the following conditions:
10 *
11 * The above copyright notice and this permission notice shall be included in
12 * all copies or substantial portions of the Software.
13 *
14 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
15 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
16 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
17 * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
18 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
19 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
20 * SOFTWARE.
21 */
22
23 package com.liferay.portal.spring.remoting;
24
25 import com.liferay.portal.PwdEncryptorException;
26 import com.liferay.portal.kernel.util.GetterUtil;
27 import com.liferay.portal.kernel.util.StringPool;
28 import com.liferay.portal.security.pwd.PwdEncryptor;
29
30 import java.io.IOException;
31
32 import java.net.HttpURLConnection;
33
34 import org.apache.commons.codec.binary.Base64;
35
36 import org.springframework.remoting.httpinvoker.SimpleHttpInvokerRequestExecutor;
37
38 /**
39 * <a href="AuthenticatingHttpInvokerRequestExecutor.java.html"><b><i>
40 * View Source</i></b></a>
41 *
42 * <p>
43 * An HttpInvoker request executor for Spring Remoting that provides HTTP BASIC
44 * authentication information for service invocations.
45 * </p>
46 *
47 * @author Joel Kozikowski
48 *
49 */
50 public class AuthenticatingHttpInvokerRequestExecutor
51 extends SimpleHttpInvokerRequestExecutor {
52
53 public AuthenticatingHttpInvokerRequestExecutor() {
54 super();
55 }
56
57 public long getUserId() {
58 return _userId;
59 }
60
61 public void setUserId(long userId) {
62 _userId = userId;
63 }
64
65 public String getPassword() {
66 return _password;
67 }
68
69 public void setPassword(String password) throws PwdEncryptorException {
70 _password = PwdEncryptor.encrypt(password);
71 }
72
73 /**
74 * Called every time a HTTP invocation is made. This implementation allows
75 * the parent to setup the connection, and then adds an
76 * <code>Authorization</code> HTTP header property for BASIC authentication.
77 */
78 protected void prepareConnection(HttpURLConnection con, int contentLength)
79 throws IOException {
80
81 prepareConnection(con, contentLength);
82
83 if (getUserId() > 0) {
84 String password = GetterUtil.getString(getPassword());
85
86 String base64 = getUserId() + StringPool.COLON + password;
87
88 con.setRequestProperty(
89 "Authorization",
90 "Basic " + new String(Base64.encodeBase64(base64.getBytes())));
91 }
92 }
93
94 private long _userId;
95 private String _password;
96
97 }