org.wicketstuff.shiro.component.LoginPanel Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of wicketstuff-shiro Show documentation
Show all versions of wicketstuff-shiro Show documentation
Shiro Security for Apache Wicket. (Shiro was formerly known as Apache Ki and JSecurity)
The newest version!
/*
* Licensed to the Apache Software Foundation (ASF) under one or more
* contributor license agreements. See the NOTICE file distributed with
* this work for additional information regarding copyright ownership.
* The ASF licenses this file to You under the Apache License, Version 2.0
* (the "License"); you may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.wicketstuff.shiro.component;
import org.apache.shiro.SecurityUtils;
import org.apache.shiro.authc.AuthenticationException;
import org.apache.shiro.authc.IncorrectCredentialsException;
import org.apache.shiro.authc.UnknownAccountException;
import org.apache.shiro.authc.UsernamePasswordToken;
import org.apache.shiro.subject.Subject;
import org.apache.wicket.markup.html.WebMarkupContainer;
import org.apache.wicket.markup.html.form.CheckBox;
import org.apache.wicket.markup.html.form.PasswordTextField;
import org.apache.wicket.markup.html.form.StatelessForm;
import org.apache.wicket.markup.html.form.TextField;
import org.apache.wicket.markup.html.panel.FeedbackPanel;
import org.apache.wicket.markup.html.panel.Panel;
import org.apache.wicket.model.PropertyModel;
import org.apache.wicket.util.value.ValueMap;
/**
* Reusable user sign in panel with username and password as well as support for cookie persistence
* of the both. When the SignInPanel's form is submitted, the method signIn(String, String) is
* called, passing the username and password submitted. The signIn() method should authenticate the
* user's session. The default implementation calls AuthenticatedWebSession.get().signIn().
*
* @author Jonathan Locke
* @author Juergen Donnerstag
* @author Eelco Hillenius
* @author Sebastian Thomschke
*/
public class LoginPanel extends Panel
{
/**
* Sign in form.
*/
public final class SignInForm extends StatelessForm
{
private static final long serialVersionUID = 1L;
/** El-cheapo model for form. */
private final ValueMap properties = new ValueMap();
/**
* Constructor.
*
* @param id
* id of the form component
*/
public SignInForm(final String id)
{
super(id);
// Attach textfield components that edit properties map
// in lieu of a formal beans model
add(username = new TextField("username", new PropertyModel(properties,
"username")));
add(password = new PasswordTextField("password", new PropertyModel(properties,
"password")));
// MarkupContainer row for remember me checkbox
final WebMarkupContainer rememberMeRow = new WebMarkupContainer("rememberMeRow");
add(rememberMeRow);
// Add rememberMe checkbox
rememberMeRow.add(new CheckBox("rememberMe", new PropertyModel(
LoginPanel.this, "rememberMe")));
// Show remember me checkbox?
rememberMeRow.setVisible(includeRememberMe);
}
/**
* @see org.apache.wicket.markup.html.form.Form#onSubmit()
*/
@Override
public final void onSubmit()
{
if (login(getUsername(), getPassword(), getRememberMe()))
onSignInSucceeded();
}
}
private static final long serialVersionUID = 1L;
/** True if the panel should display a remember-me checkbox */
private boolean includeRememberMe = true;
/** Field for password. */
private PasswordTextField password;
/** True if the user should be remembered via form persistence (cookies) */
private boolean rememberMe = true;
/** Field for user name. */
private TextField username;
/**
* @see org.apache.wicket.Component#Component(String)
*/
public LoginPanel(final String id)
{
this(id, true);
}
/**
* @param id
* See Component constructor
* @param includeRememberMe
* True if form should include a remember-me checkbox
* @see org.apache.wicket.Component#Component(String)
*/
public LoginPanel(final String id, final boolean includeRememberMe)
{
super(id);
this.includeRememberMe = includeRememberMe;
if (!includeRememberMe)
rememberMe = false;
// Create feedback panel and add to page
add(new FeedbackPanel("feedback"));
// Add sign-in form to page, passing feedback panel as
// validation error handler
add(new SignInForm("signInForm"));
}
/**
* Convenience method to access the password.
*
* @return The password
*/
public String getPassword()
{
return password.getInput();
}
/**
* Get model object of the rememberMe checkbox
*
* @return True if user should be remembered in the future
*/
public boolean getRememberMe()
{
return rememberMe;
}
/**
* Convenience method to access the username.
*
* @return The user name
*/
public String getUsername()
{
return username.getDefaultModelObjectAsString();
}
/**
* Sign in user if possible.
*
* @param username
* The username
* @param password
* The password
* @return True if signin was successful
*/
public boolean login(final String username, final String password, final boolean rememberMe)
{
final Subject currentUser = SecurityUtils.getSubject();
final UsernamePasswordToken token = new UsernamePasswordToken(username, password,
rememberMe);
try
{
currentUser.login(token);
return true;
// the following exceptions are just a few you can catch and handle accordingly. See the
// AuthenticationException JavaDoc and its subclasses for more.
}
catch (final IncorrectCredentialsException ice)
{
error("Password is incorrect.");
}
catch (final UnknownAccountException uae)
{
error("There is no account with that username.");
}
catch (final AuthenticationException ae)
{
error("Invalid username and/or password.");
}
catch (final Exception ex)
{
error("Login failed");
}
return false;
}
protected void onSignInSucceeded()
{
// If login has been called because the user was not yet
// logged in, than continue to the original destination,
// otherwise to the Home page
continueToOriginalDestination();
// or
setResponsePage(getApplication().getHomePage());
}
/**
* Set model object for rememberMe checkbox
*
* @param rememberMe
*/
public void setRememberMe(final boolean rememberMe)
{
this.rememberMe = rememberMe;
}
}