NIHVIVO-736 transitioning from LoginFormBean to LoginStatusBean.

2010-10-13 15:54:11 +00:00 · 2010-10-13 15:54:11 +00:00 · 02e32428bd
commit 02e32428bd
parent 4dbf19c9c0
6 changed files with 30 additions and 106 deletions
--- a/webapp/web/themes/enhanced/jsp/footer.jsp
+++ b/webapp/web/themes/enhanced/jsp/footer.jsp
@ -12,16 +12,7 @@

 <%@ taglib uri="http://java.sun.com/jstl/core" prefix="c" %><%/* this odd thing points to something in web.xml */ %>

-<jsp:useBean id="loginHandler" class="edu.cornell.mannlib.vedit.beans.LoginFormBean" scope="session" />
 <%
-    /**
-     * @version 1.00
-     * @author Jon Corson-Rikert
-     * UPDATES:
-     * 2006-01-04   bdc   removed <head> and <body> tags and moved from <table> to <div>
-     * 2005-07-07   JCR   included LoginFormBean so can substitute filterbrowse for portalbrowse for authorized users
-     */
-
    final Log log = LogFactory.getLog("edu.cornell.mannlib.vitro.web.themes.enhanced.footer.jsp");

    VitroRequest vreq = new VitroRequest(request);
@ -30,14 +21,6 @@
    if (portal==null) {
    	log.error("portal from vreq.getPortal() null in themes/enhanced/footer.jsp");
    }
-    HttpSession currentSession = request.getSession();
-
-    boolean authorized = false;
-    if (loginHandler.getLoginStatus().equals("authenticated")) /* test if session is still valid */
-        if (currentSession.getId().equals(loginHandler.getSessionId()))
-            if (request.getRemoteAddr().equals(
-                    loginHandler.getLoginRemoteAddr()))
-                authorized = true;
 %>
 <c:set var="currentYear" value="<%=  Calendar.getInstance().get(Calendar.YEAR) %>" />
 <c:set var='context' value="<%=vreq.getContextPath()%>" />
--- a/webapp/web/themes/enhanced/jsp/identity.jsp
+++ b/webapp/web/themes/enhanced/jsp/identity.jsp
@ -10,20 +10,15 @@
 <%@ page import="edu.cornell.mannlib.vitro.webapp.web.BreadCrumbsUtil" %>
 <%@ page import="edu.cornell.mannlib.vitro.webapp.dao.WebappDaoFactory" %>
 <%@ page import="edu.cornell.mannlib.vitro.webapp.controller.Controllers" %>
+<%@ page import="edu.cornell.mannlib.vedit.beans.LoginStatusBean" %>

 <%@ taglib uri="http://java.sun.com/jstl/core" prefix="c" %>

-<jsp:useBean id="loginHandler" class="edu.cornell.mannlib.vedit.beans.LoginFormBean" scope="session" />
-
 <%    
-    HttpSession currentSession = request.getSession();
-    String currentSessionIdStr = currentSession.getId();
-    int securityLevel = -1;
-    String loginName = null;
-    if (loginHandler.testSessionLevel(request) > -1) {
-        securityLevel = Integer.parseInt(loginHandler.getLoginRole());
-        loginName = loginHandler.getLoginName();
-    }
+    LoginStatusBean loginBean = LoginStatusBean.getBean(request);
+    boolean isLoggedIn = loginBean.isLoggedIn();
+    String loginName = loginBean.getUsername();
+
     // VITRO FILE
    final Log log = LogFactory.getLog("edu.cornell.mannlib.vitro.web.menu.jsp");

@ -74,7 +69,7 @@ portal.getRootBreadCrumbURL() : request.getContextPath()+"/";
  <ul id="otherMenu">
  
    <%-- A user is logged in --%>
-    <% if (securityLevel > 0) { %>
+    <% if (isLoggedIn) { %>

      <c:url var="logoutHref" value="<%= Controllers.LOGOUT_JSP %>">
        <c:param name="home" value="${currentPortal}" />
--- a/webapp/web/themes/enhanced/jsp/menu.jsp
+++ b/webapp/web/themes/enhanced/jsp/menu.jsp
@ -10,12 +10,12 @@
 <%@ page import="edu.cornell.mannlib.vitro.webapp.web.TabWebUtil" %>
 <%@ page import="edu.cornell.mannlib.vitro.webapp.dao.WebappDaoFactory" %>
 <%@ page import="edu.cornell.mannlib.vitro.webapp.web.PortalWebUtil" %>
-<%@page import="java.util.List"%>
+<%@ page import="edu.cornell.mannlib.vedit.beans.LoginStatusBean" %>
+<%@ page import="java.util.List"%>
+
 <%@ taglib uri="http://java.sun.com/jstl/core" prefix="c" %>
 <%@ taglib uri="http://java.sun.com/jsp/jstl/functions" prefix="fn" %>

-<jsp:useBean id="loginHandler" class="edu.cornell.mannlib.vedit.beans.LoginFormBean" scope="session" />
-
 <%
    /***********************************************
     Make the Tab menu list and search block
@ -57,22 +57,15 @@
     
   // application variables not stored in application bean
     final String DEFAULT_SEARCH_METHOD = "fulltext";
-     final int FILTER_SECURITY_LEVEL = 4;
     final int VIVO_SEARCHBOX_SIZE = 20;
     
     ApplicationBean appBean = vreq.getAppBean();
     PortalWebUtil.populateSearchOptions(portal, appBean, vreq.getWebappDaoFactory().getPortalDao());
     PortalWebUtil.populateNavigationChoices(portal, request, appBean, vreq.getWebappDaoFactory().getPortalDao());
     
-     HttpSession currentSession = request.getSession();
-     String currentSessionIdStr = currentSession.getId();
-     int securityLevel = -1;
-     String loginName = null;
-     if (loginHandler.testSessionLevel(request) > -1) {
-         securityLevel = Integer.parseInt(loginHandler.getLoginRole());
-         loginName = loginHandler.getLoginName();
-     }
-
+     LoginStatusBean loginBean = LoginStatusBean.getBean(request);
+     boolean isEditor = loginBean.isLoggedInAtLeast(LoginStatusBean.EDITOR);
+     String loginName = loginBean.getUsername();
 %>

 <c:url var="themePath" value="/${themeDir}" />
@ -118,7 +111,7 @@
  <div id="searchBlock">
    <form id="searchForm" action="${searchURL}" >                	
      <label for="search">Search </label>
-      <%  if (securityLevel>=FILTER_SECURITY_LEVEL && appBean.isFlag1Active()) { %>
+      <%  if (isEditor && appBean.isFlag1Active()) { %>
      <select id="search-form-modifier" name="flag1" class="form-item" >
        <option value="nofiltering" selected="selected">entire database (<%=loginName%>)</option>
      	<option value="${currentPortal}"><%=portal.getShortHand()%></option>