// The contents of this file are subject to the Mozilla Public License Version 1.1
// (the "License"); you may not use this file except in compliance with the License.
// You may obtain a copy of the License at .
//
// Software distributed under the License is distributed on an "AS IS" basis, WITHOUT
// WARRANTY OF ANY KIND, either express or implied. See the License for the specific
// language governing rights and limitations under the License.
//
// The Original Code is the Venice Web Communities System.
//
// The Initial Developer of the Original Code is Eric J. Bowersox ,
// for Silverwrist Design Studios. Portions created by Eric J. Bowersox are
// Copyright (C) 2003 Eric J. Bowersox/Silverwrist Design Studios. All Rights Reserved.
//
// Contributor(s):
importClass(Packages.com.silverwrist.dynamo.Namespaces);
importClass(Packages.com.silverwrist.dynamo.UserInfoNamespace);
importPackage(Packages.com.silverwrist.dynamo.iface);
importPackage(Packages.com.silverwrist.dynamo.util);
importClass(Packages.com.silverwrist.venice.VeniceNamespaces);
importPackage(Packages.com.silverwrist.venice.frame);
importPackage(Packages.com.silverwrist.venice.session);
req = bsf.lookupBean("request"); // get request
rhelp = bsf.lookupBean("request_help"); // get request helper
// Retrieve the "target" string from the session.
session = rhelp.session;
target = session.getObject("venice-sso:","target") + "";
session.removeObject("venice-sso:","target");
// The authenticated User ID (user object) is in the request attributes. It may be a proxy, so unwrap it.
auth_user = cast.queryDynamoUser(dynamo.unwrapObject(rhelp.getChainParameter("UserID")));
// There are some Dynamo-specific tests we need to make before we can be comfortable with logging in as
// this user. Do those now.
errmsg = null;
if (auth_user==null)
{ // user account not found
errmsg = "The user account you have specified does not exist. Please try again.";
audit.write(req,null,VeniceNamespaces.USER_EVENT_NAMESPACE,"login.fail","Bad username");
} // end if
else if (auth_user.isAnonymous())
{ // can't log in as Anonymous_Honyak!
errmsg = "This account cannot be explicitly logged into. Please try again.";
audit.write(req,auth_user,VeniceNamespaces.USER_EVENT_NAMESPACE,"login.fail","Anonymous user");
} // end if
else if (auth_user.isLocked())
{ // locked account - can't log in
errmsg = "This account has been locked out. Please contact the system administrator for assistance.";
audit.write(req,auth_user,VeniceNamespaces.USER_EVENT_NAMESPACE,"login.fail","Locked Account");
} // end else if
if (errmsg!=null)
{ // send the error message back to the login dialog
session.setObject("venice-sso:","failure.message",errmsg);
dynamo.scriptReturn(new Redirect("SERVLET","login.js.vs?tgt=" + stringutils.encodeURL(target)));
} // end if
logger.debug("User \"" + auth_user.getName() + "\" logged in successfully");
session.setObject(SessionInfoParams.NAMESPACE,SessionInfoParams.ATTR_USER,auth_user);
audit.write(req,auth_user,VeniceNamespaces.USER_EVENT_NAMESPACE,"login.ok");
auth_user.setLastAccessDate(auth_user,new java.util.Date());
// Now set up this user's default objects.
dynamo.exec("/util/setup_user.js");
// Has the user verified their E-mail address yet? If not, bounce them there.
if (PropertyUtils.hasProperty(auth_user,VeniceNamespaces.USER_SETTINGS_NAMESPACE,"confirmation.number"))
dynamo.scriptReturn(new Redirect("SERVLET","verify_email.js.vs?tgt=" + stringutils.encodeURL(target)));
else
dynamo.scriptReturn(new Redirect("SERVLET",target));