/** * On GET, present a login form if the user isn't authenticated. */ @Override protected void doGet(HttpServletRequest req, HttpServletResponse resp) throws IOException { // If the user is already logged in, we'll try to redirect them immediately. resp.setCharacterEncoding("UTF-8"); req.setCharacterEncoding("UTF-8"); HttpSession session = req.getSession(false); ParticipantId user = sessionManager.getLoggedInUser(session); if (user != null) { redirectLoggedInUser(req, resp); } else { if (isClientAuthEnabled && !failedClientAuth) { X509Certificate[] certs = (X509Certificate[]) req.getAttribute("javax.servlet.request.X509Certificate"); if (certs != null) { doPost(req, resp); } } if (!isLoginPageDisabled) { resp.setStatus(HttpServletResponse.SC_OK); } else { resp.setStatus(HttpServletResponse.SC_FORBIDDEN); } resp.setContentType("text/html;charset=utf-8"); AuthenticationPage.write(resp.getWriter(), new GxpContext(req.getLocale()), domain, "", RESPONSE_STATUS_NONE, isLoginPageDisabled, analyticsAccount); } }
LOG.info("Authenticated user " + loggedInAddress); redirectLoggedInUser(req, resp);