package zall.page; import zall.ZalleryServlet; import zall.bean.User; import zall.manager.AuthenticationManager; import zall.util.UserMessage; import zutil.db.DBConnection; import zutil.log.LogUtil; import javax.servlet.ServletException; import javax.servlet.annotation.WebServlet; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse; import java.io.IOException; import java.sql.SQLException; import java.util.logging.Logger; @WebServlet(LoginServlet.URI) public class LoginServlet extends ZalleryServlet { private static Logger logger = LogUtil.getLogger(); public static final String URI = "/login"; private static final String JSP_FILE = "page_login.jsp"; public void doGet(HttpServletRequest request, HttpServletResponse response, DBConnection db) throws ServletException, IOException, SQLException { // User already logged in? User user = AuthenticationManager.getUserSession(request.getSession()); // Authenticate with cookies if (user == null) user = AuthenticationManager.authenticate(db, request, response); // Forward user if (user != null) { include(JSP_FILE, request, response); } else { logger.fine("User(" + user.getEmail() + ") already authenticated, forwarding to gallery."); redirect(GalleryServlet.URI, request, response); } } public void doPost(HttpServletRequest request, HttpServletResponse response, DBConnection db) throws SQLException, ServletException, IOException { UserMessage msgs = UserMessage.getUserMessage(request.getSession()); User user = AuthenticationManager.authenticate(db, request.getParameter("email"), request.getParameter("password"), request, response); // Successful login if (user != null) { logger.fine("Authenticated user(" + user.getEmail() + ") successfully, forwarding to gallery."); forward(GalleryServlet.URI, request, response); } // Failed login else { msgs.add(UserMessage.MessageType.ERROR, lang.getString("error.incorrect.user_or_pass")); } doGet(request, response, db); } }