Archives/Athou_commafeed
1
0
Fork 1
mirror of https://github.com/Athou/commafeed.git synced 2026-03-21 21:37:29 +00:00
Code Issues Packages Projects Releases Wiki Activity

secure cookie

Browse Source
This commit is contained in:
Athou
2013-04-11 11:11:57 +02:00
parent 84f055b67a
commit 53ee8f1428
1 changed files with 23 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

23
src/main/java/com/commafeed/frontend/CommaFeedApplication.java
View File

@@ -7,12 +7,14 @@ import java.util.jar.JarFile;
import javax.enterprise.inject.spi.BeanManager; import javax.enterprise.inject.spi.BeanManager;
import javax.naming.InitialContext; import javax.naming.InitialContext;
import javax.naming.NamingException; import javax.naming.NamingException;
import javax.servlet.http.Cookie;
import org.apache.wicket.Application; import org.apache.wicket.Application;
import org.apache.wicket.Component; import org.apache.wicket.Component;
import org.apache.wicket.Page; import org.apache.wicket.Page;
import org.apache.wicket.Session; import org.apache.wicket.Session;
import org.apache.wicket.ajax.AjaxRequestTarget; import org.apache.wicket.ajax.AjaxRequestTarget;
import org.apache.wicket.authentication.strategy.DefaultAuthenticationStrategy;
import org.apache.wicket.authorization.Action; import org.apache.wicket.authorization.Action;
import org.apache.wicket.authorization.IAuthorizationStrategy; import org.apache.wicket.authorization.IAuthorizationStrategy;
import org.apache.wicket.authroles.authentication.AbstractAuthenticatedWebSession; import org.apache.wicket.authroles.authentication.AbstractAuthenticatedWebSession;
@@ -30,6 +32,7 @@ import org.apache.wicket.request.Response;
import org.apache.wicket.request.component.IRequestableComponent; import org.apache.wicket.request.component.IRequestableComponent;
import org.apache.wicket.request.cycle.AbstractRequestCycleListener; import org.apache.wicket.request.cycle.AbstractRequestCycleListener;
import org.apache.wicket.request.cycle.RequestCycle; import org.apache.wicket.request.cycle.RequestCycle;
import org.apache.wicket.util.cookies.CookieUtils;
import org.jboss.vfs.VirtualFile; import org.jboss.vfs.VirtualFile;
import org.reflections.ReflectionsException; import org.reflections.ReflectionsException;
import org.reflections.vfs.SystemDir; import org.reflections.vfs.SystemDir;
@@ -73,6 +76,26 @@ public class CommaFeedApplication extends AuthenticatedWebApplication {
getMarkupSettings().setCompressWhitespace(true); getMarkupSettings().setCompressWhitespace(true);
getMarkupSettings().setDefaultMarkupEncoding("UTF-8"); getMarkupSettings().setDefaultMarkupEncoding("UTF-8");
getSecuritySettings().setAuthenticationStrategy(
new DefaultAuthenticationStrategy("LoggedIn") {
private CookieUtils cookieUtils = null;
@Override
protected CookieUtils getCookieUtils() {
if (cookieUtils == null) {
cookieUtils = new CookieUtils() {
@Override
protected void initializeCookie(Cookie cookie) {
super.initializeCookie(cookie);
cookie.setHttpOnly(true);
}
};
}
return cookieUtils;
}
});
getSecuritySettings().setAuthorizationStrategy( getSecuritySettings().setAuthorizationStrategy(
new IAuthorizationStrategy() { new IAuthorizationStrategy() {