1 package org.argeo.cms.internal.http;
2
3 import javax.security.auth.login.LoginContext;
4 import javax.servlet.http.HttpServletRequest;
5 import javax.servlet.http.HttpServletResponse;
6
7
8 public class PrivateServletContextHelper extends CmsServletContextHelper {
9
10 private final String httpAuthRealm = "Argeo";
11 private final boolean forceBasic = false;
12
13 @Override
14 protected LoginContext processUnauthorized(HttpServletRequest request, HttpServletResponse response) {
15 askForWwwAuth(request, response);
16 return null;
17 }
18
19 protected void askForWwwAuth(HttpServletRequest request, HttpServletResponse response) {
20 response.setStatus(401);
21
22
23 if (org.argeo.cms.internal.kernel.Activator.getAcceptorCredentials() != null && !forceBasic)
24 response.setHeader(HttpUtils.HEADER_WWW_AUTHENTICATE, "Negotiate");
25 else
26 response.setHeader(HttpUtils.HEADER_WWW_AUTHENTICATE, "Basic realm=\"" + httpAuthRealm + "\"");
27
28
29
30
31
32
33
34
35
36 }
37 }