SESPRINGPYTHONPY-100: Fixed up noxml to work correctly. Also fixed logout function.

gregturn · gregturn · commit 1f7be038f82a · 2009-12-04T16:21:17.000Z
git-svn-id: https://src.springframework.org/svn/se-springpython-py/sandbox/gregturnquist/sespringpythonpy-100@708 ce8fead1-4192-4296-8608-a705134b927f
diff --git a/samples/springwiki/noxml.py b/samples/springwiki/noxml.py
@@ -16,26 +16,143 @@
 
 import controller
 import view
-from springpython.config import PythonConfig
-from springpython.config import Object
-from springpython.security.web import FilterChainProxy
+
+from springpython.config import *
+from springpython.security.web import *
+from springpython.security.providers import *
+from springpython.security.providers.dao import *
+from springpython.security.userdetails import *
+from springpython.security.vote import *
 
 class SpringWikiClientAndServer(PythonConfig):
     def __init__(self):
         super(SpringWikiClientAndServer, self).__init__()
         
+    @Object
+    def controller(self):
+        return controller.SpringWikiController()
+    
     @Object
     def read(self):
         wikiView = view.Springwiki()
         wikiView.controller = self.controller()
         return wikiView
     
     @Object
-    def controller(self):
-        return controller.SpringWikiController()
-    
+    def userDetailsService2(self):
+        service = InMemoryUserDetailsService()
+        service.user_dict = {"writer": ("comein", ["VET_ANY"], True)}
+        return service
+
+    @Object
+    def plainEncoder(self):
+        return PlaintextPasswordEncoder()
+
+    @Object
+    def plainAuthenticationProvider(self):
+        provider = DaoAuthenticationProvider()
+        provider.user_details_service = self.userDetailsService2()
+        provider.password_encoder = self.plainEncoder()
+        return provider
+        
+
+    @Object
+    def authenticationManager(self):
+        manager = AuthenticationManager()
+        manager.auth_providers = [self.plainAuthenticationProvider()]
+        return manager
+        
+    @Object
+    def authenticationProcessingFilter(self):
+        filter = AuthenticationProcessingFilter()
+        filter.auth_manager = self.authenticationManager()
+        filter.alwaysReauthenticate = False
+        return filter
+        
+    @Object
+    def cherrypySessionStrategy(self):
+        return CP3SessionStrategy()
+        	
+    @Object
+    def redirectStrategy(self):
+        return CP3RedirectStrategy()
+        
+    @Object      
+    def httpContextFilter(self):
+        filter = HttpSessionContextIntegrationFilter()
+        filter.sessionStrategy = self.cherrypySessionStrategy()
+        return filter
+
+    @Object
+    def authenticationProcessingFilterEntryPoint(self):
+        filter_point = AuthenticationProcessingFilterEntryPoint()
+        filter_point.loginFormUrl = "/login"
+        filter_point.redirectStrategy = self.redirectStrategy()
+        return filter_point	
+    @Object
+    def accessDeniedHandler(self):
+        handler = SimpleAccessDeniedHandler()
+        handler.errorPage = "/accessDenied"
+        handler.redirectStrategy = self.redirectStrategy()
+        return handler
+
+    @Object
+    def exceptionTranslationFilter(self):
+        filter = ExceptionTranslationFilter()
+        filter.authenticationEntryPoint = self.authenticationProcessingFilterEntryPoint()
+        filter.accessDeniedHandler = self.accessDeniedHandler()
+        return filter
+
+    @Object
+    def filterSecurityInterceptor(self):
+        interceptor = FilterSecurityInterceptor()
+        interceptor.validate_config_attributes = False
+        interceptor.auth_manager = self.authenticationManager()
+        interceptor.access_decision_mgr = self.accessDecisionManager()
+        interceptor.sessionStrategy = self.cherrypySessionStrategy()
+        interceptor.obj_def_source = [("/.*", ["VET_ANY", "CUSTOMER_ANY"])]
+        return interceptor
+
+    @Object
+    def vetRoleVoter(self):
+        voter = RoleVoter()
+        voter.role_prefix = "VET"
+        return voter
+
+    @Object
+    def customerRoleVoter(self):
+        voter = RoleVoter()
+        voter.role_prefix = "CUSTOMER"
+        return voter
+        	
+    @Object
+    def accessDecisionManager(self):
+        policy = AffirmativeBased()
+        policy.allow_if_all_abstain = False
+        policy.access_decision_voters = [self.vetRoleVoter(), self.customerRoleVoter()]
+        return policy
+
     @Object
     def filterChainProxy(self):
-        proxy = FilterChainProxy()
-        proxy.filterInvocationDefinitionSource = [("/.*", [])]
-        return proxy
+        proxy = CP3FilterChainProxy()
+        proxy.filterInvocationDefinitionSource = [
+                                ("/login.*",
+                                    ["httpContextFilter"]),
+                                ("/.*",
+                                    ["httpContextFilter",
+                                    "exceptionTranslationFilter", 
+                                    "authenticationProcessingFilter",
+                                    "filterSecurityInterceptor"]
+                                 )]
+        return proxy
+
+    @Object
+    def loginForm(self):
+        form = view.CherryPyAuthenticationForm()
+        form.filter = self.authenticationProcessingFilter()
+        form.controller = self.controller()
+        form.authenticationManager = self.authenticationManager()
+        form.redirectStrategy = self.redirectStrategy()
+        form.httpContextFilter = self.httpContextFilter()
+        return form
+
diff --git a/samples/springwiki/springwiki-noxml.py b/samples/springwiki/springwiki-noxml.py
@@ -21,6 +21,7 @@
 from springpython.config import PyContainerConfig
 from springpython.config import PythonConfig
 from springpython.context import ApplicationContext
+from springpython.security.context import SecurityContextHolder
 
 port = 8003
 
@@ -38,9 +39,15 @@
     logger.addHandler(ch)
 
     applicationContext = ApplicationContext(noxml.SpringWikiClientAndServer())
+    filterChainProxy = applicationContext.get_object("filterChainProxy")
+
+    SecurityContextHolder.setStrategy(SecurityContextHolder.MODE_GLOBAL)
+    SecurityContextHolder.getContext()
     
     # Use a configuration file for server-specific settings.
-    conf = {"/":                {"tools.staticdir.root": os.getcwd()},
+    conf = {"/":                {"tools.staticdir.root": os.getcwd(),
+                                 "tools.sessions.on": True,
+                                 "tools.filterChainProxy.on": True},
             "/images":          {"tools.staticdir.on": True,
                                  "tools.staticdir.dir": "images"},
             "/html":            {"tools.staticdir.on": True,
@@ -68,8 +75,11 @@
             }
 
     cherrypy.config.update({'server.socket_port': port})
-    
-    cherrypy.tree.mount(applicationContext.get_object(name = "read"), '/', config=conf)
+
+    app = applicationContext.get_object(name = "read")
+    app.login = applicationContext.get_object(name = "loginForm")
+
+    cherrypy.tree.mount(app, '/', config=conf)
 
     cherrypy.engine.start()
     cherrypy.engine.block()
diff --git a/samples/springwiki/view.py b/samples/springwiki/view.py
@@ -131,6 +131,7 @@ def index(self, fromPage="/", login="", password="", errorMsg=""):
     def logout(self):
         """Replaces current authentication token, with an empty, non-authenticated one."""
         self.filter.logout()
+        self.httpContextFilter.saveContext()
         raise cherrypy.HTTPRedirect("/")
 
     def attemptAuthentication(self, username, password):
