Allow custom behavior in oidc-derivative id providers #205

rymsha · rymsha · commit 5a8c58f8ef42 · 2025-10-06T15:18:03.000+02:00
diff --git a/src/main/java/com/enonic/app/oidcidprovider/PortalRequestBean.java b/src/main/java/com/enonic/app/oidcidprovider/PortalRequestBean.java
@@ -6,8 +6,6 @@
 import java.util.concurrent.locks.Lock;
 import java.util.concurrent.locks.ReentrantLock;
 
-import jakarta.servlet.http.HttpSession;
-
 import com.enonic.app.oidcidprovider.mapper.ContextMapper;
 import com.enonic.xp.portal.PortalRequest;
 import com.enonic.xp.script.bean.BeanContext;
@@ -19,13 +17,13 @@
 public class PortalRequestBean
     implements ScriptBean
 {
-    private static final String AUTO_LOGIN_FAILED_ATTRIBUTE = PortalRequestBean.class.getName() + ".autoLoginFailed";
+    private static final Lock LOCK = new ReentrantLock();
 
-    private static final String CONTEXT_KEY = "com.enonic.app.oidcidprovider.context";
+    private String contextSessionKey;
 
-    private static final String ID_TOKEN_KEY = "com.enonic.app.oidcidprovider.idtoken";
+    private String idTokenSessionKey;
 
-    private static final Lock LOCK = new ReentrantLock();
+    private String autoLoginAttr;
 
     private PortalRequest portalRequest;
 
@@ -41,8 +39,8 @@ public void storeContext( final String state, final String nonce, final String o
         {
             final var contextMap = new ConcurrentHashMap<String, Map<String, String>>();
 
-            final HttpSession session = portalRequest.getRawRequest().getSession( true );
-            Map<String, Map<String, String>> existingContextMap = (Map) session.getAttribute( CONTEXT_KEY );
+            final var session = portalRequest.getRawRequest().getSession( true );
+            Map<String, Map<String, String>> existingContextMap = (Map) session.getAttribute( contextSessionKey );
 
             if ( existingContextMap != null )
             {
@@ -54,7 +52,7 @@ public void storeContext( final String state, final String nonce, final String o
 
             contextMap.put( state, context.asMap() );
 
-            session.setAttribute( CONTEXT_KEY, Collections.unmodifiableMap( contextMap ) );
+            session.setAttribute( contextSessionKey, Collections.unmodifiableMap( contextMap ) );
         }
         finally
         {
@@ -68,15 +66,15 @@ public ContextMapper removeContext( final String state )
         LOCK.lock();
         try
         {
-            final HttpSession session = portalRequest.getRawRequest().getSession( false );
+            final var session = portalRequest.getRawRequest().getSession( false );
 
             if ( session == null )
             {
                 throw new WebException( HttpStatus.UNAUTHORIZED, "No session" );
             }
 
-            final Map<String, Map<String, String>> contextMap = (Map) session.getAttribute( CONTEXT_KEY );
-            session.removeAttribute( CONTEXT_KEY );
+            final Map<String, Map<String, String>> contextMap = (Map) session.getAttribute( contextSessionKey );
+            session.removeAttribute( contextSessionKey );
 
             if ( contextMap == null )
             {
@@ -106,29 +104,32 @@ public ContextMapper removeContext( final String state )
 
     public void storeIdToken( final String idToken )
     {
-        final HttpSession session = portalRequest.getRawRequest().getSession( true );
-        session.setAttribute( ID_TOKEN_KEY, idToken );
+        final var session = portalRequest.getRawRequest().getSession( true );
+        session.setAttribute( idTokenSessionKey, idToken );
     }
 
     public String getIdToken()
     {
-        final HttpSession session = portalRequest.getRawRequest().getSession( false );
-        return session != null ? (String) session.getAttribute( ID_TOKEN_KEY ) : null;
+        final var session = portalRequest.getRawRequest().getSession( false );
+        return session != null ? (String) session.getAttribute( idTokenSessionKey ) : null;
     }
 
     public void autoLoginFailed()
     {
-        this.portalRequest.getRawRequest().setAttribute( AUTO_LOGIN_FAILED_ATTRIBUTE, Boolean.TRUE );
+        this.portalRequest.getRawRequest().setAttribute( autoLoginAttr, Boolean.TRUE );
     }
 
     public boolean isAutoLoginFailed()
     {
-        return Boolean.TRUE.equals( this.portalRequest.getRawRequest().getAttribute( AUTO_LOGIN_FAILED_ATTRIBUTE ) );
+        return Boolean.TRUE.equals( this.portalRequest.getRawRequest().getAttribute( autoLoginAttr ) );
     }
 
     @Override
     public void initialize( final BeanContext context )
     {
+        this.contextSessionKey = context.getApplicationKey() + ".context";
+        this.idTokenSessionKey = context.getApplicationKey() + ".idtoken";
+        this.autoLoginAttr = context.getApplicationKey() + ".autoLoginFailed";
         this.portalRequest = context.getBinding( PortalRequest.class ).get();
     }
 }
diff --git a/src/main/resources/lib/login.js b/src/main/resources/lib/login.js
@@ -37,7 +37,7 @@ function login(token, tokenClaims, isAutoLogin) {
         updateUserData(claims, idProviderConfig, user);
     }
 
-    doLogin(idProviderConfig, userName, isAutoLogin);
+    return doLogin(idProviderConfig, userName, isAutoLogin);
 }
 
 function getClaim(claims, claimKey) {
@@ -110,6 +110,7 @@ function doLogin(idProviderConfig, userName, isAutoLogin) {
         }
         throw `Error while logging user [${principalKey}]`;
     }
+    return loginResult;
 }
 
 function doCreateUser(idProviderConfig, claims, userName, isAutoLogin) {

Original file line number	Diff line number	Diff line change
`@@ -6,8 +6,6 @@`
`6`	`6`	`import java.util.concurrent.locks.Lock;`
`7`	`7`	`import java.util.concurrent.locks.ReentrantLock;`
`8`	`8`
`9`		`-import jakarta.servlet.http.HttpSession;`
`10`		`-`
`11`	`9`	`import com.enonic.app.oidcidprovider.mapper.ContextMapper;`
`12`	`10`	`import com.enonic.xp.portal.PortalRequest;`
`13`	`11`	`import com.enonic.xp.script.bean.BeanContext;`
`@@ -19,13 +17,13 @@`
`19`	`17`	`public class PortalRequestBean`
`20`	`18`	`implements ScriptBean`
`21`	`19`	`{`
`22`		`- private static final String AUTO_LOGIN_FAILED_ATTRIBUTE = PortalRequestBean.class.getName() + ".autoLoginFailed";`
	`20`	`+ private static final Lock LOCK = new ReentrantLock();`
`23`	`21`
`24`		`- private static final String CONTEXT_KEY = "com.enonic.app.oidcidprovider.context";`
	`22`	`+ private String contextSessionKey;`
`25`	`23`
`26`		`- private static final String ID_TOKEN_KEY = "com.enonic.app.oidcidprovider.idtoken";`
	`24`	`+ private String idTokenSessionKey;`
`27`	`25`
`28`		`- private static final Lock LOCK = new ReentrantLock();`
	`26`	`+ private String autoLoginAttr;`
`29`	`27`
`30`	`28`	`private PortalRequest portalRequest;`
`31`	`29`
`@@ -41,8 +39,8 @@ public void storeContext( final String state, final String nonce, final String o`
`41`	`39`	`{`
`42`	`40`	`final var contextMap = new ConcurrentHashMap<String, Map<String, String>>();`
`43`	`41`
`44`		`- final HttpSession session = portalRequest.getRawRequest().getSession( true );`
`45`		`- Map<String, Map<String, String>> existingContextMap = (Map) session.getAttribute( CONTEXT_KEY );`
	`42`	`+ final var session = portalRequest.getRawRequest().getSession( true );`
	`43`	`+ Map<String, Map<String, String>> existingContextMap = (Map) session.getAttribute( contextSessionKey );`
`46`	`44`
`47`	`45`	`if ( existingContextMap != null )`
`48`	`46`	`{`
`@@ -54,7 +52,7 @@ public void storeContext( final String state, final String nonce, final String o`
`54`	`52`
`55`	`53`	`contextMap.put( state, context.asMap() );`
`56`	`54`
`57`		`- session.setAttribute( CONTEXT_KEY, Collections.unmodifiableMap( contextMap ) );`
	`55`	`+ session.setAttribute( contextSessionKey, Collections.unmodifiableMap( contextMap ) );`
`58`	`56`	`}`
`59`	`57`	`finally`
`60`	`58`	`{`
`@@ -68,15 +66,15 @@ public ContextMapper removeContext( final String state )`
`68`	`66`	`LOCK.lock();`
`69`	`67`	`try`
`70`	`68`	`{`
`71`		`- final HttpSession session = portalRequest.getRawRequest().getSession( false );`
	`69`	`+ final var session = portalRequest.getRawRequest().getSession( false );`
`72`	`70`
`73`	`71`	`if ( session == null )`
`74`	`72`	`{`
`75`	`73`	`throw new WebException( HttpStatus.UNAUTHORIZED, "No session" );`
`76`	`74`	`}`
`77`	`75`
`78`		`- final Map<String, Map<String, String>> contextMap = (Map) session.getAttribute( CONTEXT_KEY );`
`79`		`- session.removeAttribute( CONTEXT_KEY );`
	`76`	`+ final Map<String, Map<String, String>> contextMap = (Map) session.getAttribute( contextSessionKey );`
	`77`	`+ session.removeAttribute( contextSessionKey );`
`80`	`78`
`81`	`79`	`if ( contextMap == null )`
`82`	`80`	`{`
`@@ -106,29 +104,32 @@ public ContextMapper removeContext( final String state )`
`106`	`104`
`107`	`105`	`public void storeIdToken( final String idToken )`
`108`	`106`	`{`
`109`		`- final HttpSession session = portalRequest.getRawRequest().getSession( true );`
`110`		`- session.setAttribute( ID_TOKEN_KEY, idToken );`
	`107`	`+ final var session = portalRequest.getRawRequest().getSession( true );`
	`108`	`+ session.setAttribute( idTokenSessionKey, idToken );`
`111`	`109`	`}`
`112`	`110`
`113`	`111`	`public String getIdToken()`
`114`	`112`	`{`
`115`		`- final HttpSession session = portalRequest.getRawRequest().getSession( false );`
`116`		`- return session != null ? (String) session.getAttribute( ID_TOKEN_KEY ) : null;`
	`113`	`+ final var session = portalRequest.getRawRequest().getSession( false );`
	`114`	`+ return session != null ? (String) session.getAttribute( idTokenSessionKey ) : null;`
`117`	`115`	`}`
`118`	`116`
`119`	`117`	`public void autoLoginFailed()`
`120`	`118`	`{`
`121`		`- this.portalRequest.getRawRequest().setAttribute( AUTO_LOGIN_FAILED_ATTRIBUTE, Boolean.TRUE );`
	`119`	`+ this.portalRequest.getRawRequest().setAttribute( autoLoginAttr, Boolean.TRUE );`
`122`	`120`	`}`
`123`	`121`
`124`	`122`	`public boolean isAutoLoginFailed()`
`125`	`123`	`{`
`126`		`- return Boolean.TRUE.equals( this.portalRequest.getRawRequest().getAttribute( AUTO_LOGIN_FAILED_ATTRIBUTE ) );`
	`124`	`+ return Boolean.TRUE.equals( this.portalRequest.getRawRequest().getAttribute( autoLoginAttr ) );`
`127`	`125`	`}`
`128`	`126`
`129`	`127`	`@Override`
`130`	`128`	`public void initialize( final BeanContext context )`
`131`	`129`	`{`
	`130`	`+ this.contextSessionKey = context.getApplicationKey() + ".context";`
	`131`	`+ this.idTokenSessionKey = context.getApplicationKey() + ".idtoken";`
	`132`	`+ this.autoLoginAttr = context.getApplicationKey() + ".autoLoginFailed";`
`132`	`133`	`this.portalRequest = context.getBinding( PortalRequest.class ).get();`
`133`	`134`	`}`
`134`	`135`	`}`
Original file line number	Diff line number	Diff line change
`@@ -37,7 +37,7 @@ function login(token, tokenClaims, isAutoLogin) {`
`37`	`37`	`updateUserData(claims, idProviderConfig, user);`
`38`	`38`	`}`
`39`	`39`
`40`		`- doLogin(idProviderConfig, userName, isAutoLogin);`
	`40`	`+ return doLogin(idProviderConfig, userName, isAutoLogin);`
`41`	`41`	`}`
`42`	`42`
`43`	`43`	`function getClaim(claims, claimKey) {`
`@@ -110,6 +110,7 @@ function doLogin(idProviderConfig, userName, isAutoLogin) {`
`110`	`110`	`}`
`111`	`111`	throw `Error while logging user [${principalKey}]`;
`112`	`112`	`}`
	`113`	`+ return loginResult;`
`113`	`114`	`}`
`114`	`115`
`115`	`116`	`function doCreateUser(idProviderConfig, claims, userName, isAutoLogin) {`