001/*
002 *  Copyright 2012 Anyware Services
003 *
004 *  Licensed under the Apache License, Version 2.0 (the "License");
005 *  you may not use this file except in compliance with the License.
006 *  You may obtain a copy of the License at
007 *
008 *      http://www.apache.org/licenses/LICENSE-2.0
009 *
010 *  Unless required by applicable law or agreed to in writing, software
011 *  distributed under the License is distributed on an "AS IS" BASIS,
012 *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
013 *  See the License for the specific language governing permissions and
014 *  limitations under the License.
015 */
016package org.ametys.runtime.authentication;
017
018import java.util.Map;
019
020import org.apache.avalon.framework.parameters.Parameters;
021import org.apache.avalon.framework.thread.ThreadSafe;
022import org.apache.cocoon.acting.AbstractAction;
023import org.apache.cocoon.environment.ObjectModelHelper;
024import org.apache.cocoon.environment.Redirector;
025import org.apache.cocoon.environment.Response;
026import org.apache.cocoon.environment.SourceResolver;
027
028/**
029 * Action setting the response Header for 401 reponse
030 */
031public class SetAuthorizationHeaderAction extends AbstractAction implements ThreadSafe
032{
033    public Map act(Redirector redirector, SourceResolver resolver, Map objectModel, String source, Parameters parameters) throws Exception
034    {
035        Throwable throwable = ObjectModelHelper.getThrowable(objectModel);
036        AuthorizationRequiredException ex = _unrollException(throwable);
037        
038        if (ex != null && ex.getRealm() != null)
039        {
040            Response response = ObjectModelHelper.getResponse(objectModel);
041            response.setHeader("WWW-Authenticate", "BASIC realm=\"" + ex.getRealm() + "\"");
042        }
043        
044        return EMPTY_MAP;
045    }
046
047    private AuthorizationRequiredException _unrollException(Throwable throwable)
048    {
049        if (throwable instanceof AuthorizationRequiredException)
050        {
051            return (AuthorizationRequiredException) throwable;
052        }
053        else
054        {
055            Throwable cause = throwable.getCause();
056            if (cause != null)
057            {
058                return _unrollException(cause);
059            }
060        }
061        
062        return null;
063    }
064}