<html>
  <head>
    <meta content="text/html; charset=ISO-8859-1"
      http-equiv="Content-Type">
  </head>
  <body bgcolor="#FFFFFF" text="#000000">
    <div class="moz-cite-prefix">Hi Jakub,<br>
      <br>
      simply extend the
      <a class="moz-txt-link-freetext" href="http://files.opencms.org/javadoc/core/org/opencms/security/CmsDefaultAuthorizationHandler.html">http://files.opencms.org/javadoc/core/org/opencms/security/CmsDefaultAuthorizationHandler.html</a>
      and do something like the following. <br>
      Finally register the authorization handler via opencms-system.xml
      (look for <authorizationhandler
      class="org.opencms.security.CmsDefaultAuthorizationHandler">)<br>
      <br>
      \Fabian<br>
      <br>
      <tt>    @Override</tt><tt><br>
      </tt><tt>    public CmsObject initCmsObject(HttpServletRequest
        request) </tt><tt><br>
      </tt><tt>    {</tt><tt><br>
      </tt><tt>        CmsObject cms = checkBasicAuthorization(request);</tt><tt><br>
        <br>
      </tt><tt>        if (cms != null) {</tt><tt><br>
      </tt><tt>            try {</tt><tt><br>
      </tt><tt>                // register the session into OpenCms and</tt><tt><br>
                        return registerSession(request, cms);</tt><tt><br>
      </tt><tt>            } catch (CmsException e) {</tt><tt><br>
      </tt><tt>                // ignore and treat the whole login
        process as failed</tt><tt><br>
      </tt><tt>            }</tt><tt><br>
      </tt><tt>        }</tt><tt><br>
        <br>
      </tt><tt>        // failed</tt><tt><br>
      </tt><tt>        return null;</tt><tt><br>
      </tt><tt>    }</tt><tt><br>
      </tt><tt></tt><tt><br>
      </tt><tt>    @Override</tt><tt><br>
      </tt><tt>    protected CmsObject
        checkBasicAuthorization(HttpServletRequest request) {</tt><tt><br>
      </tt><tt></tt><tt><br>
      </tt><tt>        try {</tt><tt><br>
      </tt><tt>    <br>
                    Cookie rememberUser = <get your cookie>;<br>
                    boolean checkCookie = false;<br>
                    String cookieUser = null;<br>
                    <br>
                    ... verify cookie and extract user ...<br>
      </tt><tt><br>
      </tt><tt>            if (!</tt><tt>checkCookie</tt><tt>){</tt><tt><br>
      </tt><tt>                return
        super.checkBasicAuthorization(request);</tt><tt><br>
      </tt><tt>            } else {</tt><tt><br>
      </tt><tt><br>
      </tt><br>
      <tt>            CmsContextInfo contextInfo = new
        CmsContextInfo("Admin");<br>
                    </tt><tt><tt>CmsObject cmso </tt> =
        OpenCms.initCmsObject(cms, contextInfo);</tt><tt><br>
      </tt><tt>            CmsObject cms =
        OpenCms.initCmsObject(OpenCms.getDefaultUsers().getUserGuest());</tt><tt><br>
      </tt><tt><br>
      </tt><tt><br>
      </tt><tt>            // Try to read the cookie extracted user</tt><tt><br>
      </tt><tt>            CmsUser user = cmso.readUser(userId);</tt><tt><br>
      </tt><tt>            CmsContextInfo ctx = new CmsContextInfo(user,
        cms.getRequestContext().getCurrentProject(),
        cms.getRequestContext().getUri(),
        cms.getRequestContext().getSiteRoot(),
        cms.getRequestContext().getLocale(),
        cms.getRequestContext().getEncoding(),
        cms.getRequestContext().getRemoteAddress(),
        cms.getRequestContext().getRequestTime(),
        cms.getRequestContext().getOuFqn());</tt><tt><br>
        <br>
      </tt><tt>            cms = OpenCms.initCmsObject(cmso, ctx);</tt><tt><br>
                    request.getSession(true);</tt><tt><br>
      </tt><tt>            return cms;</tt><tt><br>
      </tt><tt>            <br>
                    }<br>
                    catch(<all proper exceptions>) {}<br>
      </tt><tt><br>
        <br>
      </tt><tt>            return null;</tt><tt><br>
      </tt><tt>    }</tt><br>
      <br>
      Am 21.07.13 09:47, schrieb Jakub Ječmínek:<br>
    </div>
    <blockquote
cite="mid:CABO=eT0VV7dhVowaQOsvgPztJdDGiQn0z11KuAuO6b+Kr2F_YA@mail.gmail.com"
      type="cite">
      <meta http-equiv="Context-Type" content="text/html;
        charset=ISO-8859-2">
      <div dir="ltr">Hi,<br>
        <div dir="ltr">
          <div>I'm trying to develope a "remember me" functionality to
            OpenCms based on cookies and the best practices described
            here <a moz-do-not-send="true"
              href="http://jaspan.com/improved_persistent_login_cookie_best_practice">http://jaspan.com/improved_persistent_login_cookie_best_practice</a>. </div>
          <div>Only problem that I have is that I don't know how to
            login user programatically after it was verified that his
            cookie is valid. I know that there is method </div>
          <div>loginUser(java.lang.String username, java.lang.String
            password) on CmsObject. But this requires knowledge of
            user's password and I don't want to store user's password in
            the cookie for security reasons, not even if it was hashed.
            Is there any other way how to login user programatically? Or
            has anybody tried to create this functionality in the
            OpenCms?</div>
          <div><br>
          </div>
          <div>Thanks.</div>
          <div><br>
          </div>
          <div>Jakub Ječmínek<br>
            ------------------------------------------------<br>
            NELASOFT Technologies, s.r.o.<br>
            Mob: +420 604 575 772<br>
            E-mail: <a moz-do-not-send="true"
              href="mailto:jakub.jecminek@nelasoft.cz" target="_blank">jakub.jecminek@nelasoft.cz</a><br>
            Web: <a moz-do-not-send="true"
              href="http://www.nelasoft.cz/" target="_blank">www.nelasoft.cz</a><br>
          </div>
          <div><br>
          </div>
        </div>
      </div>
      <br>
      <fieldset class="mimeAttachmentHeader"></fieldset>
      <br>
      <pre wrap="">_______________________________________________
This mail is sent to you from the opencms-dev mailing list
To change your list options, or to unsubscribe from the list, please visit
<a class="moz-txt-link-freetext" href="http://lists.opencms.org/cgi-bin/mailman/listinfo/opencms-dev">http://lists.opencms.org/cgi-bin/mailman/listinfo/opencms-dev</a>



</pre>
    </blockquote>
    <br>
  </body>
</html>