Gitblit devel
blame | history | patch | commit | commitdiff | ignore whitespace
Kensuke Matsuzaki
2012-02-15 83b55b7801cbf1c37971eb530ddf9b0f46a11536 
 src/com/gitblit/wicket/pages/RootPage.java


@@ -32,7 +32,6 @@






import org.apache.wicket.PageParameters;



import org.apache.wicket.markup.html.form.PasswordTextField;



import org.apache.wicket.markup.html.form.StatelessForm;



import org.apache.wicket.markup.html.form.TextField;



import org.apache.wicket.model.IModel;



import org.apache.wicket.model.Model;



@@ -48,6 +47,7 @@


import com.gitblit.wicket.GitBlitWebSession;



import com.gitblit.wicket.PageRegistration;



import com.gitblit.wicket.PageRegistration.DropDownMenuItem;



import com.gitblit.wicket.SessionlessForm;



import com.gitblit.wicket.WicketUtils;



import com.gitblit.wicket.panels.NavigationPanel;







@@ -101,6 +101,9 @@


      pages.add(new PageRegistration("gb.repositories", RepositoriesPage.class,



            getRootPageParameters()));



      pages.add(new PageRegistration("gb.activity", ActivityPage.class, getRootPageParameters()));



      if (GitBlit.getBoolean(Keys.web.allowLuceneIndexing, true)) {



         pages.add(new PageRegistration("gb.search", LuceneSearchPage.class));



      }



      if (showAdmin) {



         pages.add(new PageRegistration("gb.users", UsersPage.class));



      }



@@ -116,7 +119,7 @@


      add(navPanel);







      // login form



      StatelessForm<Void> loginForm = new StatelessForm<Void>("loginForm") {



      SessionlessForm<Void> loginForm = new SessionlessForm<Void>("loginForm", getClass(), getPageParameters()) {







         private static final long serialVersionUID = 1L;







@@ -195,7 +198,10 @@


   private void loginUser(UserModel user) {



      if (user != null) {



         // Set the user into the session



         GitBlitWebSession.get().setUser(user);



         GitBlitWebSession session = GitBlitWebSession.get();



         // issue 62: fix session fixation vulnerability



         session.replaceSession();



         session.setUser(user);







         // Set Cookie



         if (GitBlit.getBoolean(Keys.web.allowCookieAuthentication, false)) {



@@ -204,8 +210,16 @@


         }







         if (!continueToOriginalDestination()) {



            // Redirect to home page



            setResponsePage(getApplication().getHomePage());



            PageParameters params = getPageParameters();



            if (params == null) {



               // redirect to this page



               setResponsePage(getClass());



            } else {



               // Strip username and password and redirect to this page



               params.remove("username");



               params.remove("password");



               setResponsePage(getClass(), params);



            }



         }



      }



   }