| | |
|---|
| | | return GitBlitWebSession.get().getLocale().getLanguage();
|
|---|
| | | }
|
|---|
| | |
|
|---|
| | | protected String getCountryCode() {
|
|---|
| | | return GitBlitWebSession.get().getLocale().getCountry().toLowerCase();
|
|---|
| | | }
|
|---|
| | | |
|---|
| | | protected TimeUtils getTimeUtils() {
|
|---|
| | | if (timeUtils == null) {
|
|---|
| | | ResourceBundle bundle;
|
|---|
| | |
|---|
| | | }
|
|---|
| | |
|
|---|
| | | private void login() {
|
|---|
| | | GitBlitWebSession session = GitBlitWebSession.get();
|
|---|
| | | if (session.isLoggedIn() && !session.isSessionInvalidated()) {
|
|---|
| | | // already have a session
|
|---|
| | | return;
|
|---|
| | | }
|
|---|
| | | |
|---|
| | | // try to authenticate by servlet request
|
|---|
| | | HttpServletRequest httpRequest = ((WebRequest) getRequestCycle().getRequest()).getHttpServletRequest();
|
|---|
| | | UserModel user = GitBlit.self().authenticate(httpRequest);
|
|---|
| | |
|
|---|
| | | // Login the user
|
|---|
| | | if (user != null) {
|
|---|
| | | // Set the user into the session
|
|---|
| | | GitBlitWebSession session = GitBlitWebSession.get();
|
|---|
| | | // issue 62: fix session fixation vulnerability
|
|---|
| | | session.replaceSession();
|
|---|
| | | session.setUser(user);
|
|---|
