/** *****************************************************************
    loginDemo.java   SWE 642 Student Information

        @author Jeff Offutt

        @version 1.0    (2/21/2004)
        @version 2.0    (Jan 2009)
         Port to CS server

Establishes a login using a servlet session.
IDs are hardcoded.
doGet() prints the login screen.
doPost() checks an ID/password and sets the session info.

********************************************************************* */
package studInfoDemo;

// Import Servlet Libraries
import javax.servlet.*;
import javax.servlet.http.*;

// Import Java Libraries
import java.io.*;
import java.util.*;
import java.lang.*;

// login class
//
//***********************************************************************

public class loginDemo extends HttpServlet
{
   private static String LoginServlet = "http://cs.gmu.edu:8080/offutt/servlet/studInfoDemo.loginDemo"; // cs
   private static String JSPLoc = "http://cs.gmu.edu:8080/offutt/jsp/"; // cs
   public static String classWebSiteURL = "http://www.cs.gmu.edu/~offutt/classes/642/";
   public static String FileName = "/var/www/CS/webapps/offutt/WEB-INF/data/demo-info.xml"; // CS

   // Form parameters.
   private static String userIDDemo;
   private static String passWord;
   // doPost() tells doGet() when the login is invalid.
   private static boolean invalidID = false;
   private static String fromJSP;

/** *****************************************************
 *  Overrides HttpServlet's doGet().
 *  prints the login form.
********************************************************* */
public void doGet (HttpServletRequest req, HttpServletResponse res)
   throws ServletException, IOException
{
   fromJSP = req.getParameter ("jspFrom");

   res.setContentType ("TEXT/HTML");
   PrintWriter out = res.getWriter ();

   out.println ("<HTML>");
   out.println ("");
   out.println ("<HEAD>");
   out.println (" <TITLE>SWE 642 Information Form</TITLE>");
   out.println ("</HEAD>");

   out.println ("");
   out.println ("<BODY Background=\"http://www.cs.gmu.edu/~offutt/image/blgr036.jpg\">");

   out.println ("<B><CENTER>Login form to the student information system</CENTER></B>");
   if (invalidID)
   {  // called from doPost(), invalid ID entered.
      invalidID = false;
      out.println ("<BR><FONT Color=\"red\">Invalid user ID, password pair. Please try again.</FONT><BR><BR>");
   }

   out.println ("<FORM Method=\"POST\"");
   out.println ("      Action=\"" + LoginServlet + "\" ID=\"form1\" Name=\"form1\">");

   // Pass where we came from to doPost() so she can send us back there.
   if (fromJSP != null)
      out.println ("<INPUT Type=\"hidden\" Name=\"jspFrom\" Value=\"" + fromJSP + "\">");

   out.println ("<TABLE Cellspacing=\"0\" Cellpadding=\"3\" Border=\"0\">");
   out.println ("<TR>");
   out.println (" <TD>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;</TD>");
   out.println (" <TD>UserID:</TD>");
   out.println (" <TD><INPUT Type=\"text\" Name=\"UserIDDemo\" Size=\"10\" MaxLength=\"20\"></TD>");
   out.println ("</TR>");
   out.println ("<TR>");
   out.println (" <TD></TD>");
   out.println (" <TD>Password:</TD>");
   out.println (" <TD><INPUT Type=\"password\" Name=\"PassWord\" size=\"10\" maxlength=\"20\"></TD>");
   out.println ("</TR>");
   out.println ("<TR><TD></TD><TD Colspan=\"2\" Align=\"center\"><INPUT Type=\"submit\" Value=\"Login\"></TD></TR>");
   out.println ("</TABLE>");
   out.println ("</FORM>");

   // Put the initial focus in the user id box.
   out.println (" <SCRIPT language=\"javascript\">");
   out.println (" <!--");
   out.println ("   document.form1.UserIDDemo.focus()");
   out.println (" //-->");
   out.println (" </SCRIPT>");

   out.println ("</BODY>");
   out.println ("</HTML>");

   out.close ();
}

/** *****************************************************
 *  Overrides HttpServlet's doPost().
********************************************************* */
public void doPost (HttpServletRequest req, HttpServletResponse res)
   throws ServletException, IOException
{
   userIDDemo = req.getParameter ("UserIDDemo");
   passWord   = req.getParameter ("PassWord");
   fromJSP    = req.getParameter ("jspFrom");

   HttpSession session = req.getSession (true);
   session.setMaxInactiveInterval (60*60*12); // 12 hour sessions
   if (userIDDemo.equals ("demo") && passWord.equals ("demo"))
   {  // successful
      session.setAttribute ("isLoginDemo", "Yes");
      session.setAttribute ("UserIDDemo", userIDDemo);
      // OKAY ... forward to JSP from "fromJSP"
      res.sendRedirect (JSPLoc + fromJSP);
   }
   else
   {  // unsuccessful
      session.setAttribute ("isLoginDemo", "No");
      session.setAttribute ("UserIDDemo", "");
      invalidID = true;
      doGet (req, res);
   }
} // end of doPost() method

} // end of loginDemo class