net.shibboleth.utilities.java.support.net

Class CookieManager

java.lang.Object

net.shibboleth.utilities.java.support.component.AbstractInitializableComponent

net.shibboleth.utilities.java.support.net.CookieManager

All Implemented Interfaces:

Component, DestructableComponent, InitializableComponent

public final class CookieManager
extends AbstractInitializableComponent

A helper class for managing one or more cookies on behalf of a component.

This bean centralizes settings related to cookie creation and access, and is parametrized by name so that multiple cookies may be managed with common properties.

Field Summary

Fields

Modifier and Type	Field and Description
private java.lang.String	cookieDomain Domain of cookie.
private java.lang.String	cookiePath Path of cookie.
private boolean	httpOnly Is cookie marked HttpOnly?
private javax.servlet.http.HttpServletRequest	httpRequest Servlet request to read from.
private javax.servlet.http.HttpServletResponse	httpResponse Servlet response to write to.
private int	maxAge Maximum age in seconds, or -1 for session.
private boolean	secure Is cookie secure?

Constructor Summary

Constructors

Constructor and Description
CookieManager() Constructor.

Method Summary

Modifier and Type	Method and Description
void	addCookie(java.lang.String name, java.lang.String value) Add a cookie with the specified name and value.
private java.lang.String	contextPathToCookiePath() Turn the servlet context path into an appropriate cookie path.
protected void	doInitialize() Performs the initialization of the component.
void	setCookieDomain(java.lang.String domain) Set the cookie domain to use for session tracking.
void	setCookiePath(java.lang.String path) Set the cookie path to use for session tracking.
void	setHttpOnly(boolean flag) Set the HttpOnly flag.
void	setHttpServletRequest(javax.servlet.http.HttpServletRequest request) Set the servlet request to read from.
void	setHttpServletResponse(javax.servlet.http.HttpServletResponse response) Set the servlet response to write to.
void	setMaxAge(int age) Maximum age in seconds, or -1 for per-session.
void	setSecure(boolean flag) Set the SSL-only flag.
void	unsetCookie(java.lang.String name) Unsets a cookie with the specified name.

Methods inherited from class net.shibboleth.utilities.java.support.component.AbstractInitializableComponent

destroy, doDestroy, initialize, isDestroyed, isInitialized

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

cookiePath

@Nullable
private java.lang.String cookiePath

Path of cookie.

cookieDomain

@Nullable
private java.lang.String cookieDomain

Domain of cookie.

httpRequest

@NonnullAfterInit
private javax.servlet.http.HttpServletRequest httpRequest

Servlet request to read from.

httpResponse

@NonnullAfterInit
private javax.servlet.http.HttpServletResponse httpResponse

Servlet response to write to.

secure

private boolean secure

Is cookie secure?

httpOnly

private boolean httpOnly

Is cookie marked HttpOnly?

maxAge

private int maxAge

Maximum age in seconds, or -1 for session.

Constructor Detail

CookieManager

public CookieManager()

Constructor.

Method Detail

setCookiePath

public void setCookiePath(@Nullable
                          java.lang.String path)

Set the cookie path to use for session tracking.

Defaults to the servlet context path.

Parameters:

path - cookie path to use, or null for the default

setCookieDomain

public void setCookieDomain(@Nullable
                            java.lang.String domain)

Set the cookie domain to use for session tracking.

Parameters:

domain - the cookie domain to use, or null for the default

setHttpServletRequest

public void setHttpServletRequest(@Nonnull
                                  javax.servlet.http.HttpServletRequest request)

Set the servlet request to read from.

Parameters:

request - servlet request

setHttpServletResponse

public void setHttpServletResponse(@Nonnull
                                   javax.servlet.http.HttpServletResponse response)

Set the servlet response to write to.

Parameters:

response - servlet response

setSecure

public void setSecure(boolean flag)

Set the SSL-only flag.

Parameters:

flag - flag to set

setHttpOnly

public void setHttpOnly(boolean flag)

Set the HttpOnly flag.

Parameters:

flag - flag to set

setMaxAge

public void setMaxAge(int age)

Maximum age in seconds, or -1 for per-session.

Parameters:

age - max age to set

doInitialize

protected void doInitialize()
                     throws ComponentInitializationException

Performs the initialization of the component. This method is executed within the lock on the object being initialized. The default implementation of this method is a no-op.

Overrides:

doInitialize in class AbstractInitializableComponent

Throws:

ComponentInitializationException - thrown if there is a problem initializing the component

addCookie

@Nullable
public void addCookie(@Nonnull @NotEmpty
                                java.lang.String name,
                                @Nonnull @NotEmpty
                                java.lang.String value)

Add a cookie with the specified name and value.

Parameters:

name - name of cookie

value - value of cookie

unsetCookie

@Nullable
public void unsetCookie(@Nonnull @NotEmpty
                                  java.lang.String name)

Unsets a cookie with the specified name.

Parameters:

name - name of cookie

contextPathToCookiePath

@Nonnull
 @NotEmpty
private java.lang.String contextPathToCookiePath()

Turn the servlet context path into an appropriate cookie path.

Returns:

the cookie path