Redirecting Post Values from Third Party application to Liferay

-

 

Whenever we do Post in Liferay, Liferay will auto generate P_auth token. 

But whenever we are doing posting(Post Request) from third party application and redirecting to Liferay application ,  liferay application will expect p_auth token. But third party applications cannot provide p_auth as it is Liferay specific. 

But in liferay, we can design to ignore p_auth token for specific URL.

First, Write a below class to ignore Auth token for specific URL

@Component(

immediate = true,

property = {

"auth.token.ignore.mvc.action=true",

"javax.portlet.name=" + SamplePortletKeys.PortletName,

"mvc.command.name=/redirect/liferay"

},

service = MVCActionCommand.class

)

public class RedirectPath extends BaseMVCActionCommand { }


Here we have created MVCActionCommand Class 

  1. auth.token.ignore.mvc.action=true

            This Property will ensure to ignore p_auth token.

     2. "mvc.command.name=/redirect/liferay"

           Here we have specified the property of the URL to ignore p_auth token,


In Redirect class, we have extended BaseMVCActionCommand it means we need to override doProcessAction Method


Second, In Third Party application we need to construct a URL as below to redirect to liferay specific URL.

<form action="http://localhost:8080/web/guest/home?p_p_id=<portlet-name>&p_p_lifecycle=1&<portlet namespace>javax.portlet.action=/redirect/liferay" method="post">

p_p_id should be as portlet name

In  MVC Action Command class we have mentioned URL, so same needs to mention in URL as <portlet namespace>javax.portlet.action=/redirect/liferay

p_p_lifecycle=1 means it is of type POST request.



If we didn't mention "auth.token.ignore.mvc.action=true" then we will get as below error

User 0 is not allowed to access URL %s and portlet %s


We can refer SecurityPortletContainerWrapper class for more details. Refer processAction method.

Comments

Post a Comment

Popular posts from this blog

How to know which liferay version we are using

-
Image
Sometimes we have to know which liferay version we are using, so how can we know? We can know the liferay version in different ways. 1. Liferay has provided some utility methods to know the which liferay version we are using , Here is the utility method ReleaseInfo.getReleaseInfo() It prints this statement " Liferay Portal Community Edition 6.2 CE GA2 (Newton / Build 6201 / March 20, 2014) " as i am using community version it shoes as CE. 2. Also we can also identify by response headers as below screenshot. If your using the chrome, right click on the browser and click inscept element , and navigate to the network  . you will see the URLS , click on the any url. 3. Also we can see during server startup as below statement Liferay Portal Community Edition 6.2 CE GA2 (Newton / Build 6201 / March 20, 2014)
Read more

Viewing the SQL Query in liferay : debugging the SQL Query in Hibernate

-
Sometimes we have to know SQL query hiting in DB to retrieve the list. Suppose When we are writing the DynamicQuery , Some times we have to know SQL query it is generating to hit DB. So generally it is useful when we are debugging the Query it is generated. In hibernate we used the write the property in XML file as hibernate.show.sql to view the query. In Liferay also we can also set the below property to true in the portal-ext.properties to view the SQL query at the console. hibernate.show_sql=true. By adding the above property it will just reterive the parameters. What if we want to display the parameters. Add the below properties in log4j.properties it will display the paramters also. # logs the SQL statements #log4j.logger.org.hibernate.SQL=debug # Logs the JDBC parameters passed to a query #log4j.logger.org.hibernate.type=trace In Liferay log4j is located in the below location tomcat-7.0.42\webapps\ROOT\WEB-INF\classes Also we want t...
Read more

Executing the BackGround Task

-
In Liferay we can exceute the background task asynchrously. The Background Task framework allows the developers to create and manage any kind of tasks that need to be run in a separated thread without the need of knowing anything about JAVA threading or concurrency Here the code ThemeDisplay themeDisplay = (ThemeDisplay) request.getAttribute(WebKeys.THEME_DISPLAY); Map taskContextMap = null; String taskName = null; String servletContextNames [] = new String[1] ; Portlet portlet = PortletLocalServiceUtil.getPortletById(request.getAttribute(WebKeys.PORTLET_ID).toString()); servletContextNames[0] = portlet.getContextName(); try { BackgroundTaskLocalServiceUtil.addBackgroundTask(themeDisplay.getUserId(), themeDisplay.getScopeGroupId(), taskName, servletContextNames,TestBackgroundTaskExecutor.class, taskContextMap,new ServiceContext()); } catch (PortalException e) { e.printStackTrace(); } catch (SystemException e) { e.printStackTrace(); } ...
Read more