feature/79 Externalized cookie session configuration

CeON · Aug 19, 2024 · 5591b7e · 5591b7e
1 parent 5a2ad09
commit 5591b7e
Show file tree

Hide file tree

Showing 2 changed files with 44 additions and 0 deletions.
diff --git a/dataverse-webapp/src/main/java/edu/harvard/iq/dataverse/DataverseSessionConfigListener.java b/dataverse-webapp/src/main/java/edu/harvard/iq/dataverse/DataverseSessionConfigListener.java
@@ -0,0 +1,40 @@
+package edu.harvard.iq.dataverse;
+
+import javax.servlet.ServletContextEvent;
+import javax.servlet.ServletContextListener;
+import javax.servlet.annotation.WebListener;
+import javax.servlet.SessionCookieConfig;
+
+@WebListener
+public class DataverseSessionConfigListener implements ServletContextListener {
+
+    @Override
+    public void contextInitialized(ServletContextEvent sce) {
+        SessionCookieConfig sessionCookieConfig = getDefaultValuesFromWebXml(sce);
+        overrideDefaultsWithEnvironmentVariables(sessionCookieConfig);
+    }
+
+    private static void overrideDefaultsWithEnvironmentVariables(SessionCookieConfig sessionCookieConfig) {
+        String cookieName = System.getenv("COOKIE_NAME");
+        if (cookieName != null) {
+            sessionCookieConfig.setName(cookieName);
+        }
+        String cookieDomain = System.getenv("COOKIE_DOMAIN");
+        if (cookieDomain != null) {
+            sessionCookieConfig.setDomain(cookieDomain);
+        }
+        String cookieSecure = System.getenv("COOKIE_SECURE");
+        if (cookieSecure != null) {
+            sessionCookieConfig.setSecure(Boolean.parseBoolean(cookieSecure));
+        }
+    }
+
+    private SessionCookieConfig getDefaultValuesFromWebXml(ServletContextEvent sce) {
+        return sce.getServletContext().getSessionCookieConfig();
+    }
+
+    @Override
+    public void contextDestroyed(ServletContextEvent servletContextEvent) {
+        // nothing to do here
+    }
+}
diff --git a/dataverse-webapp/src/main/webapp/WEB-INF/web.xml b/dataverse-webapp/src/main/webapp/WEB-INF/web.xml
@@ -175,6 +175,10 @@
         <!-- Uncomment the line below to disble `;jsessionid=` in URLs -->
 	    <tracking-mode>COOKIE</tracking-mode>
     </session-config>
+    <!-- Listener to override defaults with environment variables -->
+    <listener>
+        <listener-class>edu.harvard.iq.dataverse.DataverseSessionConfigListener</listener-class>
+    </listener>
     <!-- web fonts -->
     <mime-mapping>
         <extension>eot</extension>