001/**
002 *
003 * Copyright (c) 2014, the Railo Company Ltd. All rights reserved.
004 *
005 * This library is free software; you can redistribute it and/or
006 * modify it under the terms of the GNU Lesser General Public
007 * License as published by the Free Software Foundation; either 
008 * version 2.1 of the License, or (at your option) any later version.
009 * 
010 * This library is distributed in the hope that it will be useful,
011 * but WITHOUT ANY WARRANTY; without even the implied warranty of
012 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
013 * Lesser General Public License for more details.
014 * 
015 * You should have received a copy of the GNU Lesser General Public 
016 * License along with this library.  If not, see <http://www.gnu.org/licenses/>.
017 * 
018 **/
019package lucee.runtime.functions.csrf;
020
021import lucee.runtime.PageContext;
022import lucee.runtime.exp.ExpressionException;
023import lucee.runtime.exp.PageException;
024import lucee.runtime.ext.function.Function;
025import lucee.runtime.type.scope.Session;
026import lucee.runtime.type.scope.storage.StorageScope;
027
028public class CSRFGenerateToken implements Function {
029        
030        private static final long serialVersionUID = -2411153524245619987L;
031
032        public static String call(PageContext pc) throws PageException {
033                return call(pc, null, false);
034        }
035        public static String call(PageContext pc, String key) throws PageException {
036                return call(pc, key, false);
037        }
038        
039        public static String call(PageContext pc, String key, boolean forceNew) throws PageException {
040                if(key==null) key="";
041                
042                return getStorageScope(pc).generateToken(key, forceNew);
043        }
044        public static StorageScope getStorageScope(PageContext pc) throws PageException {
045                Session session = pc.sessionScope();
046                if(!(session instanceof StorageScope))
047                        throw new ExpressionException("this function only works with CF Sessions");
048                return (StorageScope) session;
049        }
050}