Gilliard Cordeiro gscordeiro

## persistence.xml
<persistence xmlns="http://java.sun.com/xml/ns/persistence"
             xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
             xsi:schemaLocation="http://java.sun.com/xml/ns/persistence http://java.sun.com/xml/ns/persistence/persistence_2_0.xsd"
             version="2.0">

    <persistence-unit name="default">

        <properties>
            <property name="javax.persistence.jdbc.driver" value="org.h2.Driver" />
            <property name="javax.persistence.jdbc.url" value="jdbc:h2:~/faces-motors" />

## gist:4170587
@WebServlet(urlPatterns="/carrega-imagem")
public class ImagemServlet extends HttpServlet{

	private static final long serialVersionUID = -4433688269834762430L;

	@Override
	protected void doGet(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
		String id = req.getParameter("auto_id");
		Automovel automovel = JpaUtil.getEntityManager().find(Automovel.class, Long.valueOf(id));


## gist:1290208
HttpsURLConnection.setDefaultHostnameVerifier(new HostnameVerifier(){

			@Override
			public boolean verify(String arg0, SSLSession arg1) {
				return true;
			}

		});

## gist:1290164
String clientTruststorePath = Main.class.getResource("/META-INF/client.truststore").getPath();
		System.setProperty("javax.net.ssl.trustStore", clientTruststorePath);
		System.setProperty("javax.net.ssl.trustStorePassword", "a1234b");

## gist:1290086
#geração da chave e armazenamento no keystore
keytool -genkey -alias certificado_servidor -keyalg RSA -validity 1000 -keystore server.keystore

#extração da chave que estava no keystore para um arquivo separado
keytool -export -alias certificado_servidor -keystore server.keystore -file server.cer

#criação de um truststore do cliente contendo a chave do servidor
keytool -import -alias certificado_servidor -keystore client.truststore -file server.cer

## gist:1290002
Credentials credentials = new UsernamePasswordCredentials("xico", "xico123");
		   HttpClient httpClient = new HttpClient();
		   httpClient.getState().setCredentials(AuthScope.ANY, credentials);
		   httpClient.getParams().setAuthenticationPreemptive(true);

		   ClientExecutor clientExecutor = new ApacheHttpClientExecutor(httpClient);

## gist:1289940
<!-- no web.xml -->

<security-constraint>
        <display-name>require valid user</display-name>
        <web-resource-collection>
            <web-resource-name>internal application</web-resource-name>
             <!-- secure only admin pages-->
            <url-pattern>/*</url-pattern>
        </web-resource-collection>
        <auth-constraint>

## gist:1229521
class InscricaoController {
//...
	def inscricaoSimples = {

		def inscricaoInstance = new Inscricao(params)

		/*if(inscricaoInstance.validate() & inscricaoInstance.participante.validate(['nome', 'email'])){
			inscricao.save(validate: false)
		}*/
		if(inscricaoInstance.inscricaoSimples()){
	<persistence xmlns="http://java.sun.com/xml/ns/persistence"
	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
	xsi:schemaLocation="http://java.sun.com/xml/ns/persistence http://java.sun.com/xml/ns/persistence/persistence_2_0.xsd"
	version="2.0">

	<persistence-unit name="default">

	<properties>
	<property name="javax.persistence.jdbc.driver" value="org.h2.Driver" />
	<property name="javax.persistence.jdbc.url" value="jdbc:h2:~/faces-motors" />
	@WebServlet(urlPatterns="/carrega-imagem")
	public class ImagemServlet extends HttpServlet{

	private static final long serialVersionUID = -4433688269834762430L;

	@Override
	protected void doGet(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
	String id = req.getParameter("auto_id");
	Automovel automovel = JpaUtil.getEntityManager().find(Automovel.class, Long.valueOf(id));
	HttpsURLConnection.setDefaultHostnameVerifier(new HostnameVerifier(){

	@Override
	public boolean verify(String arg0, SSLSession arg1) {
	return true;
	}

	});
	String clientTruststorePath = Main.class.getResource("/META-INF/client.truststore").getPath();
	System.setProperty("javax.net.ssl.trustStore", clientTruststorePath);
	System.setProperty("javax.net.ssl.trustStorePassword", "a1234b");
	#geração da chave e armazenamento no keystore
	keytool -genkey -alias certificado_servidor -keyalg RSA -validity 1000 -keystore server.keystore

	#extração da chave que estava no keystore para um arquivo separado
	keytool -export -alias certificado_servidor -keystore server.keystore -file server.cer

	#criação de um truststore do cliente contendo a chave do servidor
	keytool -import -alias certificado_servidor -keystore client.truststore -file server.cer
	Credentials credentials = new UsernamePasswordCredentials("xico", "xico123");
	HttpClient httpClient = new HttpClient();
	httpClient.getState().setCredentials(AuthScope.ANY, credentials);
	httpClient.getParams().setAuthenticationPreemptive(true);

	ClientExecutor clientExecutor = new ApacheHttpClientExecutor(httpClient);
	<!-- no web.xml -->

	<security-constraint>
	<display-name>require valid user</display-name>
	<web-resource-collection>
	<web-resource-name>internal application</web-resource-name>
	<!-- secure only admin pages-->
	<url-pattern>/*</url-pattern>
	</web-resource-collection>
	<auth-constraint>
	class InscricaoController {
	//...
	def inscricaoSimples = {

	def inscricaoInstance = new Inscricao(params)

	/*if(inscricaoInstance.validate() & inscricaoInstance.participante.validate(['nome', 'email'])){
	inscricao.save(validate: false)
	}*/
	if(inscricaoInstance.inscricaoSimples()){