Strolch
/
strolch
mirror of https://github.com/strolch-li/strolch.git
1
1
Fork 0
Code Issues Packages Projects Releases Wiki Activity

[New] AuthenicationRequestFilter now allows overriding of paths 

This is needed to be able to add project specific unsecured paths which
should be allowed to be accessed without being authenticated
This commit is contained in:
Robert von Burg 2016-08-20 13:38:12 +02:00
parent 3474d9c890
commit 249ba41944
1 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
li.strolch.rest/src/main/java/li/strolch/rest/filters/AuthenicationRequestFilter.java
View File

@ -18,6 +18,7 @@ package li.strolch.rest.filters;
import static li.strolch.rest.StrolchRestfulConstants.STROLCH_CERTIFICATE;
import java.io.IOException;
import java.util.Arrays;
import java.util.List;
import javax.ws.rs.container.ContainerRequestContext;
@ -46,13 +47,17 @@ public class AuthenicationRequestFilter implements ContainerRequestFilter {
private static final Logger logger = LoggerFactory.getLogger(AuthenicationRequestFilter.class);
protected List<String> getUnsecuredPaths() {
return Arrays.asList("strolch/authentication");
}
@Override
public void filter(ContainerRequestContext requestContext) throws IOException {
List<String> matchedURIs = requestContext.getUriInfo().getMatchedURIs();
// we allow unauthorized access to the authentication service
if (matchedURIs.contains("strolch/authentication")) {
if (matchedURIs.stream().anyMatch(s -> getUnsecuredPaths().contains(s))) {
return;
}