[Minor] better logging in AuthenicationRequestFilter
This commit is contained in:
parent
a832b2dc3e
commit
a46d5364e4
|
@ -17,6 +17,10 @@ import javax.ws.rs.ext.Provider;
|
||||||
|
|
||||||
import li.strolch.rest.RestfulStrolchComponent;
|
import li.strolch.rest.RestfulStrolchComponent;
|
||||||
import li.strolch.rest.StrolchSessionHandler;
|
import li.strolch.rest.StrolchSessionHandler;
|
||||||
|
|
||||||
|
import org.slf4j.Logger;
|
||||||
|
import org.slf4j.LoggerFactory;
|
||||||
|
|
||||||
import ch.eitchnet.privilege.model.Certificate;
|
import ch.eitchnet.privilege.model.Certificate;
|
||||||
import ch.eitchnet.utils.helper.StringHelper;
|
import ch.eitchnet.utils.helper.StringHelper;
|
||||||
|
|
||||||
|
@ -27,6 +31,8 @@ import ch.eitchnet.utils.helper.StringHelper;
|
||||||
@Provider
|
@Provider
|
||||||
public class AuthenicationRequestFilter implements ContainerRequestFilter {
|
public class AuthenicationRequestFilter implements ContainerRequestFilter {
|
||||||
|
|
||||||
|
private static final Logger logger = LoggerFactory.getLogger(AuthenicationRequestFilter.class);
|
||||||
|
|
||||||
@Override
|
@Override
|
||||||
public void filter(ContainerRequestContext requestContext) throws IOException {
|
public void filter(ContainerRequestContext requestContext) throws IOException {
|
||||||
|
|
||||||
|
@ -39,8 +45,10 @@ public class AuthenicationRequestFilter implements ContainerRequestFilter {
|
||||||
|
|
||||||
String sessionId = requestContext.getHeaderString(HttpHeaders.AUTHORIZATION);
|
String sessionId = requestContext.getHeaderString(HttpHeaders.AUTHORIZATION);
|
||||||
if (StringHelper.isEmpty(sessionId)) {
|
if (StringHelper.isEmpty(sessionId)) {
|
||||||
|
logger.error("No SessionID on request to URL " + requestContext.getUriInfo().getPath());
|
||||||
requestContext.abortWith(Response.status(Response.Status.UNAUTHORIZED)
|
requestContext.abortWith(Response.status(Response.Status.UNAUTHORIZED)
|
||||||
.header(HttpHeaders.CONTENT_TYPE, MediaType.TEXT_PLAIN).entity("Missing Authorization!").build()); //$NON-NLS-1$
|
.header(HttpHeaders.CONTENT_TYPE, MediaType.TEXT_PLAIN).entity("Missing Authorization!").build()); //$NON-NLS-1$
|
||||||
|
return;
|
||||||
}
|
}
|
||||||
|
|
||||||
try {
|
try {
|
||||||
|
@ -49,6 +57,7 @@ public class AuthenicationRequestFilter implements ContainerRequestFilter {
|
||||||
Certificate certificate = sessionHandler.validate(sessionId);
|
Certificate certificate = sessionHandler.validate(sessionId);
|
||||||
requestContext.setProperty(STROLCH_CERTIFICATE, certificate);
|
requestContext.setProperty(STROLCH_CERTIFICATE, certificate);
|
||||||
} catch (Exception e) {
|
} catch (Exception e) {
|
||||||
|
logger.error(e.getMessage(), e);
|
||||||
requestContext.abortWith(Response.status(Response.Status.UNAUTHORIZED)
|
requestContext.abortWith(Response.status(Response.Status.UNAUTHORIZED)
|
||||||
.header(HttpHeaders.CONTENT_TYPE, MediaType.TEXT_PLAIN)
|
.header(HttpHeaders.CONTENT_TYPE, MediaType.TEXT_PLAIN)
|
||||||
.entity("User cannot access the resource.").build()); //$NON-NLS-1$
|
.entity("User cannot access the resource.").build()); //$NON-NLS-1$
|
||||||
|
|
Loading…
Reference in New Issue