McpAuthorizationFilter.java example

Explorer

MaritimeCloudPortalTestbed-master
- src
  - main
    - java
      - net
        maritimecloud
        common
        cqrs
        Command.java
        CommandClassResolver.java
        CommandRegistry.java
        contract
        Command.java
        CqrsContract.java
        Event.java
        SourceGenerator.java
        TargetAggregateIdentifier.java
        domain
        AssertionConcern.java
        DomainIdentifier.java
        ValueObject.java
        eventsourcing
        axon
        NoReplayedEvents.java
        ReplayableFileSystemEventStore.java
        resource
        AbstractCommandResource.java
        JsonCommandHelper.java
        RestCommandUtil.java
        SimpleCORSFilter.java
        spring
        ApplicationContextProvider.java
        identityregistry
        command
        IdentityRegistryContract.java
        IdentityRegistryCqrsApiSourceGenerator.java
        api
        ChangeUserEmailAddress.java
        ChangeUserPassword.java
        RegisterUser.java
        ResetPasswordKeyGenerated.java
        SendResetPasswordInstructions.java
        UnconfirmedUserEmailAddressSupplied.java
        UserAccountActivated.java
        UserEmailAddressVerified.java
        UserPasswordChanged.java
        UserRegistered.java
        VerifyEmailAddress.java
        user
        ConfirmEmailAddressSaga.java
        ResetPasswordSaga.java
        User.java
        UserCommandHandler.java
        UserId.java
        domain
        DomainRegistry.java
        EncryptionService.java
        Identity.java
        IdentityService.java
        PasswordService.java
        Role.java
        UserRoles.java
        query
        UserEntry.java
        UserListener.java
        UserQueryRepository.java
        internal
        InternalUserEntry.java
        InternalUserListener.java
        InternalUserQueryRepository.java
        resource
        UserResource.java
        portal
        Application.java
        JerseyConfig.java
        application
        ApplicationServiceRegistry.java
        audit
        axon
        ShiroAuditDataProvider.java
        UserMetaData.java
        config
        ApplicationConfig.java
        ApplicationContextSetup.java
        ApplicationInMemoryDemoConfig.java
        AxonConfig.java
        JpaConfig.java
        infrastructure
        mail
        Mail.java
        MailAdapter.java
        MailService.java
        MessageComposer.java
        SmtpMailAdapter.java
        VelocityMessageComposer.java
        security
        shiro
        MaritimeCloudIdentityRealm.java
        McpAuthorizationFilter.java
        MultiReadHttpServletRequest.java
        service
        SHA512EncryptionService.java
        shiro
        ShiroAuthenticationUtil.java
        resource
        ActivityResource.java
        AlmanacResource.java
        AuthenticationResource.java
        GenericCommandResource.java
        LogService.java
        OrganizationResource.java
        RandomizerResource.java
        ResourceResolver.java
        UniqueIdResource.java
        security
        AuthenticationException.java
        AuthenticationUtil.java
        SecurityException.java
        UserNotLoggedInException.java
        serviceregistry
        command
        ServiceRegistryContract.java
        ServiceRegistryCqrsApiSourceGenerator.java
        api
        AcceptMembershipToOrganization.java
        AcceptUsersMembershipApplication.java
        AddOrganizationAlias.java
        AddServiceInstanceAlias.java
        AddServiceInstanceEndpoint.java
        ApplyForMembershipToOrganization.java
        AuthorizeMembershipToOrganizationCreator.java
        ChangeOrganizationNameAndSummary.java
        ChangeOrganizationWebsiteUrl.java
        ChangeServiceInstanceNameAndSummary.java
        ChangeServiceSpecificationNameAndSummary.java
        CreateOrganization.java
        InviteUserToOrganization.java
        OrganizationAcceptedMembershipApplication.java
        OrganizationAliasAdded.java
        OrganizationAliasRegistrationDenied.java
        OrganizationAliasRemoved.java
        OrganizationCreated.java
        OrganizationMembershipAssignedToOwner.java
        OrganizationNameAndSummaryChanged.java
        OrganizationPrimaryAliasAdded.java
        OrganizationRevokedUserMembership.java
        OrganizationWebsiteUrlChanged.java
        PrepareServiceSpecification.java
        ProvideServiceInstance.java
        RemoveOrganizationAlias.java
        RemoveServiceInstanceAlias.java
        RemoveServiceInstanceEndpoint.java
        RemoveUserFromOrganization.java
        ServiceInstanceAliasAdded.java
        ServiceInstanceAliasRegistrationDenied.java
        ServiceInstanceAliasRemoved.java
        ServiceInstanceCreated.java
        ServiceInstanceEndpointAdded.java
        ServiceInstanceEndpointRemoved.java
        ServiceInstanceNameAndSummaryChanged.java
        ServiceInstancePrimaryAliasAdded.java
        ServiceSpecificationCreated.java
        ServiceSpecificationNameAndSummaryChanged.java
        UserAcceptedMembershipToOrganization.java
        UserAppliedForMembershipToOrganization.java
        UserInvitedToOrganization.java
        UserLeftOrganization.java
        organization
        AttachOrganizationAliasSaga.java
        Organization.java
        OrganizationCommandHandler.java
        OrganizationId.java
        SetupOrganizationOwnerMemberSaga.java
        membership
        Membership.java
        MembershipId.java
        serviceinstance
        ChangeServiceInstanceCoverage.java
        Coverage.java
        ServiceEndpoint.java
        ServiceInstance.java
        ServiceInstanceCoverageChanged.java
        ServiceInstanceId.java
        servicespecification
        ServiceSpecification.java
        ServiceSpecificationId.java
        ServiceType.java
        domain
        service
        AliasGroups.java
        AliasService.java
        infrastructure
        jackson
        CoverageDeserializer.java
        CoverageSerializer.java
        service
        JpaAliasService.java
        query
        ActivityEntry.java
        ActivityEntryListener.java
        ActivityEntryQueryRepository.java
        AliasRegistryEntry.java
        AliasRegistryListener.java
        AliasRegistryQueryRepository.java
        OperationalServiceEntry.java
        OperationalServiceQueryRepository.java
        OrganizationEntry.java
        OrganizationListener.java
        OrganizationMembershipEntry.java
        OrganizationMembershipListener.java
        OrganizationMembershipQueryRepository.java
        OrganizationQueryRepository.java
        ServiceInstanceEntry.java
        ServiceInstanceListener.java
        ServiceInstanceQueryRepository.java
        ServiceSpecificationEntry.java
        ServiceSpecificationListener.java
        ServiceSpecificationQueryRepository.java
  - test
    - java
      - net
        maritimecloud
        common
        cqrs
        CommandRegistryTest.java
        eventsourcing
        axon
        ReplayableFileSystemEventStoreTest.java
        infrastructure
        axon
        AbstractAxonCqrsIT.java
        AbstractManuallyComnfiguredAxonCqrsIT.java
        CommonFixture.java
        RepositoryMock.java
        shiro
        AbstractShiroResourceTest.java
        identityregistry
        command
        user
        UserTest.java
        resource
        UserBuilder.java
        UserResourceTest.java
        portal
        ApplicationInMemory.java
        ApplicationTests.java
        application
        ApplicationServiceTest.java
        config
        ApplicationTestConfig.java
        IntergrationTestDummyAuditDataProvider.java
        infrastructure
        mail
        MailServiceTest.java
        SmtpMailAdapterITTest.java
        VelocityMessageComposerTest.java
        persistence
        CleanableStore.java
        security
        shiro
        MaritimeCloudIdentityRealmTest.java
        service
        SHA512EncryptionServiceTest.java
        resource
        GenericCommandResourceTest.java
        JsonCommandHelperTest.java
        ResourceTest.java
        serviceregistry
        ManuallyConfiguredAxonIT.java
        command
        organization
        OrganizationCommandHandlerTest.java
        OrganizationIT.java
        OrganizationTest.java
        membership
        MembershipTest.java
        serviceinstance
        ServiceInstanceIT.java
        ServiceInstanceTest.java
        servicespecification
        ServiceSpecificationIT.java
        ServiceSpecificationTest.java
        query
        ServiceInstanceEntryIT.java

/* Copyright 2014 Danish Maritime Authority.
 *
 *  Licensed under the Apache License, Version 2.0 (the "License");
 *  you may not use this file except in compliance with the License.
 *  You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 *
 *  Unless required by applicable law or agreed to in writing, software
 *  distributed under the License is distributed on an "AS IS" BASIS,
 *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 *  See the License for the specific language governing permissions and
 *  limitations under the License.
 */
package net.maritimecloud.portal.infrastructure.security.shiro;

import java.io.IOException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletResponse;
import org.apache.shiro.subject.Subject;
import org.apache.shiro.web.filter.authz.RolesAuthorizationFilter;
import org.apache.shiro.web.util.WebUtils;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

/**
 * @author Jesper Tejlgaard
 * @author Christoffer Børrild
 */
public class McpAuthorizationFilter extends RolesAuthorizationFilter {

    Logger logger = LoggerFactory.getLogger(McpAuthorizationFilter.class);

    @Override
    protected boolean onAccessDenied(ServletRequest request, ServletResponse response, Object mappedValue)
            throws IOException {
        logger.debug("Access denied: {}, {}", WebUtils.toHttp(request).getRequestURI(), mappedValue);

        Subject subject = getSubject(request, response);

        HttpServletResponse httpResp = WebUtils.toHttp(response);
        httpResp.setContentType("application/json");
        if (subject.getPrincipal() == null) {
            httpResp.sendError(HttpServletResponse.SC_UNAUTHORIZED);

//            PrintWriter writer = new PrintWriter(response.getOutputStream());
//            Util.writeJson(writer, new Error(AuthCode.UNAUTHENTICATED, "User not logged in"));
        } else {
            httpResp.sendError(HttpServletResponse.SC_UNAUTHORIZED);
//            Util.writeJson(response.getWriter(), new Error(AuthCode.UNAUTHORIZED,
//                    "User is logged in, but does not have necessary permissions"));
        }
        return false;
    }
}