AllowAllFilter.java example

Explorer

airpal-master
- src
  - main
    - java
      - com
        airbnb
        airlift
        http
        client
        ForQueryInfoClient.java
        airpal
        AirpalApplication.java
        AirpalApplicationBase.java
        AirpalConfiguration.java
        api
        EvictingDeque.java
        ExecutionRequest.java
        Job.java
        JobState.java
        event
        JobEvent.java
        JobFinishedEvent.java
        JobOutputPersistenceEvent.java
        JobUpdateEvent.java
        output
        CSVPersistentOutput.java
        HiveTablePersistentOutput.java
        InvalidQueryException.java
        PersistentJobOutput.java
        PersistentJobOutputFactory.java
        builders
        CsvOutputBuilder.java
        FileTooLargeException.java
        HiveTableOutputBuilder.java
        JobOutputBuilder.java
        OutputBuilderFactory.java
        persistors
        CSVPersistorFactory.java
        FlatFilePersistor.java
        HiveTablePersistor.java
        Persistor.java
        PersistorFactory.java
        S3FilePersistor.java
        queries
        CreateSavedQueryBuilder.java
        FeaturedQuery.java
        SavedQuery.java
        UserSavedQuery.java
        core
        AirpalUser.java
        AirpalUserFactory.java
        AirpalUserImpl.java
        AuthorizationUtil.java
        BackgroundCacheLoader.java
        TableUpdatedCache.java
        ToAirpalUser.java
        execution
        Execution.java
        ExecutionClient.java
        InputReferenceExtractor.java
        QueryClient.java
        QueryExecutionAuthorizer.java
        health
        PrestoHealthCheck.java
        store
        files
        ExpiringFileStore.java
        history
        JobHistoryStore.java
        JobHistoryStoreDAO.java
        LocalJobHistoryStore.java
        jobs
        ActiveJobsStore.java
        InMemoryActiveJobsStore.java
        queries
        QueryStore.java
        QueryStoreDAO.java
        usage
        CachingUsageStore.java
        LocalUsageStore.java
        SQLUsageStore.java
        UsageStore.java
        modules
        AirpalModule.java
        DropwizardModule.java
        presto
        ClientSessionFactory.java
        ForQueryRunner.java
        PartitionedTable.java
        QueryInfoClient.java
        QueryRunner.java
        Table.java
        Util.java
        hive
        HiveColumn.java
        HivePartition.java
        metadata
        ColumnCache.java
        PartitionedTableWithValue.java
        PreviewTableCache.java
        SchemaCache.java
        resources
        ExecuteResource.java
        FilesResource.java
        HealthResource.java
        PingResource.java
        QueriesResource.java
        QueryResource.java
        RedirectRootResource.java
        ResultsPreviewResource.java
        S3FilesResource.java
        SessionResource.java
        TablesResource.java
        UserResource.java
        UsersResource.java
        sse
        SSEEventSource.java
        SSEEventSourceServlet.java
        service
        LoginView.java
        sql
        DbType.java
        Util.java
        beans
        JobTableOutputJoinRow.java
        JobTableRow.java
        JobUsageCountRow.java
        TableRow.java
        dao
        JobDAO.java
        JobOutputDAO.java
        JobTableDAO.java
        TableDAO.java
        jdbi
        QueryStoreMapper.java
        URIArgument.java
        URIArgumentFactory.java
        UUIDArgument.java
        UUIDArgumentFactory.java
        shiro
        AllowAllRealm.java
        AllowAllToken.java
        AllowAllUser.java
        ExampleLDAPRealm.java
        SessionListenerLogger.java
        UserGroup.java
        filter
        AllowAllFilter.java
  - test
    - java
      - com
        airbnb
        airpal
        core
        execution
        QueryExecutionAuthorizerTest.java

package com.airbnb.shiro.filter;

import com.airbnb.shiro.AllowAllToken;
import com.airbnb.shiro.UserGroup;
import com.google.common.collect.ImmutableSet;
import lombok.Setter;
import lombok.extern.slf4j.Slf4j;
import org.apache.shiro.SecurityUtils;
import org.apache.shiro.authc.AuthenticationToken;
import org.apache.shiro.session.Session;
import org.apache.shiro.web.filter.authc.AuthenticatingFilter;
import org.apache.shiro.web.util.WebUtils;
import org.joda.time.Duration;

import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.Cookie;
import javax.servlet.http.HttpServletResponse;

import java.io.IOException;
import java.net.URI;
import java.util.Collections;
import java.util.List;

@Slf4j
public class AllowAllFilter
        extends AuthenticatingFilter
{
    public static final String JSESSIONID = "JSESSIONID";

    @Setter
    private List<UserGroup> groups = Collections.emptyList();

    public AllowAllFilter() {}

    @Override
    protected AuthenticationToken createToken(ServletRequest request, ServletResponse response) throws Exception
    {
        log.info("createToken called");
        return new AllowAllToken(request.getRemoteHost(), true, "anonymous", ImmutableSet.of("all"), "default", Duration.standardHours(1), "default");
    }

    @Override
    protected boolean executeLogin(ServletRequest request, ServletResponse response)
            throws Exception
    {
        return super.executeLogin(request, response);
    }

    @Override
    protected boolean onAccessDenied(ServletRequest request, ServletResponse response) throws Exception
    {
        log.info("onAccessDenied called");

        return executeLogin(request, response);
    }

    private boolean userIsLoggedIn()
    {
        Session session = SecurityUtils.getSubject().getSession(false);
        return (session != null);
    }

    private void redirectToInternalLogin(ServletRequest request, ServletResponse response) throws IOException
    {
        Cookie sessionCookie = new Cookie(JSESSIONID, "");

        sessionCookie.setMaxAge(0);

        HttpServletResponse httpResponse = WebUtils.toHttp(response);
        httpResponse.addCookie(sessionCookie);

        WebUtils.issueRedirect(request,
                               response,
                               getLoginUrl(),
                               Collections.emptyMap(),
                               !(URI.create(getLoginUrl()).isAbsolute()));
    }
}