AuthenticationFilter.java example

Explorer

cloud-sfsf-benefits-ext-master
- com.sap.hana.cloud.samples.benefits
  - src
    - com
      - sap
        hana
        cloud
        samples
        benefits
        api
        util
        DateTimeAdapter.java
        GsonFactory.java
        auth
        AppRole.java
        AuthenticationFilter.java
        bean
        BeanDescriber.java
        connectivity
        ECAPIConnector.java
        helper
        CoreODataParser.java
        SFUser.java
        SFUserList.java
        http
        DefaultHTTPResponseValidator.java
        HTTPConnector.java
        HTTPResponseValidator.java
        InvalidResponseException.java
        SimpleHttpResponse.java
        headers
        AuthenticationHeaderImpl.java
        BasicAuthenticationHeaderProvider.java
        ProxyUserHeaderProvider.java
        csv
        dataimport
        BenefitsDataImporter.java
        logout
        LogoutServlet.java
        odata
        AdministrationService.java
        AppODataException.java
        BenefitAmountService.java
        CampaignService.java
        ODataService.java
        OrderService.java
        UserManager.java
        UserService.java
        beans
        BenefitsAmount.java
        StartCampaignDetails.java
        UIConfig.java
        UserInfo.java
        UserPhoto.java
        cfg
        BenefitsJPAEdmExtension.java
        BenefitsODataServiceFactory.java
        ComplexTypesDescriber.java
        FunctionImportEntitySets.java
        FunctionImportNames.java
        FunctionImportParameters.java
        ODataContextFilter.java
        SimpleODataErrorCallback.java
        persistence
        BasicDAO.java
        BenefitDAO.java
        BenefitTypeDAO.java
        CampaignDAO.java
        OrderDAO.java
        OrderDetailDAO.java
        UserDAO.java
        UserPointsDAO.java
        manager
        DataSourceProvider.java
        EntityManagerFactoryProvider.java
        EntityManagerProvider.java
        model
        BenefitInfo.java
        BenefitType.java
        Campaign.java
        DBQueries.java
        IDBEntity.java
        Order.java
        OrderDetails.java
        User.java
        UserPoints.java
        service
        AppServletContextListener.java
        ApplicationFilter.java
        ApplicationRoles.java
        EntityManagerInterceptor.java
        SessionCreateFilter.java
        SessionListener.java
        UserLock.java

package com.sap.hana.cloud.samples.benefits.auth;

import java.io.IOException;

import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

public class AuthenticationFilter implements Filter {

	private static final String CAMPAIGNS_ENTITIES_PATH = "/Campaigns"; //$NON-NLS-1$

	@Override
	public void destroy() {
	}

	@Override
	public void doFilter(ServletRequest req, ServletResponse response, FilterChain chain) throws IOException, ServletException {
		HttpServletRequest request = (HttpServletRequest) req;
		if (request.getPathInfo().startsWith(CAMPAIGNS_ENTITIES_PATH) && !request.isUserInRole(AppRole.ANALYZER.getRoleName())) {
			((HttpServletResponse) response).setStatus(HttpServletResponse.SC_FORBIDDEN);
			return;
		}
		chain.doFilter(request, response);
	}

	@Override
	public void init(FilterConfig fConfig) throws ServletException {
	}

}