CallbackFilter.java example

Explorer

minnal-master
- minnal-api
  - src
    - main
      - java
        org
        minnal
        api
        ApiBundle.java
        ApiBundleConfiguration.java
        ApiPlugin.java
        filter
        CorsFilter.java
        ExcludeAnnotationsConvertor.java
        MinnalApiSpecFilter.java
    - test
      - java
        org
        minnal
        api
        ApiBundleTest.java
        ApiPluginTest.java
        filter
        CorsFilterTest.java
        ExcludeAnnotationsConvertorTest.java
        MinnalApiSpecFilterTest.java
- minnal-core
  - src
    - main
      - java
        org
        minnal
        Bootstrap.java
        core
        Application.java
        ApplicationContext.java
        ApplicationMapping.java
        Bundle.java
        BundleConfiguration.java
        Container.java
        ContainerAdapter.java
        ContainerLifecycleListener.java
        ContainerMessageObserver.java
        JacksonProvider.java
        Lifecycle.java
        LifecycleListener.java
        MessageListener.java
        MessageListenerAdapter.java
        MinnalException.java
        Plugin.java
        Router.java
        RouterListener.java
        config
        ApplicationConfiguration.java
        Configurable.java
        Configuration.java
        ConfigurationProvider.java
        ConnectorConfiguration.java
        ContainerConfiguration.java
        DatabaseConfiguration.java
        DefaultConfigurationProvider.java
        ResourceConfiguration.java
        RouteConfiguration.java
        SSLConfiguration.java
        ServerConfiguration.java
        db
        C3P0DataSourceProvider.java
        C3P0DataSourceStatistics.java
        DataSourceProvider.java
        DataSourceStatistics.java
        server
        AbstractHttpConnector.java
        ConnectorListener.java
        HttpConnector.java
        HttpsConnector.java
        MessageContext.java
        ResponseWriter.java
        Server.java
        ServerBundleConfiguration.java
    - test
      - java
        org
        minnal
        core
        ApplicationContextTest.java
        ApplicationMappingTest.java
        ApplicationTest.java
        ContainerMessageObserverTest.java
        RouterTest.java
        db
        C3P0DataSourceProviderTest.java
        C3P0DataSourceStatisticsTest.java
        server
        ServerTest.java
- minnal-examples
  - minnal-examples-oms
    - src
      - main
        java
        org
        minnal
        examples
        oms
        OrderApplication.java
        OrderConfiguration.java
        domain
        Order.java
        OrderItem.java
        Payment.java
        Product.java
        resource
        OrderResource.java
      - test
        java
        org
        minnal
        examples
        oms
        domain
        generated
        OrderResourceTest.java
        PaymentResourceTest.java
        ProductResourceTest.java
  - minnal-examples-petclinic
    - src
      - main
        java
        org
        minnal
        examples
        petclinic
        PetclinicApplication.java
        PetclinicConfiguration.java
        domain
        BaseEntity.java
        NamedEntity.java
        Owner.java
        Person.java
        Pet.java
        PetType.java
        Specialty.java
        Vet.java
        Visit.java
      - test
        java
        org
        minnal
        examples
        petclinic
        domain
        generated
        OwnerResourceTest.java
        PetTypeResourceTest.java
        VetResourceTest.java
- minnal-generator
  - src
    - main
      - java
        org
        minnal
        generator
        Args.java
        Command.java
        CommandAdd.java
        CommandGenerateModel.java
        CommandGenerateTests.java
        CommandNew.java
        CommandStart.java
        ExecutableCommand.java
        Field.java
        MinnalGenerator.java
        core
        AbstractGenerator.java
        AbstractTemplateGenerator.java
        ApplicationConfigGenerator.java
        ApplicationGenerator.java
        ApplicationSpiGenerator.java
        ContainerConfigGenerator.java
        Generator.java
        LoggerConfigGenerator.java
        ModelGenerator.java
        PomGenerator.java
        ProjectGenerator.java
        exception
        MinnalGeneratorException.java
        test
        ResourceClassTestGenerator.java
        TestsGenerator.java
        util
        CodeUtils.java
- minnal-instrumentation
  - src
    - main
      - java
        org
        minnal
        instrument
        InstrumentationBundle.java
        InstrumentationBundleConfiguration.java
        MinnalApplicationEnhancer.java
    - test
      - java
        org
        minnal
        instrument
        InstrumentationBundleTest.java
        MinnalApplicationEnhancerTest.java
- minnal-jaxrs
  - minnal-instrumentation-jaxrs
    - src
      - main
        java
        org
        minnal
        instrument
        ApplicationEnhancer.java
        MinnalInstrumentationException.java
        NamingStrategy.java
        UnderscoreNamingStrategy.java
        entity
        Action.java
        AggregateRoot.java
        AggregateRootScanner.java
        Collection.java
        EntityKey.java
        EntityNode.java
        PaginatedResponse.java
        Searchable.java
        Secure.java
        SecureMultiple.java
        metadata
        ActionMetaData.java
        AssociationMetaData.java
        CollectionMetaData.java
        EntityMetaData.java
        EntityMetaDataBuilder.java
        EntityMetaDataProvider.java
        ParameterMetaData.java
        PermissionMetaData.java
        SecurableMetaData.java
        handler
        AbstractEntityAnnotationHandler.java
        ActionAnnotationHandler.java
        ElementCollectionAnnotationHandler.java
        EntityKeyAnnotationHandler.java
        ManyToManyAnnotationHandler.java
        ManyToOneAnnotationHandler.java
        OneToManyAnnotationHandler.java
        OneToOneAnnotationHandler.java
        SearchableAnnotationHandler.java
        SecureAnnotationHandler.java
        SecureMultipleAnnotationHandler.java
        filter
        ResponseTransformationFilter.java
        metadata
        MetaData.java
        MetaDataBuilder.java
        handler
        AbstractAnnotationHandler.java
        resource
        PathScanner.java
        Resource.java
        ResourceEnhancer.java
        ResourceUtil.java
        ResourceWrapper.java
        creator
        AbstractMethodCreator.java
        ActionMethodCreator.java
        CreateMethodCreator.java
        DeleteMethodCreator.java
        ListMethodCreator.java
        ReadMethodCreator.java
        ResourceClassCreator.java
        UpdateMethodCreator.java
        metadata
        ResourceMetaData.java
        ResourceMetaDataBuilder.java
        ResourceMetaDataProvider.java
        ResourceMethodMetaData.java
        handler
        AbstractResourceAnnotationHandler.java
        DELETEAnnotationHandler.java
        GETAnnotationHandler.java
        HEADAnnotationHandler.java
        HttpMethodAnnotationHandler.java
        OPTIONSAnnotationHandler.java
        POSTAnnotationHandler.java
        PUTAnnotationHandler.java
        PathAnnotationHandler.java
        util
        DynaBean.java
        JavassistUtils.java
        MinnalModule.java
        ParameterNameDiscoverer.java
      - test
        java
        org
        minnal
        instrument
        ApplicationEnhancerTest.java
        entity
        AggregateRootScannerTest.java
        DummyModel.java
        EntityNodePathTest.java
        EntityNodeTest.java
        NonAggregateRootModel.java
        metadata
        ActionMetaDataTest.java
        CollectionMetaDataTest.java
        EntityMetaDataBuilderTest.java
        EntityMetaDataProviderTest.java
        EntityMetaDataTest.java
        handler
        AbstractEntityAnnotationHandlerTest.java
        ActionAnnotationHandlerTest.java
        ElementCollectionAnnotationHandlerTest.java
        EntityKeyAnnotationHandlerTest.java
        ManyToManyAnnotationHandlerTest.java
        ManyToOneAnnotationHandlerTest.java
        OneToManyAnnotationHandlerTest.java
        OneToOneAnnotationHandlerTest.java
        SearchableAnnotationHandlerTest.java
        SecureAnnotationHandlerTest.java
        SecureMultipleAnnotationHandlerTest.java
        resource
        ResourceEnhancerTest.java
        ResourceUtilTest.java
        ResourceWrapperTest.java
        creator
        ReadMethodCreatorTest.java
        metadata
        ResourceMetaDataBuilderTest.java
        ResourceMetaDataProviderTest.java
        ResourceMetaDataTest.java
        handler
        AbstractResourceAnnotationHandlerTest.java
        HttpMethodAnnotationHandlerTest.java
        PathAnnotationHandlerTest.java
        util
        ClassUtilsTest.java
  - minnal-jaxrs-test
    - src
      - main
        java
        org
        minnal
        jaxrs
        test
        BaseJPAResourceTest.java
        BaseResourceTest.java
        BiDirectionalCollectionResolver.java
        BiDirectionalObjectResolver.java
        ByteBufferOutputStream.java
        exception
        MinnalJaxrsTestException.java
        provider
        JacksonProvider.java
- minnal-jpa
  - src
    - main
      - java
        org
        minnal
        jpa
        JPAPlugin.java
        JerseyApplicationEventListener.java
        MinnalPersistenceUnitInfo.java
        OpenSessionInViewFilter.java
        entity
        BaseDomain.java
        ConverterScanner.java
        EntityScanner.java
    - test
      - java
        org
        minnal
        jpa
        JPAPluginTest.java
        JerseyApplicationEventListenerTest.java
        OpenSessionInViewFilterTest.java
        entity
        EntityScannerTest.java
- minnal-metrics
  - src
    - main
      - java
        org
        minnal
        metrics
        DataSourcePoolMetricCollector.java
        GraphiteReporterConfiguration.java
        MetricRegistries.java
        MetricsBundle.java
        MetricsBundleConfiguration.java
        ResponseMetricCollector.java
    - test
      - java
        org
        minnal
        metrics
        DataSourcePoolMetricCollectorTest.java
        MetricRegistriesTest.java
        MetricsBundleTest.java
        ResponseMetricCollectorTest.java
- minnal-migrations
  - src
    - main
      - java
        org
        minnal
        migrations
        plugin
        CleanableMigrationsPlugin.java
        MigrationsPlugin.java
    - test
      - java
        org
        minnal
        migrations
        plugin
        MigrationsPluginTest.java
- minnal-security
  - src
    - main
      - java
        org
        minnal
        security
        MinnalSecurityContext.java
        SecurityPlugin.java
        auth
        Authorizer.java
        JaxrsWebContext.java
        RolePermissionMapper.java
        SimpleAuthorizer.java
        SimpleRolePermissionMapper.java
        SimpleUserRoleMapper.java
        User.java
        UserRoleMapper.java
        config
        SecurityAware.java
        SecurityConfiguration.java
        filter
        AbstractSecurityFilter.java
        AuthenticationFilter.java
        AuthenticationListener.java
        CallbackFilter.java
        SecurityContextFilter.java
        session
        CookieSession.java
        JpaSession.java
        JpaSessionStore.java
        Session.java
        SessionStore.java
    - test
      - java
        org
        minnal
        security
        MinnalSecurityContextTest.java
        SecurityPluginTest.java
        auth
        JaxrsWebContextTest.java
        SimpleAuthorizerTest.java
        SimpleRolePermissionMapperTest.java
        SimpleUserRoleMapperTest.java
        filter
        AuthenticationFilterTest.java
        CallbackFilterTest.java
        SecurityContextFilterTest.java
        session
        JpaSessionStoreTest.java
        JpaSessionTest.java
- minnal-test
  - src
    - main
      - java
        org
        minnal
        test
        BaseMinnalResourceTest.java
- minnal-utils
  - src
    - main
      - java
        org
        minnal
        utils
        Comparators.java
        Node.java
        Slf4jLogChute.java
        http
        HttpUtil.java
        reflection
        ClassUtils.java
        Generics.java
        PropertyUtil.java
        route
        QueryParam.java
        RoutePattern.java
        scanner
        AbstractScanner.java
        Scanner.java
        serializer
        AbstractJacksonSerializer.java
        DefaultFormSerializer.java
        DefaultJsonSerializer.java
        DefaultTextSerializer.java
        DefaultXmlSerializer.java
        DefaultYamlSerializer.java
        SerializationException.java
        Serializer.java
    - test
      - java
        org
        minnal
        core
        serializer
        DefaultJsonSerializerTest.java
        utils
        http
        HttpUtilTest.java
        route
        RoutePatternTest.java
- minnal-validation
  - src
    - main
      - java
        org
        minnal
        validation
        FieldError.java
        ValidationPlugin.java
        exception
        ConstraintViolationExceptionHandler.java
    - test
      - java
        org
        minnal
        validation
        ValidationPluginTest.java
        exception
        ConstraintViolationExceptionHandlerTest.java

/**
 * 
 */
package org.minnal.security.filter;

import java.io.IOException;
import java.net.URI;

import javax.annotation.Priority;
import javax.ws.rs.Priorities;
import javax.ws.rs.container.ContainerRequestContext;
import javax.ws.rs.container.ContainerResponseContext;
import javax.ws.rs.container.PreMatching;
import javax.ws.rs.core.Response;

import org.minnal.security.auth.JaxrsWebContext;
import org.minnal.security.config.SecurityConfiguration;
import org.minnal.security.session.Session;
import org.minnal.utils.http.HttpUtil;
import org.pac4j.core.client.Client;
import org.pac4j.core.client.Clients;
import org.pac4j.core.credentials.Credentials;
import org.pac4j.core.exception.RequiresHttpAction;
import org.pac4j.core.profile.UserProfile;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

/**
 * @author ganeshs
 *
 */
@PreMatching
@Priority(Priorities.USER)
public class CallbackFilter extends AuthenticationFilter {
    
    private static final Logger logger = LoggerFactory.getLogger(CallbackFilter.class);
	
	/**
	 * @param clients
	 */
	public CallbackFilter(Clients clients, SecurityConfiguration configuration) {
		super(clients, configuration);
	}
	
	@Override
	public void filter(ContainerRequestContext request) {
		URI uri = URI.create(getClients().getCallbackUrl());
		if (! HttpUtil.structureUrl(request.getUriInfo().getPath()).equalsIgnoreCase(uri.getPath())) {
		    logger.debug("Request path {} doesn't match callback url. Skipping", request.getUriInfo().getPath());
			return;
		}
		
		Session session = getSession(request, true);
		JaxrsWebContext context = getContext(request, session);
		Client client = getClient(session);
		if (client == null) {
		    client = getClient(context);
		}
		if (client == null) {
			context.setResponseStatus(422);
			if (listener != null) {
			    listener.authFailed(session);
			}
		} else {
			try {
				Credentials credentials = client.getCredentials(context);
				UserProfile userProfile = client.getUserProfile(credentials, context);
				session.addAttribute(Clients.DEFAULT_CLIENT_NAME_PARAMETER, client.getName());
				session.addAttribute(PRINCIPAL, userProfile);
				if (listener != null) {
	                listener.authSuccess(session, userProfile);
				}
				getConfiguration().getSessionStore().save(session);
				context.setResponseStatus(Response.Status.OK.getStatusCode());
			} catch (RequiresHttpAction e) {
				context.setResponseStatus(e.getCode());
				if (listener != null) {
	                listener.authFailed(session);
	            }
			}
		}
		request.abortWith(context.getResponse());
	}
	
	@Override
	public void filter(ContainerRequestContext request, ContainerResponseContext response) throws IOException {
	}

}