ShiroRequiresAuthenticationFeature.java example

Explorer

obiba-commons-master
- obiba-core
  - src
    - main
      - java
        org
        obiba
        core
        domain
        AbstractEntity.java
        IEntity.java
        service
        EntityQueryService.java
        PagingClause.java
        PersistenceManager.java
        PersistenceManagerAware.java
        SortingClause.java
        impl
        DefaultPersistenceManagerImpl.java
        PersistenceManagerAwareService.java
        hibernate
        AssociationCriteria.java
        AssociationExample.java
        PersistenceManagerHibernateImpl.java
        ddl
        DDLGenerator.java
        spring
        xstream
        InjectingReflectionProviderWrapper.java
        XStreamFactoryBean.java
        test
        DateMatcher.java
        spring
        BaseDefaultSpringContextTestCase.java
        Dataset.java
        DatasetOperationType.java
        Datasets.java
        DbUnitAwareTestExecutionListener.java
        translator
        EmptyTranslator.java
        JsonTranslator.java
        PrefixedValueTranslator.java
        TranslationUtils.java
        Translator.java
        util
        ComparableComparator.java
        FileUtil.java
        HexUtil.java
        StreamUtil.java
        StringUtil.java
        ZipBuilder.java
        validation
        exception
        ValidationRuntimeException.java
        interceptor
        MethodArgValidationInterceptor.java
        ObjectValidationInspector.java
        validator
        AbstractClassValidator.java
        AbstractPersistenceAwareClassValidator.java
        runtime
        Version.java
        jdbc
        DatabaseProduct.java
        DatabaseProductRegistry.java
        upgrade
        AbstractDatabaseUpgradeStep.java
        AbstractUpgradeStep.java
        InstallStep.java
        InstallStepAdapter.java
        UpgradeException.java
        UpgradeManager.java
        UpgradeStep.java
        VersionBeanVersionProvider.java
        VersionModifier.java
        VersionProvider.java
        support
        AbstractUpgradeManagerListener.java
        DatabaseMetadataUtil.java
        DefaultUpgradeManager.java
        EmptyDataSourceDetectionStrategy.java
        JdbcVersionModifier.java
        LiquiBaseUpgradeStep.java
        LoggingUpgradeManagerListener.java
        MethodInvokingUpgradeStep.java
        NewInstallationDetectionStrategy.java
        NoVersionTableDetectionStrategy.java
        NullVersionNewInstallationDetectionStrategy.java
        UpgradeManagerListener.java
        VersionPropertyEditor.java
        VersionPropertyEditorRegistrar.java
        VersionTableDetectionStrategy.java
        VersionTableInstallStep.java
        jdbc
        SqlScriptUpgradeStep.java
        spring
        AnnotatedBeanFinderFactoryBean.java
    - test
      - java
        org
        obiba
        core
        runtime
        VersionTest.java
        service
        impl
        hibernate
        AssociationCriteriaTest.java
        HibernateEntityTest.java
        testModel
        A.java
        AnEntity.java
        B.java
        C.java
        translator
        EmptyTranslatorTest.java
        JsonTranslatorTest.java
        PrefixedValueTranslatorTest.java
        util
        FileUtilTest.java
        ZipBuilderTest.java
        runtime
        upgrade
        support
        DefaultUpgradeManagerTest.java
- obiba-git
  - src
    - main
      - java
        org
        obiba
        git
        CommitInfo.java
        GitException.java
        GitUtils.java
        NoSuchGitRepositoryException.java
        TagInfo.java
        command
        AbstractGitCommand.java
        AbstractGitWriteCommand.java
        AddDeleteFilesCommand.java
        AddFilesCommand.java
        CommitLogCommand.java
        DeleteFilesCommand.java
        DiffAsStringCommand.java
        DiffCommand.java
        FetchBlobCommand.java
        GitCommand.java
        GitCommandHandler.java
        GitWriteCommand.java
        ListFilesCommand.java
        LogsCommand.java
        ReadFileCommand.java
        ReadFilesCommand.java
        TagCommand.java
        TagListCommand.java
    - test
      - java
        org
        obiba
        git
        command
        GitCommandsTest.java
- obiba-jersey-protobuf
  - src
    - main
      - java
        org
        obiba
        jersey
        exceptionmapper
        AbstractErrorDtoExceptionMapper.java
        NoSuchElementExceptionMapper.java
        UnhandledExceptionMapper.java
        UninitializedMessageExceptionMapper.java
        WebApplicationExceptionMapper.java
        protobuf
        AbstractProtobufProvider.java
        JsonIoUtil.java
        ProtobufJsonProvider.java
        ProtobufNativeProvider.java
        Types.java
- obiba-jersey-shiro
  - src
    - main
      - java
        org
        obiba
        jersey
        shiro
        authz
        annotation
        CglibProxyUtils.java
        ShiroRequiresAuthenticationFeature.java
        ShiroRequiresGuestFeature.java
        ShiroRequiresPermissionsFeature.java
        ShiroRequiresRolesFeature.java
- obiba-mongodb
  - src
    - main
      - java
        org
        obiba
        mongodb
        domain
        AbstractAuditableDocument.java
        Timestamped.java
- obiba-password-hasher
  - src
    - main
      - java
        org
        obiba
        shiro
        tools
        hasher
        Hasher.java
- obiba-security
  - src
    - main
      - java
        org
        obiba
        crypt
        CacheablePasswordCallback.java
        CachingCallbackHandler.java
        FixedPasswordCallbackHandler.java
        IKeyProvider.java
        KeyPairNotFoundException.java
        KeyProviderException.java
        KeyProviderInitializationException.java
        KeyProviderSecurityException.java
        ObibaCryptRuntimeException.java
        x509
        X509PrettyPrinter.java
        security
        KeyStoreManager.java
        KeyStoreRepository.java
        ssl
        SslContextFactory.java
        X509ExtendedKeyManagerImpl.java
- obiba-shiro
  - src
    - main
      - java
        org
        obiba
        shiro
        SessionStorageEvaluator.java
        authc
        HttpAuthorizationToken.java
        HttpCookieAuthenticationToken.java
        HttpHeaderAuthenticationToken.java
        SudoAuthToken.java
        TicketAuthenticationToken.java
        X509CertificateAuthenticationToken.java
        realm
        AbstractHttpAuthenticatingRealm.java
        CookieAuthenticatingRealm.java
        HttpHeaderAuthenticatingRealm.java
        LdapRealm.java
        ObibaRealm.java
        SudoRealm.java
- obiba-shiro-crowd
  - src
    - main
      - java
        org
        apache
        shiro
        realm
        crowd
        CrowdRealm.java
        PlaceholderClientResourceLocator.java
        RoleSource.java
    - test
      - java
        org
        apache
        shiro
        realm
        crowd
        CrowdRealmTest.java
- obiba-shiro-web
  - src
    - main
      - java
        org
        obiba
        shiro
        web
        filter
        AbstractAuthenticationExecutor.java
        AuthenticationExecutor.java
        AuthenticationFilter.java
- obiba-wicket
  - src
    - main
      - java
        org
        obiba
        wicket
        JavascriptEventConfirmation.java
        application
        ISpringWebApplication.java
        WebApplicationStartupListener.java
        authentication
        panel
        SignInPanel.java
        extensions
        ajax
        markup
        html
        AjaxDropDownMultipleChoice.java
        AjaxEditableChoiceLabel.java
        AjaxEditableConfirmableLabel.java
        AjaxEditableLabel.java
        AjaxEditableMultipleChoiceLabel.java
        AjaxSelectableChoiceLabel.java
        hibernate
        HibernateStatisticsPanel.java
        markup
        html
        ResourceGetter.java
        border
        SeparatorMarkupComponentBorder.java
        form
        LocaleDropDownChoice.java
        link
        AjaxLinkList.java
        ConfirmLink.java
        LinkList.java
        panel
        CheckBoxPanel.java
        ConfirmImageLinkPanel.java
        ConfirmLinkPanel.java
        EntityDetailPageLinkPanel.java
        ImageLabelLinkPanel.java
        ImagePanel.java
        KeyValueDataPanel.java
        LinkPanel.java
        table
        AbstractSortableDataProvider.java
        AjaxDataTable.java
        ColumnSelectorPanel.java
        DateColumn.java
        DetachableEntityModel.java
        EntityListTablePanel.java
        FilteredSortableDataProviderEntityServiceImpl.java
        FixedColumnProvider.java
        IColumnProvider.java
        LinkPropertyColumn.java
        PageLinkPropertyColumn.java
        RowSelectionColumn.java
        SortableDataProviderEntityServiceImpl.java
        StringResourcePropertyColumn.java
        TableTitleToolbar.java
        model
        MessageSourceResolvableStringModel.java
        test
        MockSpringApplication.java
        util
        resource
        CsvResourceStream.java
        seed
        DatabaseSeed.java
        DatabaseSeedWebApplicationStartupListener.java
        XstreamResourceDatabaseSeed.java

/*
 * Copyright (c) 2016 OBiBa. All rights reserved.
 *
 * This program and the accompanying materials
 * are made available under the terms of the GNU Public License v3.0.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program.  If not, see <http://www.gnu.org/licenses/>.
 */

package org.obiba.jersey.shiro.authz.annotation;

import java.io.IOException;
import java.lang.reflect.Method;

import javax.annotation.Priority;
import javax.ws.rs.ForbiddenException;
import javax.ws.rs.Priorities;
import javax.ws.rs.container.ContainerRequestContext;
import javax.ws.rs.container.ContainerRequestFilter;
import javax.ws.rs.container.DynamicFeature;
import javax.ws.rs.container.ResourceInfo;
import javax.ws.rs.core.FeatureContext;
import javax.ws.rs.ext.Provider;

import org.apache.shiro.SecurityUtils;
import org.apache.shiro.authz.annotation.RequiresAuthentication;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

import static org.obiba.jersey.shiro.authz.annotation.CglibProxyUtils.isSuperMethodAnnotated;

@Provider
public class ShiroRequiresAuthenticationFeature implements DynamicFeature {

  private static final Logger log = LoggerFactory.getLogger(ShiroRequiresAuthenticationFeature.class);

  @Override
  public void configure(ResourceInfo resourceInfo, FeatureContext context) {
    Class<?> resourceClass = resourceInfo.getResourceClass();
    Method resourceMethod = resourceInfo.getResourceMethod();
    if(resourceClass.isAnnotationPresent(RequiresAuthentication.class) ||
        resourceClass.getSuperclass().isAnnotationPresent(RequiresAuthentication.class) ||
        resourceMethod.isAnnotationPresent(RequiresAuthentication.class) ||
        isSuperMethodAnnotated(resourceClass.getSuperclass(), resourceMethod, RequiresAuthentication.class)) {
      log.debug("Register RequiresAuthenticationRequestFilter for {}", resourceInfo);
      context.register(new RequiresAuthenticationRequestFilter());
    }
  }

  @Priority(Priorities.AUTHORIZATION) // authorization filter - should go after any authentication filters
  private static class RequiresAuthenticationRequestFilter implements ContainerRequestFilter {
    @Override
    public void filter(ContainerRequestContext requestContext) throws IOException {
      if(!SecurityUtils.getSubject().isAuthenticated()) {
        throw new ForbiddenException();
      }
    }
  }

}