/modules/uoa-admin-tools/src/main/java/eu/dnetlib/uoaadmintools/handlers/AuthorizationHandler.java - D-Net - D-Net project tracking tool

dnet45/modules/uoa-admin-tools/src/main/java/eu/dnetlib/uoaadmintools/handlers/AuthorizationHandler.java @ 53266

       package eu.dnetlib.uoaadmintools.handlers;
       import eu.dnetlib.uoaadmintools.handlers.utils.AuthorizationUtils;
       import org.apache.log4j.Logger;
       import org.springframework.web.servlet.handler.HandlerInterceptorAdapter;
       import javax.servlet.http.HttpServletRequest;
       import javax.servlet.http.HttpServletResponse;
       /**
        * Created by argirok on 23/2/2018.
        */
       public class AuthorizationHandler extends HandlerInterceptorAdapter {
           private final Logger log = Logger.getLogger(this.getClass());
           private AuthorizationUtils helper = new AuthorizationUtils();
           public AuthorizationHandler(String userInfoUrl, String originServer){
               helper.setOriginServer(originServer);
               helper.setUserInfoUrl(userInfoUrl);
+          }
           @Override
           public boolean preHandle(
                   HttpServletRequest request,
                   HttpServletResponse response,
                   Object handler) throws Exception {
       //        log.debug("request method " + request.getRemoteHost());
               log.debug("properties: " + helper.getOriginServer() + " "+ helper.getUserInfoUrl());
               if(request.getMethod().equals("POST") || request.getMethod().equals("DELETE")){
                   //TODO check domain & check user info
                   if(!this.helper.checkCookies(request) || !helper.isAuthorized(helper.getToken(request))){
                       response.setHeader("Access-Control-Allow-Credentials","true");
                       response.setHeader("Access-Control-Allow-Origin","*");
                       response.setHeader("Vary","Origin");
                       response.setStatus(403);
                       response.sendError(403, "Forbidden: You don't have permission to access. Maybe you are not registered.");
                       return false;
+                  }
+              }
               return true;
+          }
       //    @Override
       //    public void postHandle(
       //            HttpServletRequest request,
       //            HttpServletResponse response,
       //            Object handler,
       //            ModelAndView modelAndView) throws Exception {
       //        log.info("I am here - postHandle ");
       //    }
       //
       //    @Override
       //    public void afterCompletion(
       //            HttpServletRequest request,
       //            HttpServletResponse response,
       //            Object handler, Exception ex) {
       //        log.info("I am here - afterCompletion ");
       //    }
+      }

« Previous
1
2
3
Next »

(1-1/3)

Project

General

Profile

D-Net