Package com.emc.vipr.client.impl.jersey

Source Code of com.emc.vipr.client.impl.jersey.AuthTokenFilter

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
package com.emc.vipr.client.impl.jersey;

import com.emc.vipr.client.impl.Constants;
import com.sun.jersey.api.client.ClientHandlerException;
import com.sun.jersey.api.client.ClientRequest;
import com.sun.jersey.api.client.ClientResponse;
import com.sun.jersey.api.client.filter.ClientFilter;
import javax.ws.rs.core.HttpHeaders;
import java.net.URI;

/**
* Jersey filter for accessing and sending Storage OS Auth Token. This also implements redirection manually 302.
*
* If login is required, you are redirected to the login page. Basic Auth is taken there and a token is provided back.
* This is sent back as a 302 to redirect you to your original page. The issue is that the 302 contains the response
* header with the token. Standard redirect processing will lose this token when you redirect to the real page.
*/
public class AuthTokenFilter extends ClientFilter {

    private TokenAccess sessionAccess;
   
    public AuthTokenFilter(TokenAccess sessionAccess) {
        this.sessionAccess = sessionAccess;
    }
   
    @Override
    public ClientResponse handle(ClientRequest request) throws ClientHandlerException {
        addTokenToRequest(request);

        ClientResponse response = getNext().handle(request);

        // Handle a redirect
        if (response.getClientResponseStatus() == ClientResponse.Status.FOUND) {
            if (response.getHeaders().containsKey(HttpHeaders.LOCATION)) {
                String location = response.getHeaders().getFirst(HttpHeaders.LOCATION);

                final ClientRequest newRequest = ClientRequest.create().build(URI.create(location), request.getMethod());

                // Handle the token from the existing response, add to this new request
                checkResponseForToken(response);
                addTokenToRequest(newRequest);

                // Call handler to perform redirect to new page
                response = handle(newRequest);
            }
        }

        checkResponseForToken(response);
        return response;
    }

    private void addTokenToRequest(ClientRequest request) {
        if (sessionAccess.getToken() != null) {
            request.getHeaders().putSingle(Constants.AUTH_TOKEN_KEY, sessionAccess.getToken());
        }
    }

    private void checkResponseForToken(ClientResponse response) {
        Object token = response.getHeaders().getFirst(Constants.AUTH_TOKEN_KEY);
        if (token != null && token instanceof String) {
            sessionAccess.setToken((String) token);
        }
    }
}
TOP

Related Classes of com.emc.vipr.client.impl.jersey.AuthTokenFilter

  • com.sun.jersey.api.client.ClientRequest
  • com.sun.jersey.api.client.ClientResponse
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.