org.gluu.oxtrust.service.filter.AuthorizationProcessingFilter の継承関係図

org.gluu.oxtrust.service.filter.AuthorizationProcessingFilter 連携図

公開メンバ関数
void	filter (ContainerRequestContext requestContext) throws IOException

非公開メンバ関数
void	init ()

非公開変数類
Logger	log

ScimUmaProtectionService	scimUmaProtectionService

HttpHeaders	httpHeaders

ResourceInfo	resourceInfo

WeldInstance< BaseUmaProtectionService >	protectionServiceInstance

Map< String, Class< BaseUmaProtectionService > >	protectionMapping

詳解

A RestEasy filter to centralize protection of APIs with UMA based on path pattern. Created by jgomer on 2017-11-25.

著者: Yuriy Movchan Date: 02/14/2017

関数詳解

◆ filter()

void org.gluu.oxtrust.service.filter.AuthorizationProcessingFilter.filter ( ContainerRequestContext requestContext ) throws IOException

inline

This method performs the protection check of service invocations: it provokes returning an early error response if the underlying protection logic does not succeed, otherwise, makes the request flow to its destination service object

引数

requestContext The ContainerRequestContext associated to filter execution

例外

IOException In practice no exception is thrown here. It's present to conform to interface implemented.

                                                                                   {
 
         String path=requestContext.getUriInfo().getPath();
         //This is a path relative to the resteasy base URI (the application path marked with @ApplicationPath)
 
         log.trace("REST call to '{}' intercepted", path);
         BaseUmaProtectionService protectionService=null;
 
         for (String prefix : protectionMapping.keySet()){
             if (path.startsWith(prefix)){
                 protectionService=protectionServiceInstance.select(protectionMapping.get(prefix)).get();
                 break;
             }
         }
 
         if (protectionService==null){
             log.warn("No concrete UMA protection mechanism is associated to this path (resource will be accessed anonymously)");
         }
         else{
             log.info("Path is protected, proceeding with authorization processing...");
 
             Response authorizationResponse=protectionService.processAuthorization(httpHeaders, resourceInfo);
             if (authorizationResponse == null)
                 log.info("Authorization passed");   //If authorization passed, proceed with actual processing of request
             else
                 requestContext.abortWith(authorizationResponse);
         }
 
     }

◆ init()

void org.gluu.oxtrust.service.filter.AuthorizationProcessingFilter.init ( )

inlineprivate

Builds a map around url patterns and service beans that are aimed to perform actual protection

                         {
         protectionMapping=new HashMap<String, Class<BaseUmaProtectionService>>();
         for (WeldInstance.Handler<BaseUmaProtectionService> handler : protectionServiceInstance.handlers()){
 
                 Class<BaseUmaProtectionService> beanClass = (Class<BaseUmaProtectionService>) handler.getBean().getBeanClass();
             BindingUrls annotation=beanClass.getAnnotation(BindingUrls.class);
             if (annotation!=null){
                 //annotation.value() is never null, at most, it's empty array
                 for (String pattern : annotation.value()){
                     if (pattern.length()>0) {
                         //pattern, can never be null
                         protectionMapping.put(pattern, beanClass);
                         //If two beans pretend to protect the same url, only the last in the list will take effect
                     }
                 }
             }
         }
     }

メンバ詳解

◆ httpHeaders

HttpHeaders org.gluu.oxtrust.service.filter.AuthorizationProcessingFilter.httpHeaders

private

◆ log

Logger org.gluu.oxtrust.service.filter.AuthorizationProcessingFilter.log

private

◆ protectionMapping

Map<String, Class<BaseUmaProtectionService> > org.gluu.oxtrust.service.filter.AuthorizationProcessingFilter.protectionMapping

private

◆ protectionServiceInstance

WeldInstance<BaseUmaProtectionService> org.gluu.oxtrust.service.filter.AuthorizationProcessingFilter.protectionServiceInstance

private

◆ resourceInfo

ResourceInfo org.gluu.oxtrust.service.filter.AuthorizationProcessingFilter.resourceInfo

private

◆ scimUmaProtectionService

ScimUmaProtectionService org.gluu.oxtrust.service.filter.AuthorizationProcessingFilter.scimUmaProtectionService

private

このクラス詳解は次のファイルから抽出されました:

D:/AppData/OpenId/gluu/src/oxTrust/server/src/main/java/org/gluu/oxtrust/service/filter/AuthorizationProcessingFilter.java

公開メンバ関数

非公開メンバ関数

非公開変数類

詳解

関数詳解

◆ filter()

◆ init()

メンバ詳解

◆ httpHeaders

◆ log

◆ protectionMapping

◆ protectionServiceInstance

◆ resourceInfo

◆ scimUmaProtectionService