library/src/main/java/org/apache/fineract/cn/anubis/filter/IsisAuthenticatedProcessingFilter.java - fineract-cn-anubis - Git at Google

 /*
  * Licensed to the Apache Software Foundation (ASF) under one
  * or more contributor license agreements.  See the NOTICE file
  * distributed with this work for additional information
  * regarding copyright ownership.  The ASF licenses this file
  * to you under the Apache License, Version 2.0 (the
  * "License"); you may not use this file except in compliance
  * with the License.  You may obtain a copy of the License at
  *
  *   http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing,
  * software distributed under the License is distributed on an
  * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
  * KIND, either express or implied.  See the License for the
  * specific language governing permissions and limitations
  * under the License.
  */
 package org.apache.fineract.cn.anubis.filter;

 import static org.apache.fineract.cn.api.util.ApiConstants.AUTHORIZATION_HEADER;
 import static org.apache.fineract.cn.api.util.ApiConstants.USER_HEADER;

 import org.apache.fineract.cn.anubis.api.v1.RoleConstants;
 import org.apache.fineract.cn.anubis.api.v1.TokenConstants;
 import org.springframework.security.authentication.AuthenticationManager;
 import org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter;

 import javax.servlet.http.HttpServletRequest;

 import java.util.Optional;


 /**
  * @author Myrle Krantz
  */
 public class IsisAuthenticatedProcessingFilter extends AbstractPreAuthenticatedProcessingFilter {

   public IsisAuthenticatedProcessingFilter(final AuthenticationManager authenticationManager) {
     setAuthenticationManager(authenticationManager);
     setCheckForPrincipalChanges(true);
   }

   @Override protected Object getPreAuthenticatedPrincipal(final HttpServletRequest request) {
     return Optional.ofNullable(request.getHeader(USER_HEADER)).orElse(RoleConstants.GUEST_USER_IDENTIFIER);
   }

   @Override protected Object getPreAuthenticatedCredentials(final HttpServletRequest request) {
     return Optional.ofNullable(request.getHeader(AUTHORIZATION_HEADER)).orElse(TokenConstants.NO_AUTHENTICATION);
   }
 }
	/*
	* Licensed to the Apache Software Foundation (ASF) under one
	* or more contributor license agreements. See the NOTICE file
	* distributed with this work for additional information
	* regarding copyright ownership. The ASF licenses this file
	* to you under the Apache License, Version 2.0 (the
	* "License"); you may not use this file except in compliance
	* with the License. You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing,
	* software distributed under the License is distributed on an
	* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
	* KIND, either express or implied. See the License for the
	* specific language governing permissions and limitations
	* under the License.
	*/
	package org.apache.fineract.cn.anubis.filter;

	import static org.apache.fineract.cn.api.util.ApiConstants.AUTHORIZATION_HEADER;
	import static org.apache.fineract.cn.api.util.ApiConstants.USER_HEADER;

	import org.apache.fineract.cn.anubis.api.v1.RoleConstants;
	import org.apache.fineract.cn.anubis.api.v1.TokenConstants;
	import org.springframework.security.authentication.AuthenticationManager;
	import org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter;

	import javax.servlet.http.HttpServletRequest;

	import java.util.Optional;


	/**
	* @author Myrle Krantz
	*/
	public class IsisAuthenticatedProcessingFilter extends AbstractPreAuthenticatedProcessingFilter {

	public IsisAuthenticatedProcessingFilter(final AuthenticationManager authenticationManager) {
	setAuthenticationManager(authenticationManager);
	setCheckForPrincipalChanges(true);
	}

	@Override protected Object getPreAuthenticatedPrincipal(final HttpServletRequest request) {
	return Optional.ofNullable(request.getHeader(USER_HEADER)).orElse(RoleConstants.GUEST_USER_IDENTIFIER);
	}

	@Override protected Object getPreAuthenticatedCredentials(final HttpServletRequest request) {
	return Optional.ofNullable(request.getHeader(AUTHORIZATION_HEADER)).orElse(TokenConstants.NO_AUTHENTICATION);
	}
	}