diff options
author | 2023-01-04 03:37:05 +0300 | |
---|---|---|
committer | 2023-01-04 03:37:05 +0300 | |
commit | 086d9a7625bfc5a386f5b1028d364fb546c2fa9d (patch) | |
tree | 54db8116fa0eaa40e5617d17545e62148b8c608f /src/main/java/com/juick/service/security/BaseAuthenticationFilter.java | |
parent | aa9240e5431c5ee81f3d25d6481c66c445d11711 (diff) |
JWT authentication for API
Diffstat (limited to 'src/main/java/com/juick/service/security/BaseAuthenticationFilter.java')
-rw-r--r-- | src/main/java/com/juick/service/security/BaseAuthenticationFilter.java | 33 |
1 files changed, 33 insertions, 0 deletions
diff --git a/src/main/java/com/juick/service/security/BaseAuthenticationFilter.java b/src/main/java/com/juick/service/security/BaseAuthenticationFilter.java new file mode 100644 index 00000000..7bfc39b2 --- /dev/null +++ b/src/main/java/com/juick/service/security/BaseAuthenticationFilter.java @@ -0,0 +1,33 @@ +/* + * Copyright (C) 2008-2023, Juick + * + * This program is free software: you can redistribute it and/or modify + * it under the terms of the GNU Affero General Public License as + * published by the Free Software Foundation, either version 3 of the + * License, or (at your option) any later version. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU Affero General Public License for more details. + * + * You should have received a copy of the GNU Affero General Public License + * along with this program. If not, see <http://www.gnu.org/licenses/>. + */ + +package com.juick.service.security; + +import org.springframework.security.authentication.AnonymousAuthenticationToken; +import org.springframework.security.core.Authentication; +import org.springframework.security.core.context.SecurityContextHolder; +import org.springframework.web.filter.OncePerRequestFilter; + +public abstract class BaseAuthenticationFilter extends OncePerRequestFilter { + boolean authenticationIsRequired() { + Authentication existingAuth = SecurityContextHolder.getContext().getAuthentication(); + + return existingAuth == null || + !existingAuth.isAuthenticated() || + existingAuth instanceof AnonymousAuthenticationToken; + } +} |