diff options
Diffstat (limited to 'src/main/java/com/juick/service/security/HashParamAuthenticationFilter.java')
-rw-r--r-- | src/main/java/com/juick/service/security/HashParamAuthenticationFilter.java | 23 |
1 files changed, 6 insertions, 17 deletions
diff --git a/src/main/java/com/juick/service/security/HashParamAuthenticationFilter.java b/src/main/java/com/juick/service/security/HashParamAuthenticationFilter.java index 0f4ac66f..06f5edf4 100644 --- a/src/main/java/com/juick/service/security/HashParamAuthenticationFilter.java +++ b/src/main/java/com/juick/service/security/HashParamAuthenticationFilter.java @@ -20,10 +20,14 @@ package com.juick.service.security; import com.juick.model.User; import com.juick.service.UserService; import com.juick.service.security.entities.JuickUser; +import jakarta.servlet.FilterChain; +import jakarta.servlet.ServletException; +import jakarta.servlet.http.Cookie; +import jakarta.servlet.http.HttpServletRequest; +import jakarta.servlet.http.HttpServletResponse; import org.apache.commons.lang3.StringUtils; import org.springframework.lang.NonNull; import org.springframework.lang.Nullable; -import org.springframework.security.authentication.AnonymousAuthenticationToken; import org.springframework.security.authentication.RememberMeAuthenticationToken; import org.springframework.security.authentication.UsernamePasswordAuthenticationToken; import org.springframework.security.core.Authentication; @@ -31,20 +35,14 @@ import org.springframework.security.core.context.SecurityContextHolder; import org.springframework.security.web.authentication.RememberMeServices; import org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices; import org.springframework.util.Assert; -import org.springframework.web.filter.OncePerRequestFilter; import org.springframework.web.util.WebUtils; -import jakarta.servlet.FilterChain; -import jakarta.servlet.ServletException; -import jakarta.servlet.http.Cookie; -import jakarta.servlet.http.HttpServletRequest; -import jakarta.servlet.http.HttpServletResponse; import java.io.IOException; /** * Created by aalexeev on 4/5/17. */ -public class HashParamAuthenticationFilter extends OncePerRequestFilter { +public class HashParamAuthenticationFilter extends BaseAuthenticationFilter { public static final String PARAM_NAME = "hash"; @@ -85,7 +83,6 @@ public class HashParamAuthenticationFilter extends OncePerRequestFilter { userWithPassword.getCredentials(), JuickUser.USER_AUTHORITY); SecurityContextHolder.getContext().setAuthentication(authentication); - } } } @@ -93,14 +90,6 @@ public class HashParamAuthenticationFilter extends OncePerRequestFilter { filterChain.doFilter(request, response); } - private boolean authenticationIsRequired() { - Authentication existingAuth = SecurityContextHolder.getContext().getAuthentication(); - - return existingAuth == null || - !existingAuth.isAuthenticated() || - existingAuth instanceof AnonymousAuthenticationToken; - } - private String hashFromAuthorizationHeader(HttpServletRequest request) { String authorizationHeader = request.getHeader("Authorization"); if (StringUtils.isNotEmpty(authorizationHeader)) { |