com.icthh.xm.commons.timeline.config.TimelineInterceptor Maven / Gradle / Ivy
package com.icthh.xm.commons.timeline.config;
import static org.apache.commons.lang3.ObjectUtils.firstNonNull;
import com.icthh.xm.commons.timeline.TimelineEventProducer;
import lombok.extern.slf4j.Slf4j;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.security.core.Authentication;
import org.springframework.security.core.context.SecurityContextHolder;
import org.springframework.security.oauth2.provider.OAuth2Authentication;
import org.springframework.security.oauth2.provider.authentication.OAuth2AuthenticationDetails;
import org.springframework.stereotype.Component;
import org.springframework.util.AntPathMatcher;
import org.springframework.web.servlet.handler.HandlerInterceptorAdapter;
import java.util.HashMap;
import java.util.List;
import java.util.Map;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
@Slf4j
@Component
public class TimelineInterceptor extends HandlerInterceptorAdapter {
private static final String HEADER_TENANT = "x-tenant";
private static final String AUTH_TENANT_KEY = "tenant";
private static final String AUTH_USER_KEY = "user_key";
private final AntPathMatcher matcher = new AntPathMatcher();
private final TimelineEventProducer eventProducer;
private final List ignoredPatterns;
public TimelineInterceptor(TimelineEventProducer eventProducer,
@Value("${application.tenant-ignored-path-list:true}") List ignoredPatterns) {
this.eventProducer = eventProducer;
this.ignoredPatterns = ignoredPatterns;
}
@Override
public void afterCompletion(HttpServletRequest request, HttpServletResponse response, Object handler, Exception ex)
throws Exception {
if (isIgnoredRequest(request)) {
return;
}
final OAuth2Authentication auth = getAuthentication();
if (auth == null) {
String tenant = request.getHeader(HEADER_TENANT);
produceTimeline(request, response, tenant, null, null);
} else {
Map details = getUserDetails(auth);
String tenant = details.getOrDefault(AUTH_TENANT_KEY, "");
String userKey = details.getOrDefault(AUTH_USER_KEY, "");
String userLogin = (String) auth.getPrincipal();
// produce timeline event if enabled
produceTimeline(request, response, tenant, userLogin, userKey);
}
}
@SuppressWarnings("unchecked")
private Map getUserDetails(OAuth2Authentication auth) {
Map details = null;
if (auth.getDetails() != null) {
details = Map.class.cast(OAuth2AuthenticationDetails.class.cast(auth.getDetails()).getDecodedDetails());
}
details = firstNonNull(details, new HashMap<>());
return details;
}
private static OAuth2Authentication getAuthentication() {
Authentication auth = SecurityContextHolder.getContext().getAuthentication();
if (auth instanceof OAuth2Authentication) {
return (OAuth2Authentication) SecurityContextHolder.getContext().getAuthentication();
}
return null;
}
private boolean isIgnoredRequest(HttpServletRequest request) {
String path = request.getServletPath();
if (ignoredPatterns != null && path != null) {
for (String pattern : ignoredPatterns) {
if (matcher.match(pattern, path)) {
return true;
}
}
}
return false;
}
private void produceTimeline(HttpServletRequest request,
HttpServletResponse response,
String tenant,
String userLogin,
String userKey) {
String content = eventProducer.createEventJson(request, response, tenant, userLogin, userKey);
eventProducer.send(tenant, content);
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy