• Home
• io.github.daviddenton
• fintrospect_2.10
• 12.20.1
• source code
• Security.scala

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

io.fintrospect.parameters.Security.scala Maven / Gradle / Ivy

package io.fintrospect.parameters

import com.twitter.finagle.Filter
import com.twitter.finagle.http.Status.Unauthorized
import com.twitter.finagle.http.{Request, Response}
import com.twitter.util.Future
import io.fintrospect.parameters.ApiKey.ValidateKey

import scala.util.{Failure, Success, Try}

/**
  * Endpoint security. Provides filter to be applied to endpoints for all requests.
  */
sealed trait Security {
  val filter: Filter[Request, Response, Request, Response]
}

/**
  * Checks the presence of the named Api Key parameter. Filter returns 401 if Api-Key is not found in request.
  */
case class ApiKey[T, K >: Request](param: Parameter with Mandatory[K, T], validateKey: ValidateKey[T]) extends Security {
  val filter = Filter.mk[Request, Response, Request, Response] {
    (request, svc) => Try(param <-- request) match {
      case Success(apiKey) => validateKey(apiKey)
        .flatMap(result => if (result) svc(request) else Future.value(Response(Unauthorized)))
      case Failure(e) => Future.value(Response(Unauthorized))
    }
  }
}

object ApiKey {
  type ValidateKey[T] = T => Future[Boolean]
}

/**
  * Default NoOp security filter. Filter allows all traffic through.
  */
object NoSecurity extends Security {
  val filter = Filter.identity[Request, Response]
}