• Home
• org.beangle.security
• beangle-security-web_2.13
• 4.2.21
• source code
• SecurityContextBuilder.scala

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

org.beangle.security.web.access.SecurityContextBuilder.scala Maven / Gradle / Ivy

/*
 * Beangle, Agile Development Scaffold and Toolkits.
 *
 * Copyright © 2005, The Beangle Software.
 *
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU Lesser General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU Lesser General Public License for more details.
 *
 * You should have received a copy of the GNU Lesser General Public License
 * along with this program.  If not, see .
 */
package org.beangle.security.web.access

import java.time.Instant

import org.beangle.commons.web.security.RequestConvertor
import org.beangle.commons.web.util.CookieUtils
import org.beangle.security.authz.Authorizer
import org.beangle.security.context.SecurityContext
import org.beangle.security.session.{ Session, SessionRepo }
import org.beangle.security.web.session.SessionIdReader

import jakarta.servlet.http.{ HttpServletRequest, HttpServletResponse }

trait SecurityContextBuilder {

  def find(request: HttpServletRequest, response: HttpServletResponse): SecurityContext

  def build(request: HttpServletRequest, session: Option[Session]): SecurityContext

}

class DefaultSecurityContextBuilder extends SecurityContextBuilder {
  var authorizer: Authorizer = _
  var requestConvertor: RequestConvertor = _

  var repo: SessionRepo = _
  var sessionIdReader: SessionIdReader = _

  def find(request: HttpServletRequest, response: HttpServletResponse): SecurityContext = {
    val session =
      sessionIdReader.getId(request, response) match {
        case Some(sid) => repo.access(sid, Instant.now)
        case None      => None
      }
    build(request, session)
  }

  def build(request: HttpServletRequest, session: Option[Session]): SecurityContext = {
    var isRoot = false
    session foreach { s =>
      isRoot = authorizer.isRoot(s.principal.getName)
    }
    var runAs: String = null
    if (isRoot) {
      runAs = CookieUtils.getCookieValue(request, "beangle.security.runAs")
    }
    new SecurityContext(session, requestConvertor.convert(request), isRoot, Option(runAs))
  }
}