• Home
• org.neo4j.app
• neo4j-server
• 3.1.0-M02
• source code
• AuthorizedRequestWrapper.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

org.neo4j.server.rest.dbms.AuthorizedRequestWrapper Maven / Gradle / Ivy

/*
 * Copyright (c) 2002-2016 "Neo Technology,"
 * Network Engine for Objects in Lund AB [http://neotechnology.com]
 *
 * This file is part of Neo4j.
 *
 * Neo4j is free software: you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program.  If not, see .
 */
package org.neo4j.server.rest.dbms;

import com.sun.jersey.api.core.HttpContext;
import com.sun.jersey.api.core.HttpRequestContext;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletRequestWrapper;
import java.security.Principal;

import org.neo4j.kernel.api.security.AccessMode;

public class AuthorizedRequestWrapper extends HttpServletRequestWrapper
{
    public static final AccessMode getAccessModeFromHttpServletRequest( HttpServletRequest request )
    {
        Principal principal = request.getUserPrincipal();
        return getAccessModeFromUserPrincipal( principal );
    }

    public static final AccessMode getAccessModeFromHttpContext( HttpContext httpContext )
    {
        HttpRequestContext requestContext = httpContext.getRequest();
        Principal principal = requestContext.getUserPrincipal();
        return getAccessModeFromUserPrincipal( principal );
    }

    private static final AccessMode getAccessModeFromUserPrincipal( Principal principal )
    {
        if ( principal instanceof DelegatingPrinciple )
        {
            return ((DelegatingPrinciple) principal).getAccessMode();
        }
        // If whitelisted uris can start transactions we cannot throw exception here
        //throw new IllegalArgumentException( "Tried to get access mode on illegal user principal" );
        return AccessMode.Static.NONE;
    }

    public class DelegatingPrinciple implements Principal
    {
        private String username;
        private final AccessMode accessMode;

        private DelegatingPrinciple( String username, AccessMode accessMode )
        {
            this.username = username;
            this.accessMode = accessMode;
        }

        @Override
        public String getName()
        {
            return username;
        }

        public AccessMode getAccessMode() { return accessMode; }

        @Override
        public boolean equals( Object o )
        {
            if ( this == o )
            {
                return true;
            }
            if ( !( o instanceof DelegatingPrinciple ) )
            {
                return false;
            }

            DelegatingPrinciple that = (DelegatingPrinciple) o;
            return username.equals( that.username );
        }

        @Override
        public int hashCode()
        {
            return username.hashCode();
        }

        @Override
        public String toString()
        {
            return "DelegatingPrinciple{" +
                    "username='" + username + '\'' +
                    '}';
        }
    }

    private final String authType;
    private final DelegatingPrinciple principle;

    public AuthorizedRequestWrapper( final String authType, final String username, final HttpServletRequest request,
            AccessMode accessMode )
    {
        super( request );
        this.authType = authType;
        this.principle = new DelegatingPrinciple( username, accessMode );
    }

    @Override
    public String getAuthType()
    {
        return authType;
    }

    @Override
    public Principal getUserPrincipal()
    {
        return principle;
    }

    @Override
    public boolean isUserInRole( String role )
    {
        return true;
    }

    @Override
    public String toString()
    {
        return "AuthorizedRequestWrapper{" +
                "authType='" + authType + '\'' +
                ", principle=" + principle +
                '}';
    }

    @Override
    public boolean equals( Object o )
    {
        if ( this == o )
        {
            return true;
        }
        if ( o == null || getClass() != o.getClass() )
        {
            return false;
        }

        AuthorizedRequestWrapper that = (AuthorizedRequestWrapper) o;
        if ( !authType.equals( that.authType ) )
        {
            return false;
        }
        if ( !principle.equals( that.principle ) )
        {
            return false;
        }

        return true;
    }

    @Override
    public int hashCode()
    {
        int result = authType.hashCode();
        result = 31 * result + principle.hashCode();
        return result;
    }
}