• Home
• org.yakworks
• boot-security
• 7.3.74
• source code
• CookieUrlTokenSuccessHandler.groovy

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

yakworks.security.spring.token.CookieUrlTokenSuccessHandler.groovy Maven / Gradle / Ivy

/*
* Copyright 2022 Yak.Works - Licensed under the Apache License, Version 2.0 (the "License")
* You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0
*/
package yakworks.security.spring.token

import javax.servlet.ServletException
import javax.servlet.http.Cookie
import javax.servlet.http.HttpServletRequest
import javax.servlet.http.HttpServletResponse

import groovy.transform.CompileStatic
import groovy.util.logging.Slf4j

import org.springframework.beans.factory.annotation.Autowired
import org.springframework.security.core.Authentication
import org.springframework.security.oauth2.core.AbstractOAuth2Token
import org.springframework.security.web.authentication.SavedRequestAwareAuthenticationSuccessHandler

import yakworks.security.spring.token.generator.TokenGenerator

/**
 * Success handler that will add cookie for token first before doing redirects.
 * Also add token to end of url when it ends with an =, legacy to get rcm-ui working
 * see app.security.frontendCallbackUrl
 */
@Slf4j
@CompileStatic
class CookieUrlTokenSuccessHandler extends SavedRequestAwareAuthenticationSuccessHandler{

    @Autowired TokenGenerator tokenGenerator

    @Override
    void onAuthenticationSuccess(HttpServletRequest request, HttpServletResponse response,
                                        Authentication authentication) throws ServletException, IOException {
        AbstractOAuth2Token token = tokenGenerator.generate()
        Cookie cookie = TokenUtils.tokenCookie(request, token)
        response.addCookie(cookie)

        String targetUrl = defaultTargetUrl
        log.debug("😀saml success token generated and redirecting to ${targetUrl}")

        if(targetUrl.endsWith("=")){
            targetUrl = "${targetUrl}${token.tokenValue}"
        }
        this.redirectStrategy.sendRedirect(request, response, targetUrl)

        //super.onAuthenticationSuccess(request, response, authentication);
    }

}