org.zalando.logbook.servlet.SecurityStrategy Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of logbook-servlet Show documentation
Show all versions of logbook-servlet Show documentation
Servlet 3 filter for HTTP request and response logging
package org.zalando.logbook.servlet;
import org.zalando.logbook.Correlator;
import org.zalando.logbook.Logbook;
import org.zalando.logbook.RawRequestFilter;
import javax.servlet.FilterChain;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;
import java.util.Optional;
import static org.zalando.logbook.servlet.Attributes.CORRELATOR;
final class SecurityStrategy implements Strategy {
private final RawRequestFilter filter;
SecurityStrategy(final RawRequestFilter filter) {
this.filter = filter;
}
@Override
public void doFilter(final Logbook logbook, final HttpServletRequest httpRequest,
final HttpServletResponse httpResponse, final FilterChain chain) throws ServletException, IOException {
final RemoteRequest request = new RemoteRequest(httpRequest);
final String protocolVersion = request.getProtocolVersion();
final LocalResponse response = new LocalResponse(httpResponse, protocolVersion);
chain.doFilter(request, response);
if (isUnauthorized(response)) {
final Optional correlator;
if (isFirstRequest(request)) {
correlator = logbook.write(filter.filter(request));
} else {
correlator = readCorrelator(request);
}
if (correlator.isPresent()) {
correlator.get().write(response);
}
}
}
private boolean isUnauthorized(final HttpServletResponse response) {
return response.getStatus() == 401;
}
private Optional readCorrelator(final RemoteRequest request) {
return Optional.ofNullable(request.getAttribute(CORRELATOR)).map(Correlator.class::cast);
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy