net.krotscheck.kangaroo.authz.admin.v1.auth.filter

Class OAuth2AuthorizationFilter

java.lang.Object

net.krotscheck.kangaroo.authz.admin.v1.auth.filter.OAuth2AuthorizationFilter

All Implemented Interfaces:

javax.ws.rs.container.ContainerRequestFilter

@Priority(value=2000)
public final class OAuth2AuthorizationFilter
extends Object
implements javax.ws.rs.container.ContainerRequestFilter

This filter checks the user principal on every request, to see whether it posesses the appropriate "scopes". For the sake of expediency, we're conflating "roles" and "scopes" here, as the methods for the former already exist.

Author:

Michael Krotscheck

Constructor Summary

Constructors

Constructor and Description
OAuth2AuthorizationFilter() Create a new filter, denying all requests.
OAuth2AuthorizationFilter(String[] scopesAllowed) Create a new filter, only permitting the provided scopes.

Method Summary

Modifier and Type	Method and Description
void	filter(javax.ws.rs.container.ContainerRequestContext requestContext) Handle the request.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

OAuth2AuthorizationFilter

public OAuth2AuthorizationFilter()

Create a new filter, denying all requests.

OAuth2AuthorizationFilter

public OAuth2AuthorizationFilter(String[] scopesAllowed)

Create a new filter, only permitting the provided scopes.

Parameters:

scopesAllowed - The permitted scopes.

Method Detail

filter

public void filter(javax.ws.rs.container.ContainerRequestContext requestContext)
            throws IOException

Handle the request.

Specified by:

filter in interface javax.ws.rs.container.ContainerRequestFilter

Parameters:

requestContext - Request context.

Throws:

IOException - Should (hopefully) not be thrown.