Nemcio/SCM-Manager
1
0
Fork 0
mirror of https://github.com/scm-manager/scm-manager.git synced 2025-11-11 07:55:47 +01:00
Code Issues Packages Projects Releases Activity

Log token refresh

Browse Source
This commit is contained in:
René Pfeuffer
2018-11-30 17:25:53 +01:00
parent 58268f88db
commit 80ce5af12a
1 changed files with 10 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
scm-webapp/src/main/java/sonia/scm/web/security/TokenRefreshFilter.java
View File

@@ -1,6 +1,8 @@
package sonia.scm.web.security; package sonia.scm.web.security;
import org.apache.shiro.authc.AuthenticationToken; import org.apache.shiro.authc.AuthenticationToken;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import sonia.scm.Priority; import sonia.scm.Priority;
import sonia.scm.filter.Filters; import sonia.scm.filter.Filters;
import sonia.scm.filter.WebElement; import sonia.scm.filter.WebElement;
@@ -26,6 +28,8 @@ import java.util.Set;
morePatterns = { Filters.PATTERN_DEBUG }) morePatterns = { Filters.PATTERN_DEBUG })
public class TokenRefreshFilter extends HttpFilter { public class TokenRefreshFilter extends HttpFilter {
private static final Logger LOG = LoggerFactory.getLogger(TokenRefreshFilter.class);
private final Set<WebTokenGenerator> tokenGenerators; private final Set<WebTokenGenerator> tokenGenerators;
private final AccessTokenCookieIssuer cookieIssuer; private final AccessTokenCookieIssuer cookieIssuer;
private final JwtAccessTokenRefresher refresher; private final JwtAccessTokenRefresher refresher;
@@ -48,12 +52,17 @@ public class TokenRefreshFilter extends HttpFilter {
AccessToken accessToken = resolver.resolve((BearerToken) token); AccessToken accessToken = resolver.resolve((BearerToken) token);
if (accessToken instanceof JwtAccessToken) { if (accessToken instanceof JwtAccessToken) {
refresher.refresh((JwtAccessToken) accessToken) refresher.refresh((JwtAccessToken) accessToken)
.ifPresent(jwtAccessToken -> issuer.authenticate(request, response, jwtAccessToken)); .ifPresent(jwtAccessToken -> refreshToken(request, response, jwtAccessToken));
} }
} }
chain.doFilter(request, response); chain.doFilter(request, response);
} }
private void refreshToken(HttpServletRequest request, HttpServletResponse response, JwtAccessToken jwtAccessToken) {
LOG.debug("refreshing authentication token");
issuer.authenticate(request, response, jwtAccessToken);
}
private AuthenticationToken createToken(HttpServletRequest request) { private AuthenticationToken createToken(HttpServletRequest request) {
for (WebTokenGenerator generator : tokenGenerators) { for (WebTokenGenerator generator : tokenGenerators) {
AuthenticationToken token = generator.createToken(request); AuthenticationToken token = generator.createToken(request);