Package org.opengrok.web

Class AuthorizationFilter

java.lang.Object

org.opengrok.web.AuthorizationFilter

All Implemented Interfaces:

jakarta.servlet.Filter

public class AuthorizationFilter
extends Object
implements jakarta.servlet.Filter

Constructor Summary

Constructors

Constructor	Description
AuthorizationFilter()

Method Summary

Modifier and Type	Method	Description
void	destroy()
void	doFilter(jakarta.servlet.ServletRequest servletRequest, jakarta.servlet.ServletResponse servletResponse, jakarta.servlet.FilterChain fc)	All RESTful API requests are allowed here because they go through IncomingFilter.
void	init(jakarta.servlet.FilterConfig fc)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

AuthorizationFilter

public AuthorizationFilter()

Method Details

init

public void init(jakarta.servlet.FilterConfig fc)

Specified by:

init in interface jakarta.servlet.Filter

doFilter

public void doFilter(jakarta.servlet.ServletRequest servletRequest,
 jakarta.servlet.ServletResponse servletResponse,
 jakarta.servlet.FilterChain fc)
              throws IOException,
jakarta.servlet.ServletException

All RESTful API requests are allowed here because they go through IncomingFilter. The /search endpoint will go through authorization via SearchEngine.search() so does not have to be exempted here.

Specified by:

doFilter in interface jakarta.servlet.Filter

Throws:

IOException

jakarta.servlet.ServletException

destroy

public void destroy()

Specified by:

destroy in interface jakarta.servlet.Filter