热门标签
热门文章
- 1网上收集到的计算机方面的电子书收集_ebook – the official comptia security
- 2GraphQL Part V: 字段,参数和变量
- 3AI神经网络原理与Python实战:Python神经网络模型大数据应用_python神经网络推荐系统代码用ml-10m数据集
- 4鸿蒙开源!OpenHarmony——手机的CPU信息应用
- 5Microsoft Store 无法加载页面,请稍后重试(错误代码:0x80131500)解决方案_microsoft store代码0x80131500
- 6Pygame入门教程(一) 初始化和主循环_import pygame
- 7error: expected type-specifier before 'ClassName'
- 844. 日志管理之systemd日志,持久化设置,journal,systemd-journald,查看日志(journalctl)_systemd 日志
- 9Qt发布安装程序(打包依赖库+生成安装程序)_qt依赖库打包
- 10python常用pandas函数nlargest / nsmallest及其手动实现_pandas nlargest
当前位置: article > 正文
Jersey中的基本权限认证及访问程序_priority(priorities.authentication)
作者:AllinToyou | 2024-02-21 14:20:14
赞
踩
priority(priorities.authentication)
版本:jersey v2.10
- import java.io.IOException;
- import java.nio.charset.Charset;
- import java.security.Principal;
-
- import javax.annotation.Priority;
- import javax.servlet.ServletConfig;
- import javax.servlet.ServletContext;
- import javax.servlet.http.HttpServletRequest;
- import javax.ws.rs.Priorities;
- import javax.ws.rs.container.ContainerRequestContext;
- import javax.ws.rs.container.ContainerRequestFilter;
- import javax.ws.rs.core.Context;
- import javax.ws.rs.core.HttpHeaders;
- import javax.ws.rs.core.Response;
- import javax.ws.rs.core.SecurityContext;
- import javax.ws.rs.ext.Provider;
-
- import org.apache.commons.logging.Log;
- import org.apache.commons.logging.LogFactory;
- import org.glassfish.jersey.internal.util.Base64;
-
- /**
- *
- * @author zhangdapeng
- * @version 1.0,2014年7月7日
- * @since 1.0
- */
- @Provider
- @Priority(Priorities.AUTHENTICATION)
- public class AuthRequestFilter implements ContainerRequestFilter {
- private Log logger = LogFactory.getLog(getClass());
- @Context
- HttpServletRequest webRequest;
-
-
- @Context
- ServletConfig servletConfig;
-
- @Context
- ServletContext servletContext;
-
- @Override
- public void filter(ContainerRequestContext requestContext) throws IOException {
- final Charset CHARACTER_SET = Charset.forName("utf-8");
-
- String authHeader = requestContext.getHeaders().getFirst(HttpHeaders.AUTHORIZATION);
- if (authHeader != null && authHeader.startsWith("Basic")) {
- String decoded = new String(Base64.decode(authHeader.substring(6).getBytes()), CHARACTER_SET);
- // String decoded = Base64.decodeAsString(authHeader.substring(6));
- final String[] split = decoded.split(":");
- final String username = split[0];
- final String pwd = split[1];
- if (pwd.equals(pwd)) {//这里做了最大简化
- requestContext.setSecurityContext(new SecurityContext() {
- @Override
- public Principal getUserPrincipal() {
- return new Principal() {
- @Override
- public String getName() {
- return username;
- }
- };
- }
-
- @Override
- public boolean isUserInRole(String role) {
- return true;
- }
-
- @Override
- public boolean isSecure() {
- return false;
- }
-
- @Override
- public String getAuthenticationScheme() {
- return "BASIC";
- }
- });
- return;
- }
- }
- requestContext.abortWith(Response.status(401).header(HttpHeaders.WWW_AUTHENTICATE, "Basic").build());
-
- //TODO : HERE YOU SHOULD ADD PARAMETER TO REQUEST, TO REMEMBER USER ON YOUR REST SERVICE...
-
-
- // logger.info(requestContext.getSecurityContext().getUserPrincipal().getName());
- }
-
- }
客户端访问:
- @Test
- public void testBasicPreemptive() {
- Client client = ClientBuilder.newClient();
- WebTarget target = client
- .target("http://localhost:8080/boa/rest/customer/retrieve/1");
- Response response = target.register(HttpAuthenticationFeature.basicBuilder().credentials("homer", "country").build())
- .request().get();
- assertEquals(200, response.getStatus());
- Customer c= response.readEntity(Customer.class);
- System.out.println("--"+c.getFirstName());
- }
参考:http://blog.csdn.net/philosophyatmath/article/details/37879451
声明:本文内容由网友自发贡献,不代表【wpsshop博客】立场,版权归原作者所有,本站不承担相应法律责任。如您发现有侵权的内容,请联系我们。转载请注明出处:https://www.wpsshop.cn/w/AllinToyou/article/detail/124328
推荐阅读
相关标签
