Package org.dspace.app.rest.security

Class AnonymousAdditionalAuthorizationFilter

  • All Implemented Interfaces:
    javax.servlet.Filter, org.springframework.beans.factory.Aware, org.springframework.beans.factory.BeanNameAware, org.springframework.beans.factory.DisposableBean, org.springframework.beans.factory.InitializingBean, org.springframework.context.EnvironmentAware, org.springframework.core.env.EnvironmentCapable, org.springframework.web.context.ServletContextAware
    public class AnonymousAdditionalAuthorizationFilter
extends org.springframework.security.web.authentication.www.BasicAuthenticationFilter
    This is a Filter class that'll fetch special groups from the AuthenticationService and set these in the current DSpace Context. It'll do extra processing on anonymous requests to see which authorizations they can implicitly have and adds those This will allow us to for example set a specific Group to a specific IP so that any request from that IP is always treated as being a part of the configured group. The configuration for the authentication through ip can be found in authentication-ip.cfg This can be enabled by uncommenting the IPAuhentication plugin in authentication.cfg

    • Field Summary

      • Fields inherited from class org.springframework.web.filter.OncePerRequestFilter

        ALREADY_FILTERED_SUFFIX

      • Fields inherited from class org.springframework.web.filter.GenericFilterBean

        logger

    • Method Summary

      All Methods Instance Methods Concrete Methods 
      Modifier and Type Method Description
      protected void doFilterInternal​(javax.servlet.http.HttpServletRequest req, javax.servlet.http.HttpServletResponse res, javax.servlet.FilterChain chain)  

      • Methods inherited from class org.springframework.security.web.authentication.www.BasicAuthenticationFilter

        afterPropertiesSet, getAuthenticationEntryPoint, getAuthenticationManager, getCredentialsCharset, isIgnoreFailure, onSuccessfulAuthentication, onUnsuccessfulAuthentication, setAuthenticationDetailsSource, setCredentialsCharset, setRememberMeServices

      • Methods inherited from class org.springframework.web.filter.OncePerRequestFilter

        doFilter, doFilterNestedErrorDispatch, getAlreadyFilteredAttributeName, isAsyncDispatch, isAsyncStarted, shouldNotFilter, shouldNotFilterAsyncDispatch, shouldNotFilterErrorDispatch

      • Methods inherited from class org.springframework.web.filter.GenericFilterBean

        addRequiredProperty, createEnvironment, destroy, getEnvironment, getFilterConfig, getFilterName, getServletContext, init, initBeanWrapper, initFilterBean, setBeanName, setEnvironment, setServletContext

    • Constructor Detail

      • AnonymousAdditionalAuthorizationFilter

        public AnonymousAdditionalAuthorizationFilter​(org.springframework.security.authentication.AuthenticationManager authenticationManager,
                                              AuthenticationService authenticationService)
        Constructor for the class
        Parameters:
        authenticationManager - The relevant AuthenticationManager
        authenticationService - The autowired AuthenticationService

    • Method Detail

      • doFilterInternal

        protected void doFilterInternal​(javax.servlet.http.HttpServletRequest req,
                                javax.servlet.http.HttpServletResponse res,
                                javax.servlet.FilterChain chain)
                         throws IOException,
                                javax.servlet.ServletException
        Overrides:
        doFilterInternal in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
        Throws:
        IOException
        javax.servlet.ServletException