org.molgenis.search
Class SearchSecurityHandlerInterceptor

java.lang.Object
  org.springframework.web.servlet.handler.HandlerInterceptorAdapter
      org.molgenis.search.SearchSecurityHandlerInterceptor

All Implemented Interfaces:

org.springframework.web.servlet.AsyncHandlerInterceptor, org.springframework.web.servlet.HandlerInterceptor

public class SearchSecurityHandlerInterceptor
extends org.springframework.web.servlet.handler.HandlerInterceptorAdapter

HandlerInterceptor returns SC_UNAUTHORIZED if no Login object is present in the session or the user is not authenticated and login is required. Does not check entity level security or roles. Just checks if the user is authenticated

Author:

erwin

Field Summary

static String

KEY_ACTION_ALLOW_ANONYMOUS_SEARCH

Constructor Summary

SearchSecurityHandlerInterceptor()

Method Summary

boolean

preHandle(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, Object handler)

Methods inherited from class org.springframework.web.servlet.handler.HandlerInterceptorAdapter

afterCompletion, afterConcurrentHandlingStarted, postHandle

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

KEY_ACTION_ALLOW_ANONYMOUS_SEARCH

public static final String KEY_ACTION_ALLOW_ANONYMOUS_SEARCH

See Also:

Constant Field Values

Constructor Detail

SearchSecurityHandlerInterceptor

public SearchSecurityHandlerInterceptor()

Method Detail

preHandle

public boolean preHandle(javax.servlet.http.HttpServletRequest request,
                         javax.servlet.http.HttpServletResponse response,
                         Object handler)
                  throws Exception

Specified by:

preHandle in interface org.springframework.web.servlet.HandlerInterceptor

Overrides:

preHandle in class org.springframework.web.servlet.handler.HandlerInterceptorAdapter

Throws:

Exception