Dragonestia/RoomPicker
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

added account json to http header

Browse Source
This commit is contained in:
Andrey Terentev 2024-05-26 20:13:38 +07:00 committed by Andrey Terentev
parent 0ce5427d40
commit 2809bff3b9
2 changed files with 37 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
client-impl/src/main/java/ru/dragonestia/picker/api/impl/util/RestTemplate.java
View File

@ -188,7 +188,7 @@ public class RestTemplate {
throw new NotEnoughPermissions("Not enough permissions");
}
var accountData = json.readValue(response.header("X-Account"), Account.class);
var accountData = json.readValue(response.header("X-RoomPicker-Account"), Account.class);
accountConsumer.accept(accountData);
var exceptionClass = response.header("X-Server-Exception");

36
server/src/main/java/ru/dragonestia/picker/security/AccountHeadersFilter.java Normal file
View File

@ -0,0 +1,36 @@
package ru.dragonestia.picker.security;
import com.fasterxml.jackson.databind.ObjectMapper;
import jakarta.servlet.*;
import jakarta.servlet.annotation.WebFilter;
import jakarta.servlet.http.HttpServletResponse;
import lombok.RequiredArgsConstructor;
import org.springframework.security.core.context.SecurityContextHolder;
import org.springframework.stereotype.Component;
import ru.dragonestia.picker.model.account.Account;
import ru.dragonestia.picker.model.account.Permission;
import java.io.IOException;
import java.util.ArrayList;
import java.util.List;
@WebFilter
@Component
@RequiredArgsConstructor
public class AccountHeadersFilter implements Filter {
private final ObjectMapper objectMapper;
@Override
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
var account = (Account) SecurityContextHolder.getContext().getAuthentication().getPrincipal();
var data = new AccountData(account.getId().getValue(), new ArrayList<>(account.getAuthorities()), account.isLocked());
HttpServletResponse httpServletResponse = (HttpServletResponse) response;
httpServletResponse.setHeader("X-RoomPicker-Account", objectMapper.writeValueAsString(data));
chain.doFilter(request, response);
}
public record AccountData(String id, List<Permission> permissions, boolean locked) {}
}