保誠-保戶業務員媒合平台
究查 | 歷程 | 原始
jack
2023-08-11 6bcbe72b43d6fa041d06878d1dae09a6d8903895 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75

package com.pollex.pam.security.jwt;


 


import java.io.IOException;


import java.util.Optional;


 


import javax.servlet.FilterChain;


import javax.servlet.ServletException;


import javax.servlet.ServletRequest;


import javax.servlet.ServletResponse;


import javax.servlet.http.HttpServletRequest;


import javax.servlet.http.HttpServletResponse;


 


import org.springframework.beans.factory.annotation.Autowired;


import org.springframework.security.core.Authentication;


import org.springframework.security.core.context.SecurityContextHolder;


import org.springframework.stereotype.Component;


import org.springframework.util.StringUtils;


import org.springframework.web.filter.GenericFilterBean;


 


import com.pollex.pam.business.domain.TokenBlackList;


import com.pollex.pam.business.repository.TokenBlackListRepository;


 


/**


 * Filters incoming requests and installs a Spring Security principal if a header corresponding to a valid user is


 * found.


 */


public class JWTFilter extends GenericFilterBean {


 


    public static final String AUTHORIZATION_HEADER = "Authorization";


 


    public static final String AUTHORIZATION_TOKEN = "access_token";


 


    private final TokenProvider tokenProvider;


    


 


    public JWTFilter(TokenProvider tokenProvider) {


        this.tokenProvider = tokenProvider;


    }


 


    @Override


    public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain)


        throws IOException, ServletException {


        HttpServletRequest httpServletRequest = (HttpServletRequest) servletRequest;


        String jwt = resolveToken(httpServletRequest);


        if(StringUtils.hasText(jwt) && !jwt.equals("null")) {


            boolean isBlackToken = this.tokenProvider.isBlackListToken(jwt);


            if(isBlackToken) {


                HttpServletResponse response = (HttpServletResponse) servletResponse;


                response.setStatus(HttpServletResponse.SC_UNAUTHORIZED);


            }


        }


        


        if (StringUtils.hasText(jwt) && this.tokenProvider.validateToken(jwt)) {


 


            Authentication authentication = this.tokenProvider.getAuthentication(jwt);


            SecurityContextHolder.getContext().setAuthentication(authentication);


        }


        


        filterChain.doFilter(servletRequest, servletResponse);


    }


 


    private String resolveToken(HttpServletRequest request) {


        


        String bearerToken = request.getHeader(AUTHORIZATION_HEADER);


        if (StringUtils.hasText(bearerToken) && bearerToken.startsWith("Bearer ")) {


            return bearerToken.substring(7);


        }


        String jwt = request.getParameter(AUTHORIZATION_TOKEN);


        


        if (StringUtils.hasText(jwt)) {


            return jwt;


        }


        return null;


    }


}