Skip to content
GitLab
Menu
Projects
Groups
Snippets
Help
Help
Support
Community forum
Keyboard shortcuts
?
Submit feedback
Sign in
Toggle navigation
Menu
Open sidebar
reg-app
Regapp
Commits
25445085
Commit
25445085
authored
Mar 02, 2015
by
michael.simon
Browse files
expose user ids from normal or admin user via servlet attribute
parent
a83ac076
Changes
2
Hide whitespace changes
Inline
Side-by-side
bwreg-webapp/src/main/java/edu/kit/scc/webreg/rest/ServiceAdminController.java
View file @
25445085
...
...
@@ -29,7 +29,6 @@ import edu.kit.scc.webreg.sec.SecurityFilter;
import
edu.kit.scc.webreg.service.RegistryService
;
import
edu.kit.scc.webreg.service.ServiceService
;
import
edu.kit.scc.webreg.service.UserService
;
import
edu.kit.scc.webreg.util.SessionManager
;
@Path
(
"/service-admin"
)
public
class
ServiceAdminController
{
...
...
@@ -46,9 +45,6 @@ public class ServiceAdminController {
@Inject
private
ServiceService
serviceService
;
@Inject
private
SessionManager
sessionManager
;
@Path
(
value
=
"/depro/list/{ssn}"
)
@Produces
({
"application/json"
})
@GET
...
...
@@ -56,8 +52,8 @@ public class ServiceAdminController {
throws
IOException
,
NoItemFoundException
{
ServiceEntity
serviceEntity
=
serviceService
.
findByShortName
(
ssn
);
System
.
out
.
println
(
""
+
sessionManager
.
getUserId
(
));
System
.
out
.
println
(
""
+
request
.
getAttribute
(
SecurityFilter
.
ADMIN_
USER
));
System
.
out
.
println
(
""
+
request
.
getAttribute
(
SecurityFilter
.
ADMIN_USER_ID
));
System
.
out
.
println
(
""
+
request
.
getAttribute
(
SecurityFilter
.
USER
_ID
));
List
<
RegistryEntityDto
>
deproList
=
registryDtoService
.
findRegistriesForDepro
(
serviceEntity
.
getShortName
());
return
deproList
;
...
...
bwreg-webapp/src/main/java/edu/kit/scc/webreg/sec/SecurityFilter.java
View file @
25445085
...
...
@@ -41,7 +41,8 @@ import edu.kit.scc.webreg.util.SessionManager;
@WebFilter
(
urlPatterns
=
{
"/*"
})
public
class
SecurityFilter
implements
Filter
{
public
static
final
String
ADMIN_USER
=
"_admin_user"
;
public
static
final
String
ADMIN_USER_ID
=
"_admin_user_id"
;
public
static
final
String
USER_ID
=
"_user_id"
;
@Inject
private
Logger
logger
;
...
...
@@ -147,7 +148,8 @@ public class SecurityFilter implements Filter {
session
.
setRoles
(
roles
);
if
(
accessChecker
.
check
(
path
,
roles
))
{
request
.
setAttribute
(
ADMIN_USER
,
adminUser
.
getId
());
request
.
setAttribute
(
ADMIN_USER_ID
,
adminUser
.
getId
());
request
.
setAttribute
(
USER_ID
,
session
.
getUserId
());
chain
.
doFilter
(
request
,
response
);
}
else
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
.
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment