Merge branch 'master' of gitlab.eudat.eu:dmp/OpenAIRE-EUDAT-DMP-service-pilot
This commit is contained in:
commit
b551221222
|
@ -32,8 +32,13 @@ public class CustomAuthenticationProvider implements AuthenticationProvider {
|
||||||
@Override
|
@Override
|
||||||
public Authentication authenticate(Authentication authentication) throws AuthenticationException {
|
public Authentication authenticate(Authentication authentication) throws AuthenticationException {
|
||||||
|
|
||||||
|
System.out.println("AUTHENTICATION");
|
||||||
|
System.out.println(authentication);
|
||||||
|
|
||||||
if (authentication != null) {
|
if (authentication != null) {
|
||||||
|
|
||||||
|
System.out.println((String)authentication.getCredentials());
|
||||||
|
|
||||||
String token = (String)authentication.getCredentials();
|
String token = (String)authentication.getCredentials();
|
||||||
TokenValidator tokenValidator = null;
|
TokenValidator tokenValidator = null;
|
||||||
|
|
||||||
|
@ -65,10 +70,6 @@ public class CustomAuthenticationProvider implements AuthenticationProvider {
|
||||||
throw new AuthenticationServiceException("Authentication failed");
|
throw new AuthenticationServiceException("Authentication failed");
|
||||||
|
|
||||||
|
|
||||||
// //DELETE THIS, USE THE ABOVE
|
|
||||||
// return new UsernamePasswordAuthenticationToken("", "", new ArrayList<>());
|
|
||||||
|
|
||||||
|
|
||||||
}
|
}
|
||||||
|
|
||||||
@Override
|
@Override
|
||||||
|
|
|
@ -45,7 +45,7 @@ public class TokenAuthenticationFilter extends GenericFilterBean {
|
||||||
httpResponse.setHeader("Access-Control-Allow-Origin", "*");
|
httpResponse.setHeader("Access-Control-Allow-Origin", "*");
|
||||||
httpResponse.setHeader("Access-Control-Allow-Methods", "GET, POST, PUT, DELETE, OPTIONS");
|
httpResponse.setHeader("Access-Control-Allow-Methods", "GET, POST, PUT, DELETE, OPTIONS");
|
||||||
httpResponse.setHeader("Access-Control-Max-Age", "7200");
|
httpResponse.setHeader("Access-Control-Max-Age", "7200");
|
||||||
httpResponse.setHeader("Access-Control-Allow-Headers", "content-type, "+HEADER_NATIVE_TOKEN_FIELD+", "+HEADER_GOOGLE_TOKEN_FIELD);
|
httpResponse.setHeader("Access-Control-Allow-Headers", "content-type, X-CSRF-Token, "+HEADER_NATIVE_TOKEN_FIELD+", "+HEADER_GOOGLE_TOKEN_FIELD);
|
||||||
// httpResponse.addHeader("Access-Control-Expose-Headers", "xsrf-token , " +HEADER_NATIVE_TOKEN_FIELD+", "+HEADER_GOOGLE_TOKEN_FIELD);
|
// httpResponse.addHeader("Access-Control-Expose-Headers", "xsrf-token , " +HEADER_NATIVE_TOKEN_FIELD+", "+HEADER_GOOGLE_TOKEN_FIELD);
|
||||||
|
|
||||||
|
|
||||||
|
|
|
@ -20,6 +20,8 @@
|
||||||
|
|
||||||
<!-- Default to Spring MVC's CORS configuration -->
|
<!-- Default to Spring MVC's CORS configuration -->
|
||||||
<cors />
|
<cors />
|
||||||
|
<!-- disable csrf checks -->
|
||||||
|
<csrf disabled="true"/>
|
||||||
|
|
||||||
<custom-filter after="BASIC_AUTH_FILTER" ref="tokenAuthenticationFilter" />
|
<custom-filter after="BASIC_AUTH_FILTER" ref="tokenAuthenticationFilter" />
|
||||||
<intercept-url pattern="/**" access="isAuthenticated()" />
|
<intercept-url pattern="/**" access="isAuthenticated()" />
|
||||||
|
|
Loading…
Reference in New Issue