org.alfresco.repo.web.scripts.solr
Class SOLRAuthenticationFilter

java.lang.Object
  extended by org.alfresco.repo.web.scripts.solr.SOLRAuthenticationFilter
All Implemented Interfaces:
DependencyInjectedFilter

public class SOLRAuthenticationFilter
extends java.lang.Object
implements DependencyInjectedFilter

This filter protects the solr callback urls by verifying MACs on requests and encrypting responses and generating MACs on responses, if the secureComms property is set to "md5". If it is set to "https" or "none", the filter does nothing to the request and response.

Since:
4.0

Nested Class Summary
static class SOLRAuthenticationFilter.GenericResponseWrapper
           
static class SOLRAuthenticationFilter.SecureCommsType
           
 
Constructor Summary
SOLRAuthenticationFilter()
           
 
Method Summary
 void doFilter(javax.servlet.ServletContext context, javax.servlet.ServletRequest request, javax.servlet.ServletResponse response, javax.servlet.FilterChain chain)
          The doFilter method of the Filter is called by the container each time a request/response pair is passed through the chain due to a client request for a resource at the end of the chain.
 void setSecureComms(java.lang.String type)
           
protected  boolean validateTimestamp(java.lang.String timestampStr)
           
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

SOLRAuthenticationFilter

public SOLRAuthenticationFilter()
Method Detail

setSecureComms

public void setSecureComms(java.lang.String type)

doFilter

public void doFilter(javax.servlet.ServletContext context,
                     javax.servlet.ServletRequest request,
                     javax.servlet.ServletResponse response,
                     javax.servlet.FilterChain chain)
              throws java.io.IOException,
                     javax.servlet.ServletException
Description copied from interface: DependencyInjectedFilter
The doFilter method of the Filter is called by the container each time a request/response pair is passed through the chain due to a client request for a resource at the end of the chain. The FilterChain passed in to this method allows the Filter to pass on the request and response to the next entity in the chain.

A typical implementation of this method would follow the following pattern:-
1. Examine the request
2. Optionally wrap the request object with a custom implementation to filter content or headers for input filtering
3. Optionally wrap the response object with a custom implementation to filter content or headers for output filtering
4. a) Either invoke the next entity in the chain using the FilterChain object ( chain.doFilter()),
4. b) or not pass on the request/response pair to the next entity in the filter chain to block the request processing
5. Directly set headers on the response after invocation of the next entity in the filter chain.

Specified by:
doFilter in interface DependencyInjectedFilter
Throws:
java.io.IOException
javax.servlet.ServletException

validateTimestamp

protected boolean validateTimestamp(java.lang.String timestampStr)


Copyright © 2005 - 2010 Alfresco Software, Inc. All Rights Reserved.