Batch Test improvements

[aaf/authz.git] / cadi / core / src / main / java / org / onap / aaf / cadi / filter / CadiFilter.java
diff --git a/cadi/core/src/main/java/org/onap/aaf/cadi/filter/CadiFilter.java b/cadi/core/src/main/java/org/onap/aaf/cadi/filter/CadiFilter.java

index cd48556..01bf6f2 100644 (file)
--- a/cadi/core/src/main/java/org/onap/aaf/cadi/filter/CadiFilter.java
+++ b/cadi/core/src/main/java/org/onap/aaf/cadi/filter/CadiFilter.java
@@ -71,7 +71,7 @@ public class CadiFilter implements Filter {
      private static List<Pair> mapPairs;
      private Access access;
      private Object[] additionalTafLurs;
-    private Filter oauthFilter;
+    private SideChain sideChain;
      private static int count=0;
      
      public Lur getLur() {
@@ -139,7 +139,8 @@ public class CadiFilter implements Filter {
      
  
      @SuppressWarnings("unchecked")
-    private void init(Get getter) throws ServletException {
+    protected void init(Get getter) throws ServletException {
+       sideChain = new SideChain();
          // Start with the assumption of "Don't trust anyone".
         TrustChecker tc = TrustChecker.NOTRUST; // default position
         try {
@@ -158,22 +159,9 @@ public class CadiFilter implements Filter {
             Class<Filter> cf=null;
             try {
                 cf= (Class<Filter>) Class.forName("org.onap.aaf.cadi.oauth.OAuthFilter");
-               oauthFilter = cf.newInstance();
+               sideChain.add(cf.newInstance());
             } catch (ClassNotFoundException e) {
-               oauthFilter = new Filter() { // Null Filter
-                    @Override
-                    public void destroy() {
-                    }
-    
-                    @Override
-                    public void doFilter(ServletRequest req, ServletResponse resp, FilterChain chain)throws IOException, ServletException {
-                        chain.doFilter(req, resp);
-                    }
-    
-                    @Override
-                    public void init(FilterConfig arg0) throws ServletException {
-                    }
-               };
+                  access.log(Level.DEBUG, "OAuthFilter not enabled");
             }
         } catch (Exception e) {
             access.log(Level.INIT, "AAFTrustChecker cannot be loaded",e.getMessage());
@@ -238,6 +226,11 @@ public class CadiFilter implements Filter {
              }
          }
  
+        // Add API Enforcement Point
+        String enforce = getter.get(Config.CADI_API_ENFORCEMENT, null, true); 
+        if(enforce!=null && enforce.length()>0) {
+               sideChain.add(new CadiApiEnforcementFilter(access,enforce));
+        }
          // Remove Getter
          getter = Get.NULL;
      }
@@ -287,7 +280,7 @@ public class CadiFilter implements Filter {
                      CadiWrap cw = new CadiWrap(hreq, tresp, httpChecker.getLur(),getConverter(hreq));
                      if (httpChecker.notCadi(cw, hresp)) {
                          startCode=System.nanoTime();
-                        oauthFilter.doFilter(cw,response,chain);
+                        sideChain.doFilter(cw,response,chain);
                          code = Timing.millis(startCode);
                      }
                  }
@@ -310,7 +303,14 @@ public class CadiFilter implements Filter {
      private boolean noAuthn(HttpServletRequest hreq) {
          if (pathExceptions!=null) {
              String pi = hreq.getPathInfo();
-            if (pi==null) return false; // JBoss sometimes leaves null
+            if (pi==null) {
+               // Attempt to get from URI only  (Daniel Rose)
+                pi = hreq.getRequestURI().substring(hreq.getContextPath().length());
+                if(pi==null) {
+                       // Nothing works.
+                       return false; // JBoss sometimes leaves null
+                }
+            }
              for (String pe : pathExceptions) {
                  if (pi.startsWith(pe))return true;
              }