RoleInterceptor.java

  1. package edu.ucsb.cs156.rec.interceptors;

  3. import org.springframework.beans.factory.annotation.Autowired;
  4. import org.springframework.stereotype.Component;
  5. import org.springframework.web.servlet.HandlerInterceptor;
  6. import org.springframework.web.servlet.ModelAndView;

  8. import edu.ucsb.cs156.rec.repositories.UserRepository;
  9. import jakarta.servlet.http.HttpServlet;
  10. import jakarta.servlet.http.HttpServletRequest;
  11. import jakarta.servlet.http.HttpServletResponse;
  12. import lombok.extern.slf4j.Slf4j;

  14. import org.springframework.security.core.authority.SimpleGrantedAuthority;
  15. import org.springframework.beans.factory.annotation.Autowired;
  16. import org.springframework.beans.factory.annotation.Value;
  17. import org.springframework.security.core.Authentication;
  18. import org.springframework.security.core.GrantedAuthority;
  19. import org.springframework.security.core.context.SecurityContext;
  20. import org.springframework.security.core.context.SecurityContextHolder;
  21. import org.springframework.security.oauth2.client.authentication.OAuth2AuthenticationToken;
  22. import org.springframework.security.oauth2.core.user.OAuth2User;

  24. import java.util.Optional;
  25. import java.util.HashSet;
  26. import java.util.Set;
  27. import java.util.Collection;
  28. import java.util.stream.Collectors;
  29. import edu.ucsb.cs156.rec.entities.User;

  31. @Slf4j
  32. @Component
  33. public class RoleInterceptor implements HandlerInterceptor {

  35.     @Autowired
  36.     UserRepository userRepository;

  38.     @Override
  39.     public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) {
  40.         Authentication authentication = SecurityContextHolder.getContext().getAuthentication();

  42.         if (authentication.getClass() == OAuth2AuthenticationToken.class) {
  43.             OAuth2User principal = ((OAuth2AuthenticationToken) authentication).getPrincipal();
  44.             String email = principal.getAttribute("email");
  45.             Optional<User> optionalUser = userRepository.findByEmail(email);
  46.             if (optionalUser.isPresent()) {
  47.                 User user = optionalUser.get();
  48.                 Collection<? extends GrantedAuthority> authorities = authentication.getAuthorities();
  49.                 Set<GrantedAuthority> revisedAuthorities = authorities.stream().filter(
  50.                         grantedAuth -> !grantedAuth.getAuthority().equals("ROLE_ADMIN")
  51.                                 && !grantedAuth.getAuthority().equals("ROLE_PROFESSOR")
  52.                                 && !grantedAuth.getAuthority().equals("ROLE_STUDENT"))
  53.                         .collect(Collectors.toSet());
  54.                 if (user.getAdmin()) {
  55.                     revisedAuthorities.add(new SimpleGrantedAuthority("ROLE_ADMIN"));
  56.                 }
  57.                 if (user.getProfessor()) {
  58.                     revisedAuthorities.add(new SimpleGrantedAuthority("ROLE_PROFESSOR"));
  59.                 }
  60.                 if (user.getStudent()) {
  61.                     revisedAuthorities.add(new SimpleGrantedAuthority("ROLE_STUDENT"));
  62.                 }
  63.                 Authentication newAuth = new OAuth2AuthenticationToken(principal, revisedAuthorities,
  64.                         (((OAuth2AuthenticationToken) authentication).getAuthorizedClientRegistrationId()));
  65.                 SecurityContextHolder.getContext().setAuthentication(newAuth);
  66.             }
  67.         }
  68.         return true;
  69.     }
  70. }
Created with JaCoCo 0.8.12.202403310830