java source code of HeimdallDecorationFilter

heimdall-master
- .github
  - gifs
  - ISSUE_TEMPLATE
    - Feature_request.md
    - Bug_report.md
- Procfile
- _config.yml
- pom.xml
- heimdall-core
  - src
    - main
      - resources
        liquibase
        changelog
        20190222142000-recreate-default-plan-column.xml
        20181203115559-update-table-provider-with-provider-default.xml
        20190128114155-recreate-table-oauth-authorizes.xml
        20180719142230-add_columns-grantType-expirationDate-expirationTime-in-oauth-authorizes.xml
        20180718115333-add-column-id-and-update-unique-constraints-in-oauth-authorizes.xml
        20180905160326-add-column-password-in-developer.xml
        20181129141113-remove-null-constraints-from-value-in-provider-param.xml
        20181112113200-added-scopes-structure.xml
        20180709102922-update-unique-constraints-environments.xml
        20190121145232-add-column-default-plan-in-plan.xml
        20181008152933-delete-rows-log-interceptors.xml
        20190219164000-add-column-status-interceptor-table.xml
        20180718175848-update-column-token-in-oauth-authorizes.xml
        20180525101925-create-table-oauth-authorizes.xml
        20180517013922-create-table-provider-and-paramsprovider.xml
        20181112120123-add-column-cors-enabled-in-api.xml
        20180501121201-initial-core-schemes.xml
        master.xml
      - java
        br
        com
        conductor
        heimdall
        core
        dto
        ProviderParamsDTO.java
        ApiDTO.java
        ProviderDTO.java
        page
        AppPage.java
        ProviderPage.java
        InterceptorPage.java
        MiddlewarePage.java
        AccessTokenPage.java
        PlanPage.java
        ScopePage.java
        DeveloperPage.java
        OperationPage.java
        ResourcePage.java
        ApiPage.java
        EnvironmentPage.java
        LogTraceDTOPage.java
        PageableDTO.java
        response
        TokenImplicit.java
        integration
        ReferenceAppDTO.java
        ReferenceCodeDTO.java
        AppCallbackDTO.java
        AccessTokenDTO.java
        BeanValidationErrorDTO.java
        MiddlewareDTO.java
        ResourceDTO.java
        ScopeDTO.java
        ReferenceIdDTO.java
        request
        AccessTokenRequest.java
        DeveloperLogin.java
        AppRequestDTO.java
        OAuthRequest.java
        PageDTO.java
        PlanDTO.java
        OperationDTO.java
        InterceptorDTO.java
        interceptor
        MockDTO.java
        IpsDTO.java
        LogMaskDTO.java
        LogWriterDTO.java
        AccessTokenClientIdDTO.java
        RateLimitDTO.java
        CacheDTO.java
        OAuthDTO.java
        InterceptorFileDTO.java
        DeveloperDTO.java
        EnvironmentDTO.java
        logs
        FiltersDTO.java
        TraceDTO.java
        LogTraceDTO.java
        metrics
        Metric.java
        persist
        AccessTokenPersist.java
        AppPersist.java
        AppDTO.java
        HttpMethodDTO.java
        entity
        ProviderParam.java
        Middleware.java
        Resource.java
        Operation.java
        AccessToken.java
        RateLimit.java
        Developer.java
        Variable.java
        Environment.java
        Scope.java
        TokenOAuth.java
        Plan.java
        Api.java
        LogTrace.java
        Provider.java
        Interceptor.java
        OAuthAuthorize.java
        App.java
        enums
        TypeOAuth.java
        InterceptorLifeCycle.java
        TypeInterceptor.java
        Interval.java
        Location.java
        Status.java
        Periods.java
        TypeExecutionPoint.java
        HttpMethod.java
        environment
        Property.java
        CustomInformationInfo.java
        trace
        RequestResponseParser.java
        Trace.java
        TraceContextHolder.java
        StackTrace.java
        FilterDetail.java
        GeneralTrace.java
        util
        ConstantsPath.java
        LocalDateTimeDeserializer.java
        UrlUtil.java
        JwtUtils.java
        LocalDateTimeSerializer.java
        JsonUtils.java
        ConstantsCache.java
        Pageable.java
        DigestUtils.java
        GenerateMustache.java
        RabbitQueueUtils.java
        ConstantsOAuth.java
        BeanManager.java
        ConstantsInterceptors.java
        Constants.java
        ContentTypeUtils.java
        MongoLogConnector.java
        RabbitConstants.java
        CalendarUtils.java
        ConstantsTag.java
        StringUtils.java
        TemplateUtils.java
        Page.java
        service
        amqp
        AMQPCacheService.java
        AMQPReferenceService.java
        AMQPInterceptorService.java
        AMQPMiddlewareService.java
        AMQPRouteService.java
        InterceptorService.java
        ResourceService.java
        SwaggerService.java
        OAuthService.java
        AccessTokenService.java
        ApiService.java
        MiddlewareService.java
        ScopeService.java
        PlanService.java
        OperationService.java
        DeveloperService.java
        MetricsService.java
        TraceService.java
        EnvironmentService.java
        AppService.java
        FileService.java
        CacheService.java
        ProviderService.java
        exception
        TimeoutException.java
        ForbiddenException.java
        ExceptionMessage.java
        ServerErrorException.java
        ProviderException.java
        BadRequestException.java
        MultipartException.java
        UnauthorizedException.java
        NotFoundException.java
        HeimdallException.java
        CircuitBreakerException.java
        spec
        Json.java
        interceptor
        impl
        OAuthHeimdallInterceptor.java
        LogWriterHeimdallInterceptor.java
        WhitelistHeimdallInterceptor.java
        CacheHeimdallInterceptor.java
        BlacklistHeimdallInterceptor.java
        CacheClearHeimdallInterceptor.java
        MiddlewareHeimdallInterceptor.java
        AccessTokenHeimdallInterceptor.java
        ClientIdHeimdallInterceptor.java
        MockHeimdallInterceptor.java
        LogMaskerHeimdallInterceptor.java
        RattingHeimdallInterceptor.java
        CORSHeimdallInterceptor.java
        IdentifierHeimdallInterceptor.java
        CustomHeimdallInterceptor.java
        HeimdallInterceptor.java
        converter
        GenericConverter.java
        repository
        impl
        RateLimitRepositoryImpl.java
        OAuthAuthorizeRepository.java
        ScopeRepository.java
        jdbc
        MiddlewareJDBCRepository.java
        InterceptorJDBCRepository.java
        OperationJDBCRepository.java
        ApiJDBCRepository.java
        ResourceRepository.java
        ProviderRepository.java
        RateLimitRepository.java
        EnvironmentRepository.java
        PlanRepository.java
        MiddlewareRepository.java
        ApiRepository.java
        AppRepository.java
        AccessTokenRepository.java
        InterceptorRepository.java
        OperationRepository.java
        DeveloperRepository.java
    - test
      - java
        br
        com
        conductor
        heimdall
        core
        util
        ContentTypeUtilsTest.java
        TemplateInterceptorUtil.java
        service
        OperationServiceTest.java
        ProviderServiceTest.java
        AppServiceTest.java
        SwaggerServiceTest.java
        ApiServiceTest.java
        ScopeServiceTest.java
        AccessTokenServiceTest.java
        ResourceServiceTest.java
        DeveloperServiceTest.java
        EnvironmentServiceTest.java
        TraceServiceTest.java
        PlanServiceTest.java
        MiddlewareServiceTest.java
        exception
        ExceptionMessageTest.java
  - pom.xml
- heimdall-api
  - src
    - main
      - resources
        application.yml
        liquibase
        changelog
        20180727185833-create-table-credential-state.xml
        20181206115232-add-unique-constraints-to-role-name.xml
        20180815150000-insert-privileges-ldap.xml
        20180815151344-add-privileges-ldap-to-role-admin.xml
        DATA_PRIVILEGES_1.xml
        DATA_ROLES_1.xml
        DATA_USERS_1.xml
        DATA_USERS_ROLES_1.xml
        20180808111111-insert-privileges-to-middlewares.xml
        20180521092430-insert-privileges-to-provider.xml
        20181128143000-removed-duplicates-privileges-and-added-unique-constraint.xml
        20180815115422-create-table-ldap.xml
        20181112145330-insert-privileges-for-scopes.xml
        20190219165100-change-ldap-length-column.xml
        20180808111213-add-privileges-middleware-to-role-admin.xml
        20180501121201-initial-api-schemes.xml
        DATA_ROLES_PRIVILEGES_1.xml
        20180814190556-add-privileges-to-role-default.xml
        20180918144230-insert-privileges-for-logtraces.xml
        20180914095523-create-user-portal-with-role-and-privileges.xml
        20180521101715-add-privileges-provider-to-role-admin.xml
        20180918144310-insert-privileges-for-metrics.xml
        master.xml
        logback-spring.xml
        banner.txt
        static
        v1
        swagger-ui.css
        oauth2-redirect.html
        swagger-ui.css.map
        swagger-ui-standalone-preset.js.map
        swagger-ui-bundle.js.map
        index.html
        swagger-ui.js.map
      - java
        br
        com
        conductor
        heimdall
        api
        security
        CredentialAuthority.java
        CredentialSecurity.java
        AccountCredentials.java
        HeimdallLdapAuthoritiesPopulator.java
        configuration
        SwaggerConfiguration.java
        CryptoConfiguration.java
        SecurityConfiguration.java
        CORSFilter.java
        GlobalExceptionHandler.java
        DataBaseConfiguration.java
        RedisConfiguration.java
        RabbitConfiguration.java
        resource
        ProviderResource.java
        AccessTokenResource.java
        MetricsResource.java
        OperationResource.java
        MiddlewareResource.java
        TracesResource.java
        PlanResource.java
        EnvironmentResource.java
        LdapResource.java
        ResourceResource.java
        CacheResource.java
        UserResource.java
        AuthResource.java
        PrivilegeResource.java
        DeveloperResource.java
        ApiResource.java
        InterceptorResource.java
        AppResource.java
        ScopeResource.java
        RoleResource.java
        dto
        RoleDTO.java
        page
        RolePage.java
        PrivilegePage.java
        UserPage.java
        UserAuthenticateResponse.java
        UserDTO.java
        UserPasswordDTO.java
        PrivilegeDTO.java
        LdapDTO.java
        UserEditDTO.java
        entity
        Privilege.java
        CredentialState.java
        Role.java
        Ldap.java
        User.java
        enums
        TypeUser.java
        CredentialStateEnum.java
        integration
        IntegrationResource.java
        environment
        JwtProperty.java
        util
        ZipUtils.java
        ConstantsPrivilege.java
        service
        CustomUserDetailsService.java
        UserService.java
        CredentialStateService.java
        LdapService.java
        RoleService.java
        TokenAuthenticationService.java
        PrivilegeService.java
        repository
        CredentialStateRepository.java
        RoleRepository.java
        PrivilegeRepository.java
        LdapRepository.java
        UserRepository.java
        filter
        JWTAuthenticationFilter.java
        ApiApplication.java
    - test
      - resources
        application.yml
        bootstrap.yml
      - java
        br
        com
        conductor
        heimdall
        api
        configuration
        RedisTestConfiguration.java
        resource
        RoleResourceTest.java
        UserResourceTest.java
        AccessTokenResourceTest.java
        integration
        IntegrationResourceTest.java
        service
        RoleServiceTest.java
        UserServiceTest.java
    - docker
      - prod
        rancher-compose.yml
        docker-compose.yml
      - hmlg
        rancher-compose.yml
        docker-compose.yml
  - pom.xml
- CNAME
- LICENSE
- heimdall-middleware-spec
  - src
    - main
      - java
        br
        com
        conductor
        heimdall
        middleware
        enums
        DBType.java
        HttpStatus.java
        util
        helpermock
        DBMockImpl.java
        CallMockImpl.java
        HttpMockImpl.java
        JsonMockImpl.java
        HelperMock.java
        ApiResponseMockImpl.java
        XmlMockImpl.java
        call
        ResponseMock.java
        RequestMock.java
        EnvironmentMock.java
        HeaderMock.java
        StackTraceMock.java
        QueryMock.java
        InfoMock.java
        TraceMock.java
        Page.java
        exception
        BeanValidationException.java
        ForbiddenException.java
        ExceptionMessage.java
        ServerErrorException.java
        BadRequestException.java
        UnauthorizedException.java
        MiddlewareException.java
        NotFoundException.java
        spec
        Json.java
        Middleware.java
        Header.java
        Trace.java
        DB.java
        Query.java
        Response.java
        Helper.java
        Environment.java
        ApiResponse.java
        Request.java
        Call.java
        DBMongo.java
        Http.java
        StackTrace.java
        Xml.java
        Info.java
    - test
      - java
        br
        com
        conductor
        heimdall
        middleware
        util
        helpermock
        call
        RequestMockTest.java
  - pom.xml
- CONTRIBUTING.md
- heimdall-frontend
  - src
    - utils
      - CommonUtils.js
      - PrivilegeUtils.js
      - UUID.js
      - FilterTraceUtils.js
      - EnumFiltersUtils.js
      - FileUtils.js
      - InterceptorUtils.js
      - Http.js
      - InterceptorContentUtils.js
      - particles.json
      - BadgeUtils.js
      - OrderInterceptorsUtisl.js
      - ColorUtils.js
      - TagColorUtils.js
      - JwtUtils.js
    - services
      - InfoService.js
      - InterceptorService.js
      - ResourceService.js
      - TraceService.js
      - AppService.js
      - CacheService.js
      - RoleService.js
      - PlanService.js
      - DeveloperService.js
      - SessionService.js
      - PrivilegeService.js
      - ApiService.js
      - ProviderService.js
      - OperationService.js
      - MiddlewareService.js
      - UserService.js
      - index.js
      - LdapService.js
      - AccessTokenService.js
      - EnvironmentService.js
      - ScopeService.js
    - i18n
      - en.js
      - pt-br.js
      - i18n.js
    - actions
      - plans
        index.js
      - resources
        index.js
      - access-tokens
        index.js
      - operations
        index.js
      - roles.js
      - queues.js
      - interceptors
        index.js
      - apis
        index.js
      - cache.js
      - privileges.js
      - scopes.js
      - traces.js
      - providers.js
      - apps
        index.js
      - ldap.js
      - middlewares
        index.js
      - navbar.js
      - developers
        index.js
      - auth
        index.js
      - users.js
      - environments
        index.js
      - session.js
    - reducers
      - Traces.js
      - plans
        index.js
      - resources
        index.js
      - Roles.js
      - access-tokens
        index.js
      - operations
        index.js
      - Privileges.js
      - interceptors
        index.js
      - apis
        index.js
      - Scopes.js
      - Queue.js
      - apps
        index.js
      - Ldap.js
      - middlewares
        index.js
      - developers
        index.js
      - Navbar.js
      - auth
        index.js
      - Caches.js
      - Users.js
      - Session.js
      - environments
        index.js
      - index.js
      - Providers.js
    - containers
      - Operations.js
      - Middlewares.js
      - UsersChangePassword.js
      - Traces.js
      - Plans.js
      - Roles.js
      - SingleRole.js
      - Resources.js
      - Scopes.js
      - SingleTrace.js
      - ModalSession.js
      - SingleApp.js
      - SingleEnvironment.js
      - Environments.js
      - Login.js
      - App.js
      - AccessTokens.js
      - SingleUser.js
      - SingleLdap.js
      - Users.js
      - SingleDeveloper.js
      - SingleAccessToken.js
      - Apps.js
      - Developers.js
      - SingleProvider.js
      - Providers.js
      - Interceptors.js
      - SinglePlan.js
    - components
      - icons
        SwaggerIcon.js
      - providers
        ListProviders.js
        ListProviderParams.js
        ProviderParamForm.js
        ProviderForm.js
      - charts
        TopFiveAppsByCalls.js
        TokensPerformanceByMonth.js
        SuccessCallsVersusErros.js
        CallsPerformaceByMonth.js
      - plans
        PlanForm.js
        ListPlans.js
      - layout
        MainLayout.js
        LoginLayout.js
      - ldap
        LdapForm.js
      - resources
        ResourceForm.js
      - access-tokens
        ListAccessTokens.js
        AccessTokenForm.js
      - operations
        OperationForm.js
      - interceptors
        InterceptorForm.js
        Index.js
        DropClientInterceptors.js
        DnDInterceptor.js
        DnDInterceptorType.js
        wrappers
        Cors.js
        CacheClear.js
        OAuth.js
        AccessToken.js
        Cache.js
        Ratting.js
        Default.js
        LogMasker.js
        Mock.js
        Ips.js
        LogWriter.js
        Identifier.js
        ClientId.js
      - policy
        ComponentAuthority.js
        Authorization.js
      - apis
        Monitors.js
        SingleListApis.js
        SingleApi.js
        EditOperation.js
        ApiFlows.js
        NewApiOverview.js
        ApiInfo.js
        ListResourceOperations.js
        Index.js
        NewApi.js
        ApiDefinition.js
        ListApis.js
        NewApiResources.js
        SingleResource.js
        ResourceOperationForm.js
        SingleApiSwaggerEditor.js
        ApiInterceptors.js
      - ui
        Logo.js
        SidebarLink.js
        SideBar.js
        Breadcrumb.js
        PageHeader.js
        NavBar.js
        FloatSearch.js
        RouteButton.js
        FloatButton.js
        ShowErrors.js
        FloatMenu.js
        Loading.js
        PairField.js
      - scopes
        ListScopes.js
        ScopeForm.js
      - Home.js
      - apps
        AppForm.js
        ListApps.js
      - users
        UserEditPasswordForm.js
        ListUsers.js
        UserForm.js
      - developers
        DeveloperForm.js
        ListDevelopers.js
      - environments
        EnvironmentForm.js
        ListVariablesEnvironment.js
        ListEnvironments.js
      - roles
        ListRoles.js
        RoleForm.js
      - wrappers
        AppRouter.js
        FadeIn.js
      - collapse
        openAnimationFactory.js
        HeimdallPanel.js
        PanelContent.js
        HeimdallCollapse.js
        openAnimation.js
        index.js
        getRequestAnimationFrame.js
      - traces
        ListTraces.js
      - login
        LoginForm.js
    - constants
      - sidebar-items.js
      - items-types.js
      - privileges-types.js
      - languages.js
      - actions-types.js
    - theme.less
    - middlewares
      - active-router.js
    - styles.less
    - routes
      - index.js
    - index.js
  - .env
  - env.js
  - public
    - favicon.ico
    - manifest.json
    - index.html
    - flags
  - README.md
  - package.json
  - config-overrides.js
  - Dockerfile
  - .env.production
  - .gitignore
  - .dockerignore
- CHANGELOG.md
- heimdall-gateway
  - src
    - main
      - resources
        application.yml
        template-interceptor
        cache.mustache
        whitelist_ip.mustache
        client_id.mustache
        ratting.mustache
        cache_clear.mustache
        cors-pre.mustache
        access_token.mustache
        log_masker.mustache
        identifier.mustache
        log_writer.mustache
        mock.mustache
        middleware.mustache
        custom.mustache
        blacklist_ip.mustache
        oauth.mustache
        logback-spring.xml
        banner.txt
      - java
        br
        com
        conductor
        heimdall
        gateway
        configuration
        ZuulConfiguration.java
        HelperConfiguration.java
        TraceFilter.java
        HeimdallErrorController.java
        MongoConfiguration.java
        GlobalExceptionHandler.java
        HeimdallHandlerMapping.java
        DataBaseConfiguration.java
        RedisConfiguration.java
        LogConfiguration.java
        RabbitConfiguration.java
        task
        ScheduledInterceptors.java
        appender
        MongoDBAppender.java
        failsafe
        CircuitBreakerHolder.java
        CircuitBreakerManager.java
        router
        Credential.java
        CredentialRepository.java
        EnvironmentInfoRepository.java
        EnvironmentInfo.java
        trace
        StackTraceImpl.java
        util
        ConstantsContext.java
        HeimdallFilterFileManager.java
        ResponseHelper.java
        RequestHelper.java
        RouteSort.java
        service
        OAuthInterceptorService.java
        InterceptorFileService.java
        IdentifierInterceptorService.java
        CORSInterceptorService.java
        LogWriterService.java
        LifeCycleService.java
        MockInterceptorService.java
        ClientIdInterceptorService.java
        RattingInterceptorService.java
        CacheInterceptorService.java
        IpsInterceptorService.java
        AccessTokenInterceptorService.java
        LogMaskerService.java
        GatewayApplication.java
        zuul
        route
        HeimdallRoute.java
        ProxyRouteLocator.java
        storage
        CacheZuulRouteStorage.java
        ZuulRouteStorage.java
        filter
        CustomSendResponseFilter.java
        CacheWriterFilter.java
        CustomSendErrorFilter.java
        ScopesFilter.java
        HeimdallDecorationFilter.java
        helper
        Middleware.java
        CallImpl.java
        JsonImpl.java
        ApiResponseImpl.java
        DBMongoImpl.java
        HelperImpl.java
        http
        HeimdallResponseErrorHandler.java
        HttpImpl.java
        XmlImpl.java
        CorsPostFilter.java
        HeimdallFilter.java
        LogRequestFilter.java
        CustomHostRoutingFilter.java
        LogResponseFilter.java
        listener
        InterceptorListener.java
        StartServer.java
        RouteListener.java
        CacheListener.java
        MiddlewareListener.java
    - test
      - java
        br
        com
        conductor
        heimdall
        gateway
        util
        RouteSortTest.java
        service
        ClientIdInterceptorServiceTest.java
        LogMaskerServiceTest.java
        IpsInterceptorServiceTest.java
        CorsServiceTest.java
        zuul
        storage
        CacheZuulRouteStorageTest.java
        filter
        helper
        HttpImplTest.java
        XmlImplTest.java
        JsonImplTest.java
        HeimdallDecorationFilterTest.java
        ScopesFilterTest.java
        api
        configuration
        RedisTestConfiguration.java
    - docker
      - prod
        rancher-compose.yml
        docker-compose.yml
      - hmlg
        rancher-compose.yml
        docker-compose.yml
  - pom.xml
- app.json
- .travis.yml
- README.md
- CODE_OF_CONDUCT.md
- .gitignore
- docs
  - .github
    - no-response.yml
    - settings.yml
    - stale.yml
    - CODEOWNERS
    - config.yml
  - script
    - bootstrap
    - cibuild
    - release
    - server
    - validate-html
  - _sass
    - normalize.scss
    - jekyll-theme-cayman.scss
    - rouge-github.scss
    - variables.scss
  - _config.yml
  - Gemfile
  - .rubocop.yml
  - CNAME
  - LICENSE
  - jekyll-theme-cayman.gemspec
  - index.md
  - _layouts
    - default.html
  - another-page.md
  - favicon.ico
  - .travis.yml
  - README.md
  - .gitignore
  - docs
    - CONTRIBUTING.md
    - CODE_OF_CONDUCT.md
    - SUPPORT.md
  - assets
    - img
      - interceptors
      - oauth
    - css
      - style.scss
- docker-compose.yml

/*-
 * =========================LICENSE_START==================================
 * heimdall-gateway
 * ========================================================================
 * Copyright (C) 2018 Conductor Tecnologia SA
 * ========================================================================
 * Licensed under the Apache License, Version 2.0 (the "License")
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 * ==========================LICENSE_END===================================
 */
package br.com.conductor.heimdall.gateway.filter;

import br.com.conductor.heimdall.core.enums.HttpMethod;
import br.com.conductor.heimdall.core.trace.FilterDetail;
import br.com.conductor.heimdall.core.trace.TraceContextHolder;
import br.com.conductor.heimdall.core.util.Constants;
import br.com.conductor.heimdall.core.util.ConstantsPath;
import br.com.conductor.heimdall.core.util.UrlUtil;
import br.com.conductor.heimdall.gateway.router.Credential;
import br.com.conductor.heimdall.gateway.router.CredentialRepository;
import br.com.conductor.heimdall.gateway.router.EnvironmentInfo;
import br.com.conductor.heimdall.gateway.router.EnvironmentInfoRepository;
import br.com.conductor.heimdall.gateway.util.RequestHelper;
import br.com.conductor.heimdall.gateway.zuul.route.HeimdallRoute;
import br.com.conductor.heimdall.gateway.zuul.route.ProxyRouteLocator;
import com.netflix.zuul.context.RequestContext;
import lombok.extern.slf4j.Slf4j;
import org.springframework.cloud.netflix.zuul.filters.ProxyRequestHelper;
import org.springframework.cloud.netflix.zuul.filters.Route;
import org.springframework.cloud.netflix.zuul.filters.ZuulProperties;
import org.springframework.cloud.netflix.zuul.filters.ZuulProperties.ZuulRoute;
import org.springframework.cloud.netflix.zuul.filters.pre.PreDecorationFilter;
import org.springframework.cloud.netflix.zuul.util.RequestUtils;
import org.springframework.http.HttpHeaders;
import org.springframework.http.HttpStatus;
import org.springframework.http.MediaType;
import org.springframework.util.AntPathMatcher;
import org.springframework.util.PathMatcher;
import org.springframework.util.StringUtils;
import org.springframework.web.util.UrlPathHelper;

import javax.servlet.http.HttpServletRequest;
import java.util.List;
import java.util.Map.Entry;
import java.util.Objects;
import java.util.Optional;

import static br.com.conductor.heimdall.core.util.Constants.INTERRUPT;
import static br.com.conductor.heimdall.gateway.util.ConstantsContext.*;
import static org.springframework.cloud.netflix.zuul.filters.support.FilterConstants.*;

/**
 * Extends the {@link PreDecorationFilter}.
 *
 * @author Marcos Filho
 * @author Marcelo Aguiar Rodrigues
 * @author <a href="https://dijalmasilva.github.io" target="_blank">Dijalma Silva</a>
 */
@Slf4j
public class HeimdallDecorationFilter extends PreDecorationFilter {

    private ProxyRouteLocator routeLocator;

    private String dispatcherServletPath;

    private String zuulServletPath;

    private ZuulProperties properties;

    private UrlPathHelper urlPathHelper = new UrlPathHelper();

    private ProxyRequestHelper proxyRequestHelper;

    private PathMatcher pathMatcher = new AntPathMatcher();

    private RequestHelper requestHelper;

    private FilterDetail detail = new FilterDetail();
    
    private CredentialRepository credentialRepository;
    
    private EnvironmentInfoRepository environmentInfoRepository;

    public HeimdallDecorationFilter(ProxyRouteLocator routeLocator, String dispatcherServletPath, ZuulProperties properties, ProxyRequestHelper proxyRequestHelper, RequestHelper requestHelper, CredentialRepository credentialRepository, EnvironmentInfoRepository environmentInfoRepository) {

        super(routeLocator, dispatcherServletPath, properties, proxyRequestHelper);
        this.routeLocator = routeLocator;
        this.properties = properties;
        this.urlPathHelper.setRemoveSemicolonContent(properties.isRemoveSemicolonContent());
        this.dispatcherServletPath = dispatcherServletPath;
        this.proxyRequestHelper = proxyRequestHelper;
        this.zuulServletPath = properties.getServletPath();
        this.requestHelper = requestHelper;
        this.credentialRepository = credentialRepository;
        this.environmentInfoRepository = environmentInfoRepository;
    }

    @Override
    public boolean shouldFilter() {

        long startTime = System.currentTimeMillis();

        boolean should = super.shouldFilter();

        long endTime = System.currentTimeMillis();
        long duration = (endTime - startTime);

        detail.setTimeInMillisShould(duration);
        return should;
    }

    @Override
    public Object run() {

        long startTime = System.currentTimeMillis();
        try {
            process();
            detail.setStatus(Constants.SUCCESS);
        } catch (Exception e) {
            detail.setStatus(Constants.FAILED);
            throw e;
        } finally {
            long endTime = System.currentTimeMillis();

            long duration = (endTime - startTime);

            detail.setTimeInMillisRun(duration);
            TraceContextHolder.getInstance().getActualTrace().addFilter(this.getClass().getSimpleName(), detail);
        }

        return null;

    }

    protected void process() {

        RequestContext ctx = RequestContext.getCurrentContext();
        final String requestURI = getPathWithoutStripSuffix(ctx.getRequest());

        if (pathMatcher.match(ConstantsPath.PATH_MANAGER_PATTERN, requestURI) || "/error".equals(requestURI)) {
            ctx.set(FORWARD_TO_KEY, requestURI);
            return;
        }

        final String method = ctx.getRequest().getMethod().toUpperCase();
        HeimdallRoute heimdallRoute = getMatchingHeimdallRoute(requestURI, method, ctx);

        if (heimdallRoute != null) {

            if (heimdallRoute.isMethodNotAllowed()) {
                ctx.setSendZuulResponse(false);
                ctx.setResponseStatusCode(HttpStatus.METHOD_NOT_ALLOWED.value());
                ctx.setResponseBody(HttpStatus.METHOD_NOT_ALLOWED.getReasonPhrase());
                return;
            }

            if (heimdallRoute.getRoute() == null || heimdallRoute.getRoute().getLocation() == null) {
                log.warn("Environment not configured for this location: {} and inbound: {}", ctx.getRequest().getRequestURL(), requestURI);
                ctx.setSendZuulResponse(false);
                ctx.setResponseStatusCode(HttpStatus.FORBIDDEN.value());
                ctx.setResponseBody("Environment not configured for this inbound");
                ctx.getResponse().setContentType(MediaType.TEXT_PLAIN_VALUE);
                TraceContextHolder.getInstance().getActualTrace().setRequest(requestHelper.dumpRequest());
                return;
            }

            String location = heimdallRoute.getRoute().getLocation();
            ctx.put(REQUEST_URI_KEY, heimdallRoute.getRoute().getPath());
            ctx.put(PROXY_KEY, heimdallRoute.getRoute().getId());
            if (!heimdallRoute.getRoute().isCustomSensitiveHeaders()) {
                this.proxyRequestHelper.addIgnoredHeaders(this.properties.getSensitiveHeaders().toArray(new String[0]));
            } else {
                this.proxyRequestHelper.addIgnoredHeaders(heimdallRoute.getRoute().getSensitiveHeaders().toArray(new String[0]));
            }

            if (heimdallRoute.getRoute().getRetryable() != null) {
                ctx.put(RETRYABLE_KEY, heimdallRoute.getRoute().getRetryable());
            }

            if (location.startsWith(HTTP_SCHEME + ":") || location.startsWith(HTTPS_SCHEME + ":")) {
                ctx.setRouteHost(UrlUtil.getUrl(location));
                ctx.addOriginResponseHeader(SERVICE_HEADER, location);
            } else if (location.startsWith(FORWARD_LOCATION_PREFIX)) {
                ctx.set(FORWARD_TO_KEY, StringUtils.cleanPath(location.substring(FORWARD_LOCATION_PREFIX.length()) + heimdallRoute.getRoute().getPath()));
                ctx.setRouteHost(null);
                return;
            } else {
                // set serviceId for use in filters.route.RibbonRequest
                ctx.set(SERVICE_ID_KEY, location);
                ctx.setRouteHost(null);
                ctx.addOriginResponseHeader(SERVICE_ID_HEADER, location);
            }
            if (this.properties.isAddProxyHeaders()) {
                addProxyHeaders(ctx);
                String xforwardedfor = ctx.getRequest().getHeader(X_FORWARDED_FOR_HEADER);
                String remoteAddr = ctx.getRequest().getRemoteAddr();
                if (xforwardedfor == null) {
                    xforwardedfor = remoteAddr;
                } else if (!xforwardedfor.contains(remoteAddr)) { // Prevent duplicates
                    xforwardedfor += ", " + remoteAddr;
                }
                ctx.addZuulRequestHeader(X_FORWARDED_FOR_HEADER, xforwardedfor);
            }
            if (this.properties.isAddHostHeader()) {
                ctx.addZuulRequestHeader(HttpHeaders.HOST, toHostHeader(ctx.getRequest()));
            }
        } else {
            log.warn("No route found for uri: " + requestURI);
            ctx.setSendZuulResponse(false);
            ctx.setResponseStatusCode(HttpStatus.NOT_FOUND.value());
            ctx.setResponseBody(HttpStatus.NOT_FOUND.getReasonPhrase());
            ctx.getResponse().setContentType(MediaType.TEXT_PLAIN_VALUE);
            TraceContextHolder.getInstance().getActualTrace().setRequest(requestHelper.dumpRequest());
        }
    }

    protected String adjustPath(final String path) {

        String adjustedPath = path;

        if (RequestUtils.isDispatcherServletRequest() && StringUtils.hasText(this.dispatcherServletPath)) {
            if (!this.dispatcherServletPath.equals("/")) {
                adjustedPath = path.substring(this.dispatcherServletPath.length());
                log.debug("Stripped dispatcherServletPath");
            }
        } else if (RequestUtils.isZuulServletRequest()) {
            if (StringUtils.hasText(this.zuulServletPath) && !this.zuulServletPath.equals("/")) {
                adjustedPath = path.substring(this.zuulServletPath.length());
                log.debug("Stripped zuulServletPath");
            }
        } else {
            // do nothing
        }

        log.debug("adjustedPath=" + adjustedPath);
        return adjustedPath;
    }

    protected HeimdallRoute getMatchingHeimdallRoute(String requestURI, String method, RequestContext ctx) {

        boolean auxMatch = false;
        for (Entry<String, ZuulRoute> entry : routeLocator.getAtomicRoutes().get().entrySet()) {
            if (entry.getKey() != null) {
                String pattern = entry.getKey();
                if (this.pathMatcher.match(pattern, requestURI)) {

                    auxMatch = true;
                    List<Credential> credentials = credentialRepository.findByPattern(pattern);
                    Credential credential = null;
                    if (Objects.nonNull(credentials) && !credentials.isEmpty()) {

                        if (method.equals(HttpMethod.OPTIONS.name())) {
                            Optional<Credential> first = credentials.stream().findFirst();
                            if (first.get().isCors()) {
                            	credential = first.get();
                            }
                        }

                        if (Objects.isNull(credential)) {
                        	credential = credentials.stream()
                                    .filter(o -> o.getMethod().equals(HttpMethod.ALL.name()) || method.equals(o.getMethod().toUpperCase()))
                                    .findFirst().orElse(null);
                        }
                    }

                    if (credential != null) {
                        ZuulRoute zuulRoute = entry.getValue();

                        String basePath = credential.getApiBasePath();
                        requestURI = org.apache.commons.lang.StringUtils.removeStart(requestURI, basePath);

                        ctx.put(PATTERN, org.apache.commons.lang.StringUtils.removeStart(pattern, basePath));
                        ctx.put(API_NAME, credential.getApiName());
                        ctx.put(API_ID, credential.getApiId());
                        ctx.put(RESOURCE_ID, credential.getResourceId());
                        ctx.put(OPERATION_ID, credential.getOperationId());
                        ctx.put(OPERATION_PATH, credential.getOperationPath());

                        String host = ctx.getRequest().getHeader("Host");

                        EnvironmentInfo environment;
                        String location = null;
                        if (host != null && !host.isEmpty()) {
                            environment = environmentInfoRepository.findByApiIdAndEnvironmentInboundURL(credential.getApiId(), host.toLowerCase());
                        } else {
                            environment = environmentInfoRepository.findByApiIdAndEnvironmentInboundURL(credential.getApiId(), ctx.getRequest().getRequestURL().toString().toLowerCase());
                        }

                        if (environment != null) {
                            location = environment.getOutboundURL();
                            ctx.put(ENVIRONMENT_VARIABLES, environment.getVariables());
                        }

                        Route route = new Route(zuulRoute.getId(),
                                requestURI,
                                location,
                                "",
                                zuulRoute.getRetryable() != null ? zuulRoute.getRetryable() : false,
                                zuulRoute.isCustomSensitiveHeaders() ? zuulRoute.getSensitiveHeaders() : null);

                        TraceContextHolder traceContextHolder = TraceContextHolder.getInstance();

                        traceContextHolder.getActualTrace().setApiId(credential.getApiId());
                        traceContextHolder.getActualTrace().setApiName(credential.getApiName());
                        traceContextHolder.getActualTrace().setResourceId(credential.getResourceId());
                        traceContextHolder.getActualTrace().setOperationId(credential.getOperationId());

                        return new HeimdallRoute(pattern, route, false);
                    } else {

                        ctx.put(INTERRUPT, true);
                    }
                }
            }
        }

        if (auxMatch) {
            return new HeimdallRoute().methodNotAllowed();
        }

        return null;
    }

    protected String getPathWithoutStripSuffix(HttpServletRequest request) {

        String URI = this.urlPathHelper.getPathWithinApplication(request);

        if (URI.endsWith(ConstantsPath.PATH_ROOT)) {
            URI = org.apache.commons.lang.StringUtils.removeEnd(URI, ConstantsPath.PATH_ROOT);
        }

        URI = adjustPath(URI);

        return URI;
    }

    protected void addProxyHeaders(RequestContext ctx) {

        HttpServletRequest request = ctx.getRequest();
        String host = toHostHeader(request);
        String port = String.valueOf(request.getServerPort());
        String proto = request.getScheme();
        if (hasHeader(request, X_FORWARDED_HOST_HEADER)) {
            host = request.getHeader(X_FORWARDED_HOST_HEADER) + "," + host;
        }
        if (!hasHeader(request, X_FORWARDED_PORT_HEADER)) {
            if (hasHeader(request, X_FORWARDED_PROTO_HEADER)) {
                StringBuilder builder = new StringBuilder();
                for (String previous : StringUtils.commaDelimitedListToStringArray(request.getHeader(X_FORWARDED_PROTO_HEADER))) {
                    if (builder.length() > 0) {
                        builder.append(",");
                    }
                    builder.append(HTTPS_SCHEME.equals(previous) ? HTTPS_PORT : HTTP_PORT);
                }
                builder.append(",").append(port);
                port = builder.toString();
            }
        } else {
            port = request.getHeader(X_FORWARDED_PORT_HEADER) + "," + port;
        }
        if (hasHeader(request, X_FORWARDED_PROTO_HEADER)) {
            proto = request.getHeader(X_FORWARDED_PROTO_HEADER) + "," + proto;
        }
        ctx.addZuulRequestHeader(X_FORWARDED_HOST_HEADER, host);
        ctx.addZuulRequestHeader(X_FORWARDED_PORT_HEADER, port);
        ctx.addZuulRequestHeader(X_FORWARDED_PROTO_HEADER, proto);
    }

    protected boolean hasHeader(HttpServletRequest request, String name) {

        return StringUtils.hasLength(request.getHeader(name));
    }

    protected String toHostHeader(HttpServletRequest request) {

        int port = request.getServerPort();
        if ((port == HTTP_PORT && HTTP_SCHEME.equals(request.getScheme())) || (port == HTTPS_PORT && HTTPS_SCHEME.equals(request.getScheme()))) {
            return request.getServerName();
        } else {
            return request.getServerName() + ":" + port;
        }
    }
}