• Example Search
• Project Search

• Java
• Python
• JavaScript
• TypeScript
• C++
• Scala
• Blog

• smui-master
  • suppress-checks.xml
  • Makefile
  • build
    • shipping
      • conf
        • logback.xml
    • centos
      • bootstrap.sh
      • Vagrantfile
    • Dockerfile
  • public
    • stylesheets
      • styles.css
  • testData.sql
  • tslint.json
  • LICENSE
  • test
    • utils
      • MysqlTestBase.scala
      • WithInMemoryDB.scala
      • PostgresTestBase.scala
      • SqliteTestBase.scala
    • resources
      • logback-test.xml
      • TestPredefinedTags.json
    • models
      • TestData.scala
      • PostgresCompatibilitySpec.scala
      • InputTagSpec.scala
      • MysqlCompatibilitySpec.scala
      • RulesTxtDeploymentServiceSpec.scala
      • DBCompatibilitySpec.scala
      • SqliteCompatibilitySpec.scala
      • ApplicationTestBase.scala
      • SearchInputWithRulesSpec.scala
      • QuerqyRulesTxtGeneratorSpec.scala
    • controllers
      • HealthControllerSpec.scala
    • auth
      • JWTJsonAuthenticatedActionSpec.scala
  • project
    • build.properties
    • plugins.sbt
  • .travis.yml
  • README.md
  • tsconfig.test.json
  • app
    • views
      • home.scala.html
    • models
      • Id.scala
      • InputTag.scala
      • TagContent.scala
      • PredefinedTag.scala
      • DatabaseExecutionContext.scala
      • FeatureToggleModel.scala
      • SuggestedSolrField.scala
      • DeploymentScriptResult.scala
      • rules
        • RedirectRule.scala
        • SynonymRule.scala
        • Rule.scala
        • DeleteRule.scala
        • UpDownRule.scala
        • FilterRule.scala
      • QuerqyRulesTxtGenerator.scala
      • SearchInput.scala
      • TagInputAssociation.scala
      • SearchInputWithRules.scala
      • RulesTxtDeploymentService.scala
      • SearchManagementRepository.scala
      • SolrIndex.scala
    • controllers
      • ApiControllerHelperRulesTxt.scala
      • HomeController.scala
      • HealthController.scala
      • ApiController.scala
      • auth
        • JWTJsonAuthenticatedAction.scala
        • BasicAuthAuthenticatedAction.scala
        • AuthActionFactory.scala
    • assets
      • systemjs-angular-loader.js
      • systemjs.config.js
      • app
        • app.component.css
        • app.component.html
        • http-auth-interceptor.ts
        • feature-toggle.service.ts
        • app-routing.module.ts
        • search-input-list.component.ts
        • app.module.ts
        • search-management.service.ts
        • search-management.model.ts
        • search-input-detail.component.html
        • app.component.ts
        • search-input-detail.component.css
        • search-input-detail.component.ts
        • search-input-list.component.html
        • main.ts
        • search-input-list.component.css
  • build.sbt
  • tsconfig.json
  • .gitignore
  • docs
    • example_rest_crud.py
  • conf
    • application.conf
    • smui2solr.sh
    • logback.xml
    • evolutions
      • default
        • 2.sql
        • 1.sql
        • 3.sql
        • 4.sql
    • messages
    • smui2git.sh
    • routes

package controllers.auth

import java.util.Base64

import play.api.{Configuration, Logging}
import play.api.mvc._

import scala.concurrent.{ExecutionContext, Future}
import scala.util.control.Exception.allCatch

class BasicAuthAuthenticatedAction(parser: BodyParsers.Default, appConfig: Configuration)(implicit ec: ExecutionContext)
  extends ActionBuilderImpl(parser) with Logging {

  logger.debug("In BasicAuthAuthenticatedAction")

  val BASIC_AUTH_USER = appConfig.getOptional[String]("smui.BasicAuthAuthenticatedAction.user") match {
    case Some(strUser: String) =>
      strUser
    case None =>
      logger.error(":: No value for smui.BasicAuthAuthenticatedAction.user found. Setting user to super-default.")
      "smui"
  }

  val BASIC_AUTH_PASS = appConfig.getOptional[String]("smui.BasicAuthAuthenticatedAction.pass") match {
    case Some(strUser: String) =>
      strUser
    case None =>
      logger.error(":: No value for smui.BasicAuthAuthenticatedAction.pass found. Setting pass to super-default.")
      "smui"
  }

  override def invokeBlock[A](request: Request[A], block: Request[A] => Future[Result]): Future[Result] = {

    logger.debug(s":: invokeBlock :: request.path = ${request.path}")

    /**
      * Helper method to verify, that the request is basic authenticated with configured user/pass.
      * Code is adopted from: https://dzone.com/articles/play-basic-authentication
      *
      * @param request
      * @return {{true}}, for user is authenticated.
      */
    def requestAuthenticated(request: Request[A]): Boolean = {

      request.headers.get("Authorization") match {
        case Some(authorization: String) =>
          authorization.split(" ").drop(1).headOption.filter { encoded =>
            val authInfo = new String(Base64.getDecoder().decode(encoded.getBytes)).split(":").toList
            allCatch.opt {
              val (username, password) = (authInfo.head, authInfo(1))
              username.equals(BASIC_AUTH_USER) && password.equals(BASIC_AUTH_PASS)
            } getOrElse false
          }.exists(_ => true)
        case None => false
      }
    }

    if (requestAuthenticated(request)) {
      block(request)
    } else {
      Future {
        // TODO return error JSON with authorization violation details, redirect target eventually (instead of empty 401 body)
        Results.Unauthorized("401 Unauthorized").withHeaders(("WWW-Authenticate", "Basic realm=SMUI"))
      }
    }
  }
}