@Override public String getHost() { return request.getServletRequest().getServerName(); }
@Override public int getPort() { return request.getServletRequest().getServerPort(); }
public static String formatApiEndPoint(String apiEndPoint) { if (apiEndPoint.contains("{context}")) { String contextPath = Request.tryGetCurrent().getServletRequest().getContextPath(); apiEndPoint = apiEndPoint.replace("{context}", Strings.trimStart(contextPath, '/')); //apiEndPoint=apiEndPoint.replace("//", "/"); } if (apiEndPoint.contains("~")) { HttpServletRequest request = Request.tryGetCurrent().getServletRequest(); apiEndPoint = apiEndPoint.replace("~", Strings.format("{0}://{1}:{2}", request.getScheme(), curServerLocalIp(), request.getLocalPort())); } if (apiEndPoint.startsWith("/")) { HttpServletRequest request = Request.tryGetCurrent().getServletRequest(); apiEndPoint = Strings.format("{0}://{1}:{2}", request.getScheme(), "127.0.0.1", request.getLocalPort()) + apiEndPoint; } if (Strings.endsWith(apiEndPoint, "/")) { apiEndPoint = Strings.trimEnd(apiEndPoint, '/'); } return apiEndPoint; }
@Override public Token extractTokenFromRequest(Request request) { String v = extractToken(request.getServletRequest()); return extractTokenFromString(v,request.getParameters()); }
@Override public ResAccessToken extractTokenFromRequest(Request request) { String v = extractToken(request.getServletRequest()); return extractTokenFromString(v,request.getParameters()); }
protected String buildClientRedirectUri(Request request) { String uri; //todo: reverse proxy String redirectUri = config.getRedirectUri(); if (Strings.isEmpty(redirectUri)) { uri = request.getServletRequest().getRequestURL().toString(); }else{ if(Strings.startsWithIgnoreCase(redirectUri,"http")) { uri = redirectUri; }else{ uri = request.getContextUrl() + redirectUri; } String returnUrl = sc.getReturnUrlParameterName() + "=" + Urls.encode(request.getUri()); uri = Urls.appendQueryString(uri, returnUrl); } String redirectBack = REDIRECT_BACK_PARAM + "=1"; return Urls.appendQueryString(uri, redirectBack); }
@Override public State preExecuteAction(ActionContext context, Validation validation) throws Throwable { if(!isEnabled(context)) { return State.CONTINUE; } Request request = context.getRequest(); //Ignore GET request if(request.isMethod(HTTP.Method.GET)) { return State.CONTINUE; } //Check ignored if(CSRF.isIgnored(request.getServletRequest())) { return State.CONTINUE; } CsrfToken token = CSRF.getGeneratedToken(request); checkCsrfToken(request, token); return State.CONTINUE; }
CSRF.ignore(request.getServletRequest());
CSRF.ignore(request.getServletRequest());