Merge pull request #9 from Hashara/jwtauth

Jwtauth

Author: Hashara

pom.xml

@@ -59,6 +59,12 @@
             <artifactId>jbcrypt</artifactId>
             <version>0.4</version>
         </dependency>
+        <dependency>
+            <groupId>io.jsonwebtoken</groupId>
+            <artifactId>jjwt</artifactId>
+            <version>0.9.1</version>
+        </dependency>
+
     </dependencies>
 
 </project>

src/main/java/com/sparkx/Exception/UnauthorizedException.java

@@ -0,0 +1,7 @@
+package com.sparkx.Exception;
+
+public class UnauthorizedException extends Exception {
+    public UnauthorizedException(String message) {
+        super(message);
+    }
+}

src/main/java/com/sparkx/Filter/AuthFilterHelper.java

@@ -23,8 +23,7 @@ public void doFilter(ServletRequest request, ServletResponse response, FilterCha
         HttpServletRequest req = (HttpServletRequest) request;
         HttpServletResponse res = (HttpServletResponse) response;
 
-        Person person = (Person) req.getAttribute("user");
-        if (person.getRole() == RoleType.Director) {
+        if (req.getAttribute("role").equals(RoleType.Director.toString())) {
             filterChain.doFilter(req, res);
         } else {
             new Controller().sendMessageResponse(Message.FORBIDDEN, res, HttpServletResponse.SC_FORBIDDEN);

src/main/java/com/sparkx/Filter/AuthServletFilter.java

@@ -25,8 +25,7 @@ public void doFilter(ServletRequest request, ServletResponse response, FilterCha
         HttpServletRequest req = (HttpServletRequest) request;
         HttpServletResponse res = (HttpServletResponse) response;
 
-        Person person = (Person) req.getAttribute("user");
-        if (person.getRole() == RoleType.Doctor || person.getRole() == RoleType.Director) {
+        if (req.getAttribute("role").equals(RoleType.Doctor.toString()) || req.getAttribute("role").equals(RoleType.Director.toString())) {
             filterChain.doFilter(req, res);
         } else {
             new Controller().sendMessageResponse(Message.FORBIDDEN, res, HttpServletResponse.SC_FORBIDDEN);

src/main/java/com/sparkx/Filter/DirectorFilter.java

@@ -0,0 +1,75 @@
+package com.sparkx.Filter;
+
+import com.sparkx.service.AuthService;
+import io.jsonwebtoken.Claims;
+import org.apache.log4j.Logger;
+
+import javax.servlet.*;
+import javax.servlet.annotation.WebFilter;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.io.IOException;
+
+@WebFilter(filterName = "JWTFilter")
+public class JwtAuthFilter implements Filter {
+    private static final Logger logger = Logger.getLogger(JwtAuthFilter.class.getName());
+
+    private static final String AUTH_HEADER_KEY = "Authorization";
+    private static final String AUTH_HEADER_VALUE_PREFIX = "Bearer "; // with trailing space to separate token
+
+    private static final int STATUS_CODE_UNAUTHORIZED = 401;
+    private AuthService authService;
+
+
+    @Override
+    public void init(FilterConfig filterConfig) throws ServletException {
+        authService = new AuthService();
+    }
+
+    @Override
+    public void doFilter(final ServletRequest servletRequest,
+                         final ServletResponse servletResponse,
+                         final FilterChain filterChain) throws IOException, ServletException {
+        HttpServletRequest req = (HttpServletRequest) servletRequest;
+        HttpServletResponse res = (HttpServletResponse) servletResponse;
+
+        try {
+
+            String jwt = getBearerToken(req);
+
+            if (jwt != null && !jwt.isEmpty()) {
+
+                Claims claims = AuthService.decodeJWT(jwt);
+                req.setAttribute("role", claims.get("role"));
+                req.setAttribute("hospitalId", claims.get("hospitalId"));
+                req.setAttribute("userId", claims.getId());
+                filterChain.doFilter(req, res);
+                logger.info("Logged in using JWT");
+            } else {
+                logger.info("Failed logging in with security token");
+                HttpServletResponse httpResponse = (HttpServletResponse) servletResponse;
+                httpResponse.setContentLength(0);
+                httpResponse.setStatus(STATUS_CODE_UNAUTHORIZED);
+            }
+
+        } catch (final Exception e) {
+            logger.info("Failed logging in with security token", e);
+            HttpServletResponse httpResponse = (HttpServletResponse) servletResponse;
+            httpResponse.setContentLength(0);
+            httpResponse.setStatus(STATUS_CODE_UNAUTHORIZED);
+        }
+    }
+
+    @Override
+    public void destroy() {
+        logger.info("JwtAuthenticationFilter destroyed");
+    }
+
+    private String getBearerToken(HttpServletRequest request) {
+        String authHeader = request.getHeader(AUTH_HEADER_KEY);
+        if (authHeader != null && authHeader.startsWith(AUTH_HEADER_VALUE_PREFIX)) {
+            return authHeader.substring(AUTH_HEADER_VALUE_PREFIX.length());
+        }
+        return null;
+    }
+}

src/main/java/com/sparkx/Filter/DoctorFilter.java

@@ -23,8 +23,7 @@ public void doFilter(ServletRequest request, ServletResponse response, FilterCha
         HttpServletRequest req = (HttpServletRequest) request;
         HttpServletResponse res = (HttpServletResponse) response;
 
-        Person person = (Person) req.getAttribute("user");
-        if (person.getRole() == RoleType.MoH) {
+        if (req.getAttribute("role").equals(RoleType.MoH.toString())) {
             filterChain.doFilter(req, res);
         } else {
             new Controller().sendMessageResponse(Message.FORBIDDEN, res, HttpServletResponse.SC_FORBIDDEN);

src/main/java/com/sparkx/Filter/JwtAuthFilter.java

@@ -24,9 +24,10 @@ public void doFilter(ServletRequest request, ServletResponse response, FilterCha
         HttpServletResponse res = (HttpServletResponse) response;
 
         Person person = (Person) req.getAttribute("user");
-        if (person.getRole() == RoleType.Patient || person.getRole() == RoleType.Doctor
-                || person.getRole() == RoleType.Director
-                || person.getRole() == RoleType.HospitalStaff) {
+        if (req.getAttribute("role").equals(RoleType.Patient.toString())
+                || req.getAttribute("role").equals(RoleType.Doctor.toString())
+                || req.getAttribute("role").equals(RoleType.Director.toString())
+                || req.getAttribute("role").equals(RoleType.HospitalStaff.toString())) {
             filterChain.doFilter(req, res);
         } else {
             new Controller().sendMessageResponse(Message.FORBIDDEN, res, HttpServletResponse.SC_FORBIDDEN);

src/main/java/com/sparkx/Filter/MoHFilter.java

@@ -24,8 +24,9 @@ public void doFilter(ServletRequest request, ServletResponse response, FilterCha
         HttpServletResponse res = (HttpServletResponse) response;
 
         Person person = (Person) req.getAttribute("user");
-        if (person.getRole() == RoleType.Doctor || person.getRole() == RoleType.Director
-                || person.getRole() == RoleType.HospitalStaff) {
+        if (req.getAttribute("role").equals(RoleType.Doctor.toString())
+                || req.getAttribute("role").equals(RoleType.Director.toString())
+                || req.getAttribute("role").equals(RoleType.HospitalStaff.toString())) {
             filterChain.doFilter(req, res);
         } else {
             new Controller().sendMessageResponse(Message.FORBIDDEN, res, HttpServletResponse.SC_FORBIDDEN);