Mercurial > lada > lada-server
diff src/main/java/de/intevation/lada/util/auth/OpenIDFilter.java @ 554:81cdf448d2cf openid
Add option to completely disable the openIDFilter
author | Andre Heinecke <andre.heinecke@intevation.de> |
---|---|
date | Fri, 13 Mar 2015 15:20:05 +0100 |
parents | 68c8b9e5f3e9 |
children | ac953bee7246 |
line wrap: on
line diff
--- a/src/main/java/de/intevation/lada/util/auth/OpenIDFilter.java Fri Mar 13 14:26:52 2015 +0100 +++ b/src/main/java/de/intevation/lada/util/auth/OpenIDFilter.java Fri Mar 13 15:20:05 2015 +0100 @@ -66,6 +66,8 @@ private static final int SESSION_TIMEOUT_DEFAULT_MINUTES = 60; private int sessionTimeout; + private boolean enabled; + private static Logger logger = Logger.getLogger(OpenIDFilter.class); /** Nonce verifier to allow a session based on openid information. @@ -246,6 +248,8 @@ oidHeader = properties.getProperty("oidHeader", OID_HEADER_DEFAULT); providerUrl = properties.getProperty("identity_provider", IDENTITY_PROVIDER_DEFAULT); + enabled = !properties.getProperty("enabled", + "true").toLowerCase().equals("false"); manager = new ConsumerManager(); /* We probably want to implement our own association store to keep @@ -260,6 +264,13 @@ public void doFilter(ServletRequest req, ServletResponse resp, FilterChain chain) throws IOException, ServletException { + if (!enabled) { + /* If we are not enabled we pass everything through */ + logger.debug("OpenID filter disabled. Passing through."); + chain.doFilter(req, resp); + return; + } + HttpServletRequest hReq = (HttpServletRequest) req; HttpServletResponse hResp = (HttpServletResponse) resp; if (!discoveryDone) {