Servlet Filter in Liferay 7.2

Liferay 7.2 - Servlet Filter Sample

Overview

This article describes how to create a servlet filter in Liferay 7.2. 
In this sample we'll create a filter for documents, which allows only admins to access the PDF files.

Filter creation

  1. Create service Liferay module for the filter class.
  2. Define dependencies in build.gradle file:
    dependencies {
    compileOnly group: "com.liferay.portal", name: "com.liferay.portal.kernel"
    compileOnly group: "com.liferay.portal", name: "com.liferay.util.taglib"
    compileOnly group: "javax.portlet", name: "portlet-api"
    compileOnly group: "javax.servlet", name: "javax.servlet-api"
    compileOnly group: "jstl", name: "jstl"
    compileOnly group: "org.osgi", name: "osgi.cmpn"
}
  3. Define OSGi metadata in bnd.bnd, sample:
    Bundle-Name: LifeDev Document Servlet Filter
Bundle-SymbolicName: com.lifedev.documents.servlet.filter
Bundle-Version: 1.0.0
  4. Implement filter class, sample:
    @Component(
        immediate = true,
        property = {
                "servlet-context-name=",
                "servlet-filter-name=LifeDev Document Filter",
                "url-pattern=/documents/*"
        },
        service = Filter.class
)
public class LifeDevDocumentServletFilter implements Filter {

    @Override
    public void init(FilterConfig filterConfig) throws ServletException {
    }

    @Override
    public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain) throws IOException, ServletException {
        try {
            HttpServletRequest request = (HttpServletRequest) servletRequest;
            HttpServletResponse response = (HttpServletResponse) servletResponse;
            String documentUri = (String)servletRequest.getAttribute(WebKeys.INVOKER_FILTER_URI);
            if (documentUri.contains(".pdf")) {
                long userId = (Long)servletRequest.getAttribute(WebKeys.USER_ID);
                User user = _userLocalService.getUser(userId);
                boolean isAdmin = PortalUtil.isOmniadmin(user);
                if (!isAdmin) {
                    PortalUtil.sendError(403, new PrincipalException("Access to document denied."), request, response);
                }
            }
            filterChain.doFilter(servletRequest, servletResponse);
        } catch (Exception e) {
            _log.warn("Failed to check document access.");
            filterChain.doFilter(servletRequest, servletResponse);
        }
    }

    @Override
    public void destroy() {
    }

    @Reference
    private UserLocalService _userLocalService;

    private static final Log _log = LogFactoryUtil.getLog(LifeDevDocumentServletFilter.class);
}
Notes:
url-pattern here defines pattern for URLs to be intercepted by filter.
doFilter is the method, where filter logic should be implemented. In this example filter sends access denied error for not admin users trying to access PDF document (just as sample).
Enjoy 😏

Comments

Post a Comment

Popular posts from this blog

Liferay Search Container Example

Or how to implement a custom search container in Liferay Overview   Search Containers are used in Liferay to display the table data. This article shows a simple example of how to implement a custom search container.  Example < liferay-portlet :renderURL varImpl ="iteratorURL" /> < liferay-ui :search-container total =" <%= ProjectLocalServiceUtil. getProjectsCount (scopeGroupId) %> "                              delta ="10"                              emptyResultsMessage ="no-projects-found"                              iteratorURL =" <%= iteratorURL %> " >     < liferay-ui :search-container-results             results =" <%= ProjectLocalServiceUtil. getProjects (scopeGroupId, searchContainer.getStart(), searchContainer.getEnd()) %> " />     < liferay-ui :search-container-row className ="com.sample.sb.model.Project" modelVar ="project" keyP
Read more

Liferay DXP - max upload file size

Image
Liferay DXP - increase Maximum Upload Request Size By default, Liferay has limit to 100 MB for file upload. Sometimes you need to upload larger files, and this restriction can be changed in configuration. Go to Control Panel -> Configuration -> System Settings -> Infrastructure. Click on "Upload Servlet Request". Modify " Overall Maximum Upload Request Size"  value and set which you need: Save the configuration. Now you should be able to upload large files to your Liferay DXP instance.
Read more

Liferay Keycloak integration

Image
Liferay Keycloak integration using OpenID Overview This tutorial explains how to configure OpenID SSO between Liferay 7.2 and Keycloak 7.0.1 Installation instructions KeyCloak Configuration 1. Install and startup Keycloak server Download latest Keycloak server:  https://www.keycloak.org/downloads.html Unzip keycloak-7.0.1.zip folder. Run  keycloak-7.0.1/bin/standalone.sh  (or  keycloak-7.0.1/bin/standalone.bat ) file. Keycloak should be started on 8080 port:  http://localhost:8080 2. Create default admin user: and sign in to Admin Console. 3. Check OpenID configuration Click on "OpenID Endpoint Configuration": JSON configuration should appear, like this: { "issuer": "http://localhost:8080/auth/realms/master", "authorization_endpoint": "http://localhost:8080/auth/realms/master/protocol/openid-connect/auth", "token_endpoint": "http://localhost:8080/auth/realms/master/protocol/openid-con
Read more