Servlet Filter in Liferay 7.2

Liferay 7.2 - Servlet Filter Sample

Overview

This article describes how to create a servlet filter in Liferay 7.2. 
In this sample we'll create a filter for documents, which allows only admins to access the PDF files.

Filter creation

  1. Create service Liferay module for the filter class.
  2. Define dependencies in build.gradle file:
    dependencies {
    compileOnly group: "com.liferay.portal", name: "com.liferay.portal.kernel"
    compileOnly group: "com.liferay.portal", name: "com.liferay.util.taglib"
    compileOnly group: "javax.portlet", name: "portlet-api"
    compileOnly group: "javax.servlet", name: "javax.servlet-api"
    compileOnly group: "jstl", name: "jstl"
    compileOnly group: "org.osgi", name: "osgi.cmpn"
}
  3. Define OSGi metadata in bnd.bnd, sample:
    Bundle-Name: LifeDev Document Servlet Filter
Bundle-SymbolicName: com.lifedev.documents.servlet.filter
Bundle-Version: 1.0.0
  4. Implement filter class, sample:
    @Component(
        immediate = true,
        property = {
                "servlet-context-name=",
                "servlet-filter-name=LifeDev Document Filter",
                "url-pattern=/documents/*"
        },
        service = Filter.class
)
public class LifeDevDocumentServletFilter implements Filter {

    @Override
    public void init(FilterConfig filterConfig) throws ServletException {
    }

    @Override
    public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain) throws IOException, ServletException {
        try {
            HttpServletRequest request = (HttpServletRequest) servletRequest;
            HttpServletResponse response = (HttpServletResponse) servletResponse;
            String documentUri = (String)servletRequest.getAttribute(WebKeys.INVOKER_FILTER_URI);
            if (documentUri.contains(".pdf")) {
                long userId = (Long)servletRequest.getAttribute(WebKeys.USER_ID);
                User user = _userLocalService.getUser(userId);
                boolean isAdmin = PortalUtil.isOmniadmin(user);
                if (!isAdmin) {
                    PortalUtil.sendError(403, new PrincipalException("Access to document denied."), request, response);
                }
            }
            filterChain.doFilter(servletRequest, servletResponse);
        } catch (Exception e) {
            _log.warn("Failed to check document access.");
            filterChain.doFilter(servletRequest, servletResponse);
        }
    }

    @Override
    public void destroy() {
    }

    @Reference
    private UserLocalService _userLocalService;

    private static final Log _log = LogFactoryUtil.getLog(LifeDevDocumentServletFilter.class);
}
Notes:
url-pattern here defines pattern for URLs to be intercepted by filter.
doFilter is the method, where filter logic should be implemented. In this example filter sends access denied error for not admin users trying to access PDF document (just as sample).
Enjoy 😏

Comments

Post a Comment

Popular posts from this blog

Liferay Search Container Example

Or how to implement a custom search container in Liferay Overview   Search Containers are used in Liferay to display the table data. This article shows a simple example of how to implement a custom search container.  Example < liferay-portlet :renderURL varImpl ="iteratorURL" /> < liferay-ui :search-container total =" <%= ProjectLocalServiceUtil. getProjectsCount (scopeGroupId) %> "                              delta ="10"                              emptyResultsMessage ="no-projects-found"                              iterato...
Read more

Installing Blade CLI from Command Line

Installing Blade CLI from Command Line Download JPM Jar file Download biz.aQute.jpm.run.jar file using link: https://raw.githubusercontent.com/jpm4j/jpm4j.installers/master/dist/biz.aQute.jpm.run.jar Initialize JPM Run command: java -jar biz.aQute.jpm.run.jar init Install Blade Run command: jpm install -f https://releases.liferay.com/tools/blade-cli/latest/blade.jar to install blade. Update blade to make sure you have the latest version, sample:  blade update Current blade version 3.3.0.201811151753 Updating from: https://repository-cdn.liferay.com/nexus/content/repositories/liferay-public-releases/com/liferay/blade/com.liferay.blade.cli//3.8.0/com.liferay.blade.cli-3.8.0.jar Update completed successfully. Congratulations! Now you have Blade CLI installed. Sample command for mvc-portlet: blade create -t mvc-portlet -p com.demo.portlet -c DemoPortlet demo-portlet Enjoy 😏
Read more

Liferay Keycloak integration

Image
Liferay Keycloak integration using OpenID Overview This tutorial explains how to configure OpenID SSO between Liferay 7.2 and Keycloak 7.0.1 Installation instructions KeyCloak Configuration 1. Install and startup Keycloak server Download latest Keycloak server:  https://www.keycloak.org/downloads.html Unzip keycloak-7.0.1.zip folder. Run  keycloak-7.0.1/bin/standalone.sh  (or  keycloak-7.0.1/bin/standalone.bat ) file. Keycloak should be started on 8080 port:  http://localhost:8080 2. Create default admin user: and sign in to Admin Console. 3. Check OpenID configuration Click on "OpenID Endpoint Configuration": JSON configuration should appear, like this: { "issuer": "http://localhost:8080/auth/realms/master", "authorization_endpoint": "http://localhost:8080/auth/realms/master/protocol/openid-connect/auth", "token_endpoint": "http://localhost:8080/auth/realms/master/protocol/openid-con...
Read more