Untitled

From Sweet Guinea Pig, 7 Years ago, written in Plain Text, viewed 2 times.

URL https://paste.blessuren.de/view/91c0611d Embed

Download Paste or View Raw

package net.hellmann.platform.authproxy.proxy.filter;
 
import com.netflix.zuul.ZuulFilter;
import com.netflix.zuul.context.RequestContext;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.stereotype.Component;
 
import javax.servlet.http.HttpServletRequest;
import java.util.*;
 
import static net.hellmann.platform.authproxy.proxy.header.Header.*;
import static org.springframework.cloud.netflix.zuul.filters.support.FilterConstants.PRE_TYPE;
 
;
 
@Component
public class RemoveDangerousHeader extends ZuulFilter {
 
    private static final Logger LOGGER = LoggerFactory.getLogger(RemoveDangerousHeader.class);
 
 
    private final static List<String> IGNORED_HEADER = Arrays.asList("x-auth-secret", "x-auth-cn",
            HELLMANN_USER, HELLMANN_REQUEST_ID, SERVICE_TO_SERVICE,
            HELLMANN_USER_HEADER, HELLMANN_USER_HEADER_SIG,
            PERMISSIONS_FOR_USER, PERMISSIONS_FOR_USER_SIG, SECRET_KEY);
 
    @Override
    public String filterType() {
        return PRE_TYPE;
    }
 
    @Override
    public int filterOrder() {
        // RUN EARLY BEFORE ROUTE FILTER ADD ALL SECURITY HEADER
        return 0;
    }
 
 
    @Override
    public boolean shouldFilter() {
        RequestContext context = RequestContext.getCurrentContext();
        return context.getThrowable() == null
                && (context.getZuulRequestHeaders() != null && !context.getZuulRequestHeaders().isEmpty());
    }
 
    @Override
    public Object run() {
        RequestContext context = RequestContext.getCurrentContext();
        HttpServletRequest request = context.getRequest();
        Map<String, String> filteredResponseHeaders = new HashMap<>();
        Map<String, String> zuulRequestHeaders = context.getZuulRequestHeaders();
        if (zuulRequestHeaders != null) {
            for (String headerKey : zuulRequestHeaders.keySet()) {
                if (!IGNORED_HEADER.contains(headerKey)) {
                    filteredResponseHeaders.put(headerKey, zuulRequestHeaders.get(headerKey));
                } else {
                    LOGGER.info("Remove outside header " + headerKey + " value : " + zuulRequestHeaders.get(headerKey));
                }
            }
        }
        context.remove("zuulRequestHeaders");
        context.put("zuulRequestHeaders", filteredResponseHeaders);
        return null;
    }
 
 
}
 

Reply to "Untitled"

Here you can reply to the paste above

Author What's your name?

Title Give your paste a title.

Language What language is your paste written in?

Your paste Paste your paste here

package net.hellmann.platform.authproxy.proxy.filter;

import com.netflix.zuul.ZuulFilter;
import com.netflix.zuul.context.RequestContext;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.stereotype.Component;

import javax.servlet.http.HttpServletRequest;
import java.util.*;

import static net.hellmann.platform.authproxy.proxy.header.Header.*;
import static org.springframework.cloud.netflix.zuul.filters.support.FilterConstants.PRE_TYPE;

;

@Component
public class RemoveDangerousHeader extends ZuulFilter {

private static final Logger LOGGER = LoggerFactory.getLogger(RemoveDangerousHeader.class);

private final static List<String> IGNORED_HEADER = Arrays.asList("x-auth-secret", "x-auth-cn",
            HELLMANN_USER, HELLMANN_REQUEST_ID, SERVICE_TO_SERVICE,
            HELLMANN_USER_HEADER, HELLMANN_USER_HEADER_SIG,
            PERMISSIONS_FOR_USER, PERMISSIONS_FOR_USER_SIG, SECRET_KEY);

@Override
    public String filterType() {
        return PRE_TYPE;
    }

@Override
    public int filterOrder() {
        // RUN EARLY BEFORE ROUTE FILTER ADD ALL SECURITY HEADER
        return 0;
    }

@Override
    public boolean shouldFilter() {
        RequestContext context = RequestContext.getCurrentContext();
        return context.getThrowable() == null
                && (context.getZuulRequestHeaders() != null && !context.getZuulRequestHeaders().isEmpty());
    }

@Override
    public Object run() {
        RequestContext context = RequestContext.getCurrentContext();
        HttpServletRequest request = context.getRequest();
        Map<String, String> filteredResponseHeaders = new HashMap<>();
        Map<String, String> zuulRequestHeaders = context.getZuulRequestHeaders();
        if (zuulRequestHeaders != null) {
            for (String headerKey : zuulRequestHeaders.keySet()) {
                if (!IGNORED_HEADER.contains(headerKey)) {
                    filteredResponseHeaders.put(headerKey, zuulRequestHeaders.get(headerKey));
                } else {
                    LOGGER.info("Remove outside header " + headerKey + " value : " + zuulRequestHeaders.get(headerKey));
                }
            }
        }
        context.remove("zuulRequestHeaders");
        context.put("zuulRequestHeaders", filteredResponseHeaders);
        return null;
    }

}

Create Shorturl Create a shorter url that redirects to your paste?

Private Private paste aren't shown in recent listings.

Delete After When should we delete your paste?

blessuren pastebin

Untitled

Reply to "Untitled"