web/http-oauth.git - Ulrich Hilger Code Repository

			@@ -22,7 +22,7 @@
			import com.sun.net.httpserver.HttpExchange;
			import com.sun.net.httpserver.HttpPrincipal;
			import de.uhilger.httpserver.auth.realm.Realm;
			import de.uhilger.httpserver.base.handler.HttpResponder;
			import de.uhilger.httpserver.base.HttpResponder;
			import io.jsonwebtoken.Claims;
			import io.jsonwebtoken.JwtException;
			import io.jsonwebtoken.Jwts;
			@@ -228,6 +228,22 @@
			if(parts != null && parts.length > 1) {
			token = parts[1].trim();
			}
			} else {
			// unschoen, aber fuer Image-Links in HTML-Inhalten
			// mit Query versuchen
			// z.B.
			// GET /resource?access_token=mF_9.B5f-4.1JqM HTTP/1.1
			// Host: server.example.com
			String query = exchange.getRequestURI().getQuery();
			if(query != null && query.toLowerCase().contains("access_token")) {
			String[] parts = query.split("&");
			for(String part : parts) {
			String[] keyVal = part.split("=");
			if(keyVal[0].equalsIgnoreCase("access_token")) {
			token = keyVal[1].trim();
			}
			}
			}
			}
			return token;
			}
			@@ -333,6 +349,14 @@
			this.realm = realm;
			}

			//public Realm getRealm() {
			// return realm;
			//}

			public boolean hasRole(String userId, String roleId) {
			return realm.hasRole(userId, roleId);
			}

			public void setWWWAuthRealm(String wwwAuthRealm) {
			this.wwwAuthRealm = wwwAuthRealm;
			}