{"id":1127,"date":"2019-01-31T14:17:53","date_gmt":"2019-01-31T06:17:53","guid":{"rendered":"http:\/\/van-yzt.com\/?p=1127"},"modified":"2019-01-31T14:17:53","modified_gmt":"2019-01-31T06:17:53","slug":"filter","status":"publish","type":"post","link":"https:\/\/huzi-baozi.com\/?p=1127","title":{"rendered":"filter"},"content":{"rendered":"

In Spring, we can use FilterChainProxy to manage custom filters properly.<\/p>\n

\nCustom resource xml file<\/h2>\n
<?xml version="1.0" encoding="UTF-8"?>\n<beans xmlns="http:\/\/www.springframework.org\/schema\/beans"\n       xmlns:xsi="http:\/\/www.w3.org\/2001\/XMLSchema-instance"\n       xsi:schemaLocation="http:\/\/www.springframework.org\/schema\/beans http:\/\/www.springframework.org\/schema\/beans\/spring-beans.xsd">\n\n    <bean id="webFilterChain" class="org.springframework.security.web.DefaultSecurityFilterChain">\n        <constructor-arg name="requestMatcher">\n            <bean class="org.springframework.security.web.util.matcher.NegatedRequestMatcher">\n                <constructor-arg name="requestMatcher">\n                    <bean class="org.springframework.security.web.util.matcher.RegexRequestMatcher">\n                        <constructor-arg name="httpMethod" value=""\/>\n                        <constructor-arg name="pattern" value="\/api\/.*"\/>\n                    <\/bean>\n                <\/constructor-arg>\n            <\/bean>\n        <\/constructor-arg>\n        <constructor-arg name="filters">\n            <list>\n                <bean class="org.springframework.security.web.csrf.CsrfFilter">\n                    <constructor-arg name="csrfTokenRepository">\n                        <bean class="org.springframework.security.web.csrf.CookieCsrfTokenRepository"\/>\n                    <\/constructor-arg>\n                <\/bean>\n                <ref bean="springSessionRepositoryFilter"\/>\n            <\/list>\n        <\/constructor-arg>\n    <\/bean>\n\n    <bean id="customFilterChainProxy" class="org.springframework.security.web.FilterChainProxy">\n        <constructor-arg>\n            <list>\n                <ref bean="webFilterChain"\/>\n            <\/list>\n        <\/constructor-arg>\n    <\/bean>\n\n<\/beans>\n<\/code><\/pre>\n
\nweb.xml filter configuration<\/h2>\n
    <context-param>\n        <param-name>contextConfigLocation<\/param-name>\n        <param-value>\n            <!-- ... -->\n            classpath:spring\/filter.xml\n        <\/param-value>\n    <\/context-param>\n\n <!-- Custom Filter -->\n    <filter>\n        <filter-name>customFilterChainProxy<\/filter-name>\n        <filter-class>org.springframework.web.filter.DelegatingFilterProxy<\/filter-class>\n    <\/filter>\n    <filter-mapping>\n        <filter-name>customFilterChainProxy<\/filter-name>\n        <url-pattern>\/*<\/url-pattern>\n    <\/filter-mapping>\n<\/code><\/pre>\n
\nExplain<\/h2>\n
customFilterChainProxy<\/code> filter-name in web.xml. This tells Container(Tomcat) to add filter by Class org.springframework.web.filter.DelegatingFilterProxy<\/code>.<\/p>\n
DelegatingFilterProxy<\/code> : Spring will search filter-name (customFilterChainProxy<\/code>) in Spring context for Good Management.And customFilterChainProxy<\/code> is initialized in filter.xml<\/code> resource file.<\/p>\n","protected":false},"excerpt":{"rendered":"
In Spring, we can use FilterChainProxy to manage custom filters properly. Custom resource xml file <?xml version="1.0" encoding="UTF-8"?> <beans xmlns="http:\/\/www.springframework.org\/schema\/beans" xmlns:xsi="http:\/\/www.w3.org\/2001\/XMLSchema-instance" xsi:schemaLocation="http:\/\/www.springframework.org\/schema\/beans http:\/\/www.springframework.org\/schema\/beans\/spring-beans.xsd"> <bean id="webFilterChain" class="org.springframework.security.web.DefaultSecurityFilterChain"> <constructor-arg name="requestMatcher"> <bean class="org.springframework.security.web.util.matcher.NegatedRequestMatcher"> <constructor-arg name="requestMatcher"> <bean class="org.springframework.security.web.util.matcher.RegexRequestMatcher"> <constructor-arg name="httpMethod" value=""\/> <constructor-arg name="pattern" value="\/api\/.*"\/> <\/bean> <\/constructor-arg> <\/bean> <\/constructor-arg> <constructor-arg name="filters"> <list> <bean class="org.springframework.security.web.csrf.CsrfFilter"> <constructor-arg name="csrfTokenRepository"> <bean class="org.springframework.security.web.csrf.CookieCsrfTokenRepository"\/> <\/constructor-arg> <\/bean> … <\/p>\n
Continue reading “filter”<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[],"class_list":["post-1127","post","type-post","status-publish","format-standard","hentry","category-snippet"],"_links":{"self":[{"href":"https:\/\/huzi-baozi.com\/index.php?rest_route=\/wp\/v2\/posts\/1127","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/huzi-baozi.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/huzi-baozi.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/huzi-baozi.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/huzi-baozi.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1127"}],"version-history":[{"count":1,"href":"https:\/\/huzi-baozi.com\/index.php?rest_route=\/wp\/v2\/posts\/1127\/revisions"}],"predecessor-version":[{"id":1128,"href":"https:\/\/huzi-baozi.com\/index.php?rest_route=\/wp\/v2\/posts\/1127\/revisions\/1128"}],"wp:attachment":[{"href":"https:\/\/huzi-baozi.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1127"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/huzi-baozi.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1127"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/huzi-baozi.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1127"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}