https://kotlinlang.org logo
Channels
100daysofcode
100daysofkotlin
100daysofkotlin-2021
advent-of-code
aem
ai
alexa
algeria
algolialibraries
amsterdam
android
android-architecture
android-databinding
android-studio
androidgithubprojects
androidthings
androidx
androidx-xprocessing
anime
anko
announcements
apollo-kotlin
appintro
arabic
argentina
arkenv
arksemdevteam
armenia
arrow
arrow-contributors
arrow-meta
ass
atlanta
atm17
atrium
austin
australia
austria
awesome-kotlin
ballast
bangladesh
barcelona
bayarea
bazel
beepiz-libraries
belgium
benchmarks
berlin
big-data
books
boston
brazil
brikk
budapest
build
build-tools
bulgaria
bydgoszcz
cambodia
canada
carrat
carrat-dev
carrat-feed
chicago
chile
china
chucker
cincinnati-user-group
cli
clikt
cloudfoundry
cn
cobalt
code-coverage
codeforces
codemash-precompiler
codereview
codingame
codingconventions
coimbatore
collaborations
colombia
colorado
communities
competitive-programming
competitivecoding
compiler
compose
compose-android
compose-desktop
compose-hiring
compose-ios
compose-mp
compose-ui-showcase
compose-wear
compose-web
confetti
connect-audit-events
corda
cork
coroutines
couchbase
coursera
croatia
cryptography
cscenter-course-2016
cucumber-bdd
cyprus
czech
dagger
data2viz
databinding
datascience
dckotlin
debugging
decompose
decouple
denmark
deprecated
detekt
detekt-hint
dev-core
dfw
docs-revamped
dokka
domain-driven-design
doodle
dsl
dublin
dutch
eap
eclipse
ecuador
edinburgh
education
effective-kotlin
effectivekotlin
emacs
embedded-kotlin
estatik
event21-community-content
events
exposed
failgood
fb-internal-demo
feed
firebase
flow
fluid-libraries
forkhandles
forum
fosdem
fp-in-kotlin
framework-elide
freenode
french
fritz2
fuchsia
functional
funktionale
gamedev
ge-kotlin
general-advice
georgia
geospatial
german-lang
getting-started
github-workflows-kt
glance
godot-kotlin
google-io
gradle
graphic
graphkool
graphql
graphql-kotlin
graviton-browser
greece
grpc
gsoc
gui
hackathons
hacktoberfest
hamburg
hamkrest
helios
helsinki
hexagon
hibernate
hikari-cp
hire-me
hiring
hiring-french
hongkong
hoplite
http4k
hungary
hyderabad
image-processing
india
indonesia
inkremental
intellij
intellij-plugins
intellij-tricks
internships
introduce-yourself
io
ios
iran
israel
istanbulcoders
italian
jackson-kotlin
jadx
japanese
jasync-sql
java-to-kotlin-refactoring
javadevelopers
javafx
javalin
javascript
jdbi
jhipster-kotlin
jobsworldwide
jpa
jshdq
juul-libraries
jvm-ir-backend-feedback
jxadapter
k2-early-adopters
kaal
kafka
kakao
kalasim
kapt
karachi
karg
karlsruhe
kash_shell
kaskade
kbuild
kdbc
kgen-doc-tools
kgraphql
kinta
klaxon
klock
kloudformation
kmdc
kmm-español
kmongo
knbt
knote
koalaql
koans
kobalt
kobweb
kodein
kodex
kohesive
koin
koin-dev
komapper
kondor-json
kong
kontent
kontributors
korau
korean
korge
korim
korio
korlibs
korte
kotest
kotest-contributors
kotless
kotlick
kotlin-asia
kotlin-beam
kotlin-by-example
kotlin-csv
kotlin-data-storage
kotlin-foundation
kotlin-fuel
kotlin-in-action
kotlin-inject
kotlin-latam
kotlin-logging
kotlin-multiplatform-contest
kotlin-mumbai
kotlin-native
kotlin-pakistan
kotlin-plugin
kotlin-pune
kotlin-roadmap
kotlin-samples
kotlin-sap
kotlin-serbia
kotlin-spark
kotlin-szeged
kotlin-website
kotlinacademy
kotlinbot
kotlinconf
kotlindl
kotlinforbeginners
kotlingforbeginners
kotlinlondon
kotlinmad
kotlinprogrammers
kotlinsu
kotlintest
kotlintest-devs
kotlintlv
kotlinultimatechallenge
kotlinx-datetime
kotlinx-files
kotlinx-html
kotrix
kotson
kovenant
kprompt
kraph
krawler
kroto-plus
ksp
ktcc
ktfmt
ktlint
ktor
ktp
kubed
kug-leads
kug-torino
kvision
kweb
lambdaworld_cadiz
lanark
language-evolution
language-proposals
latvia
leakcanary
leedskotlinusergroup
lets-have-fun
libgdx
libkgd
library-development
lincheck
linkeddata
lithuania
london
losangeles
lottie
love
lychee
macedonia
machinelearningbawas
madrid
malaysia
mathematics
meetkotlin
memes
meta
metro-detroit
mexico
miami
micronaut
minnesota
minutest
mirror
mockk
moko
moldova
monsterpuzzle
montreal
moonbean
morocco
motionlayout
mpapt
mu
multiplatform
mumbai
munich
mvikotlin
mvrx
myndocs-oauth2-server
naming
navigation-architecture-component
nepal
new-mexico
new-zealand
newname
nigeria
nodejs
norway
npm-publish
nyc
oceania
ohio-kotlin-users
oldenburg
oolong
opensource
orbit-mvi
osgi
otpisani
package-search
pakistan
panamá
pattern-matching
pbandk
pdx
peru
philippines
phoenix
pinoy
pocketgitclient
polish
popkorn
portugal
practical-functional-programming
proguard
prozis-android-backup
pyhsikal
python
python-contributors
quasar
random
re
react
reaktive
realm
realworldkotlin
reductor
reduks
redux
redux-kotlin
refactoring-to-kotlin
reflect
refreshversions
reports
result
rethink
revolver
rhein-main
rocksdb
romania
room
rpi-pico
rsocket
russian
russian_feed
russian-kotlinasfirst
rx
rxjava
san-diego
science
scotland
scrcast
scrimage
script
scripting
seattle
serialization
server
sg-user-group
singapore
skia-wasm-interop-temp
skrape-it
slovak
snake
sofl-user-group
southafrica
spacemacs
spain
spanish
speaking
spek
spin
splitties
spotify-mobius
spring
spring-security
squarelibraries
stackoverflow
stacks
stayhungrystayfoolish
stdlib
stlouis
strife-discord-lib
strikt
students
stuttgart
sudan
swagger-gradle-codegen
swarm
sweden
swing
swiss-user-group
switzerland
talking-kotlin
tallinn
tampa
teamcity
tegal
tempe
tensorflow
terminal
test
testing
testtestest
texas
tgbotapi
thailand
tornadofx
touchlab-tools
training
tricity-kotlin-user-group
trójmiasto
truth
tunisia
turkey
turkiye
twitter-feed
uae
udacityindia
uk
ukrainian
uniflow
unkonf
uruguay
utah
uuid
vancouver
vankotlin
vertx
videos
vienna
vietnam
vim
vkug
vuejs
web-mpp
webassembly
webrtc
wimix_sentry
wwdc
zircon
Powered by
Title
v

Vinicius Araujo

10/12/2019, 11:26 PM
How to install a feature after Authentication phase so I can use a Principal? Tried this without success: 
companion object Feature : ApplicationFeature<ApplicationCallPipeline, Configuration, Permission> {
        override val key = AttributeKey<Permission>("Permissions")

        override fun install(pipeline: ApplicationCallPipeline, configure: Configuration.() -> Unit): Permission {
            val configuration = Configuration().apply(configure)
            val feature = Permission(configuration)
            val permissionPhase = PipelinePhase("PermissionPhase")

            pipeline.insertPhaseAfter(PipelinePhase("RequestAuthentication"), permissionPhase)


            pipeline.intercept(permissionPhase) {
                feature.intercept(this)
            }

            return feature
        }
    }
👆 1
e

Evan R.

10/14/2019, 3:48 PM
The Authentication feature defines its own pipeline stages as part of the 
AuthenticationPipeline
companion object. You can retrieve the authentication pipeline from your provider definition, e.g.: 
install(Authentication) {
  jwt {
    val newPhase = PipelinePhase("myPhase")
      pipeline.insertPhaseAfter(AuthenticationPipeline.RequestAuthentication, newPhase)
    pipeline.intercept(newPhase) { /* your code here... */ }
  }
}
See: https://github.com/ktorio/ktor/blob/master/ktor-features/ktor-auth/jvm/src/io/ktor/auth/AuthenticationPipeline.kt https://github.com/ktorio/ktor/blob/master/ktor-features/ktor-auth/jvm/src/io/ktor/auth/AuthenticationProvider.kt
Note that this is just a guess based on the Auth feature source code.
👍 1
v

Vinicius Araujo

10/14/2019, 6:26 PM
Hey Evan! I did it, but still gets executed before the jwt.validade{...}
install(Authentication) {
        jwt {
            verifier(JWTConfig("secret").verifier)
            validate {
                val loggedInUser = LoggedInUser(
                    idCliente = UUID.fromString(it.payload.subject),
                    id = UUID.fromString(it.payload.getClaim("uid").asString()),
                    active = it.payload.getClaim("atv").asBoolean(),
                    admin = it.payload.getClaim("adm").asBoolean(),
                    canEdit = it.payload.getClaim("edt").asBoolean(),
                    canDelete = it.payload.getClaim("del").asBoolean()
                )
                loggedInUser
            }

            val permissionPhase = PipelinePhase("PermissionPhase")
            pipeline.insertPhaseAfter(AuthenticationPipeline.RequestAuthentication, permissionPhase)
            pipeline.intercept(permissionPhase) {
                call.authentication.principal<LoggedInUser>()?.let {
                    if (!it.active) httpException(
                        code = HttpStatusCode.Forbidden,
                        developerMessage = "User not active",
                        userMerssage = "Usuario não está ativo"
                    )

                    when (call.request.local.method) {
                        <http://HttpMethod.Post|HttpMethod.Post> -> if (!it.canEdit) httpException(
                            code = HttpStatusCode.Forbidden,
                            developerMessage = "User cannot edit",
                            userMerssage = "Usuario não pode editar"
                        )
                        HttpMethod.Put -> if (!it.canEdit) httpException(
                            code = HttpStatusCode.Forbidden,
                            developerMessage = "User cannot edit",
                            userMerssage = "Usuario não pode editar"
                        )
                        HttpMethod.Delete -> if (!it.canDelete) httpException(
                            code = HttpStatusCode.Forbidden,
                            developerMessage = "User cannot delete",
                            userMerssage = "Usuario não pode excluir"
                        )
                    }
                }
            }
        }
    }
4 Views
#ktorJoin Slack
Powered by