Does anyone know how to add an intercepter after t...
# ktorb
bram93
09/04/2019, 11:02 AMDoes anyone know how to add an intercepter after the authentication feature? Need it for an custom Authorization feature
u
Uriel Salischiker
09/04/2019, 11:05 AMI made a custom authentication provider for that
Uriel Salischiker
09/04/2019, 11:06 AMbut not sure its the best solution
b
bram93
09/04/2019, 11:17 AMCould you share an example?
u
Uriel Salischiker
09/04/2019, 11:24 AMUntitled_kt.kt
Uriel Salischiker
09/04/2019, 11:24 AMbased on the BasicAuthenticationProvider
Uriel Salischiker
09/04/2019, 11:25 AMbut for reading the info from a cookie
Uriel Salischiker
09/04/2019, 11:25 AMexample_kt.kt
Uriel Salischiker
09/04/2019, 11:26 AMand thats the usage code
b
bram93
09/04/2019, 11:58 AMthx
bram93
09/04/2019, 1:06 PMI ended up modifying the pricipal in the
validate Copy code
install(Authentication) {
jwt {
verifier(jwkProvider, jwkIssuer)
realm = jwkRealm
validate { credentials ->
if (credentials.payload.audience.contains(jwkAudience)) {
val account = httpClient.get<Account>(accountEndpoint) {
header("Authorization", request.header("Authorization"))
}
KKPrincipal(credentials.payload, account)
} else null
}
}
}s
Sergey Akhapkin
09/04/2019, 6:14 PM@Uriel Salischiker why not to use Sessions plus Authentication features to have cookie auth out-of-box:
Copy code
install(Sessions) {
cookie<CookieClass>("CookieName") {
// configure cookie provider: path, httpOnly, secure and so on
}
}
install(Authentication) {
session<CookieClass>("AuthorizationName") {
challenge {
appendWWWAuthenticateHeader(call)
call.respond(HttpStatusCode.Unauthorized)
}
validate {
// it here points to you CookieClass - extract data and may be call db to find user
}
}
}u
Uriel Salischiker
09/04/2019, 7:03 PMOhh, tgat works when the cookie is not a session cookie but contains a url encoded string which then contains a access token?
Uriel Salischiker
09/04/2019, 7:03 PM@Sergey Akhapkin
s
Sergey Akhapkin
09/04/2019, 7:43 PMI don't sure I completely understood your question, but I don't see any restrictions to a content of cookie. When cookie provider is configured, you need to provide serialize/deserialize methods from/to CookieClass to/from String.
Copy code
fun CookieSessionBuilder<CookieClass>.init() {
...
serializer = object : SessionSerializer {
override fun deserialize(text: String): Any = ...
override fun serialize(session: Any): String = ...
}
}4 Views