diff options
author | Bjørn Christian Seime <bjorncs@oath.com> | 2018-03-23 14:13:56 +0100 |
---|---|---|
committer | Bjørn Christian Seime <bjorncs@oath.com> | 2018-03-23 14:19:27 +0100 |
commit | ab399a49fb0ca0b19b3d88c79fdd369563cf986c (patch) | |
tree | d90c606b63b198ad00fd0bdf306214194fec77f1 /controller-server/src/main/java/com | |
parent | 51217e79469213d2ed63cb6d3765b38dd5b477d9 (diff) |
Enforce that Athenz authn filter is executed after CORS filter
Diffstat (limited to 'controller-server/src/main/java/com')
-rw-r--r-- | controller-server/src/main/java/com/yahoo/vespa/hosted/controller/athenz/filter/UserAuthWithAthenzPrincipalFilter.java | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/controller-server/src/main/java/com/yahoo/vespa/hosted/controller/athenz/filter/UserAuthWithAthenzPrincipalFilter.java b/controller-server/src/main/java/com/yahoo/vespa/hosted/controller/athenz/filter/UserAuthWithAthenzPrincipalFilter.java index f59e0fbce5c..cae8c485cb3 100644 --- a/controller-server/src/main/java/com/yahoo/vespa/hosted/controller/athenz/filter/UserAuthWithAthenzPrincipalFilter.java +++ b/controller-server/src/main/java/com/yahoo/vespa/hosted/controller/athenz/filter/UserAuthWithAthenzPrincipalFilter.java @@ -12,6 +12,7 @@ import com.yahoo.vespa.athenz.api.NToken; import com.yahoo.vespa.hosted.controller.api.identifiers.UserId; import com.yahoo.vespa.hosted.controller.api.integration.athenz.ZmsKeystore; import com.yahoo.vespa.hosted.controller.athenz.config.AthenzConfig; +import com.yahoo.yolean.chain.After; import java.security.Principal; import java.util.Optional; @@ -29,6 +30,7 @@ import static com.yahoo.vespa.hosted.controller.restapi.filter.SecurityFilterUti * @author bjorncs */ // TODO Remove this filter once migrated to Okta +@After({"com.yahoo.vespa.hosted.controller.restapi.filter.AccessControlRequestFilter", "BouncerFilter"}) public class UserAuthWithAthenzPrincipalFilter extends AthenzPrincipalFilter { private static final Logger log = Logger.getLogger(UserAuthWithAthenzPrincipalFilter.class.getName()); |