add AuthenticationTokenFilter

Author: xlorne

springboot-starter-security-jwt/src/main/java/com/codingapi/springboot/security/AutoConfiguration.java

@@ -5,7 +5,9 @@
 import com.codingapi.springboot.security.dto.request.LoginRequest;
 import com.codingapi.springboot.security.filter.*;
 import com.codingapi.springboot.security.jwt.Jwt;
+import com.codingapi.springboot.security.jwt.Token;
 import com.codingapi.springboot.security.properties.SecurityJwtProperties;
+import jakarta.servlet.FilterChain;
 import jakarta.servlet.http.HttpServletRequest;
 import jakarta.servlet.http.HttpServletResponse;
 import org.springframework.boot.autoconfigure.condition.ConditionalOnMissingBean;
@@ -67,17 +69,25 @@ public void preHandle(HttpServletRequest request, HttpServletResponse response,
            }
 
            @Override
-           public void postHandle(HttpServletRequest request, HttpServletResponse response, LoginRequest handler) {
+           public void postHandle(HttpServletRequest request, HttpServletResponse response, LoginRequest handler, Token token) {
 
            }
        };
     }
 
+    @Bean
+    @ConditionalOnMissingBean
+    public AuthenticationTokenFilter authenticationTokenFilter(){
+        return (request, response, chain) -> {
+
+        };
+    }
+
 
     @Bean
     @ConditionalOnMissingBean
     public SecurityFilterChain filterChain(HttpSecurity security, Jwt jwt,SecurityLoginHandler loginHandler,
-                                           SecurityJwtProperties properties) throws Exception {
+                                           SecurityJwtProperties properties,AuthenticationTokenFilter authenticationTokenFilter) throws Exception {
         //disable basic auth
         security.httpBasic().disable();
 
@@ -86,7 +96,7 @@ public SecurityFilterChain filterChain(HttpSecurity security, Jwt jwt,SecurityLo
         if(properties.isDisableCsrf() ){
             security.csrf().disable();
         }
-        security.apply(new HttpSecurityConfigurer(jwt,loginHandler,properties));
+        security.apply(new HttpSecurityConfigurer(jwt,loginHandler,properties,authenticationTokenFilter));
         security
                 .exceptionHandling()
                 .authenticationEntryPoint(new MyUnAuthenticationEntryPoint())

springboot-starter-security-jwt/src/main/java/com/codingapi/springboot/security/configurer/HttpSecurityConfigurer.java

@@ -1,5 +1,6 @@
 package com.codingapi.springboot.security.configurer;
 
+import com.codingapi.springboot.security.filter.AuthenticationTokenFilter;
 import com.codingapi.springboot.security.filter.MyAuthenticationFilter;
 import com.codingapi.springboot.security.filter.MyLoginFilter;
 import com.codingapi.springboot.security.filter.SecurityLoginHandler;
@@ -17,11 +18,12 @@ public class HttpSecurityConfigurer extends AbstractHttpConfigurer<HttpSecurityC
 
     private final SecurityLoginHandler securityLoginHandler;
     private final SecurityJwtProperties securityJwtProperties;
+    private final AuthenticationTokenFilter authenticationTokenFilter;
 
     @Override
     public void configure(HttpSecurity security) throws Exception {
         AuthenticationManager manager = security.getSharedObject(AuthenticationManager.class);
         security.addFilter(new MyLoginFilter(manager, jwt,securityLoginHandler, securityJwtProperties));
-        security.addFilter(new MyAuthenticationFilter(manager,securityJwtProperties,jwt));
+        security.addFilter(new MyAuthenticationFilter(manager,securityJwtProperties,jwt,authenticationTokenFilter));
     }
 }

springboot-starter-security-jwt/src/main/java/com/codingapi/springboot/security/filter/AuthenticationTokenFilter.java

@@ -0,0 +1,10 @@
+package com.codingapi.springboot.security.filter;
+
+import jakarta.servlet.FilterChain;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+
+public interface AuthenticationTokenFilter {
+
+    void doFilter(HttpServletRequest request, HttpServletResponse response, FilterChain chain);
+}

springboot-starter-security-jwt/src/main/java/com/codingapi/springboot/security/filter/MyAuthenticationFilter.java

@@ -17,7 +17,6 @@
 import org.springframework.security.web.authentication.www.BasicAuthenticationFilter;
 import org.springframework.util.AntPathMatcher;
 import org.springframework.util.StringUtils;
-import org.springframework.web.filter.OncePerRequestFilter;
 
 import java.io.IOException;
 import java.nio.charset.StandardCharsets;
@@ -30,12 +29,15 @@ public class MyAuthenticationFilter extends BasicAuthenticationFilter {
     private final Jwt jwt;
 
     private final SecurityJwtProperties securityJwtProperties;
+    private final AuthenticationTokenFilter authenticationTokenFilter;
     private final AntPathMatcher antPathMatcher = new AntPathMatcher();
 
-    public MyAuthenticationFilter(AuthenticationManager manager, SecurityJwtProperties securityJwtProperties, Jwt jwt) {
+
+    public MyAuthenticationFilter(AuthenticationManager manager, SecurityJwtProperties securityJwtProperties, Jwt jwt,AuthenticationTokenFilter authenticationTokenFilter) {
         super(manager);
         this.jwt = jwt;
         this.securityJwtProperties = securityJwtProperties;
+        this.authenticationTokenFilter = authenticationTokenFilter;
     }
 
 
@@ -65,6 +67,7 @@ protected void doFilterInternal(HttpServletRequest request, HttpServletResponse
                 }
 
                 SecurityContextHolder.getContext().setAuthentication(token.getAuthenticationToken());
+                authenticationTokenFilter.doFilter(request, response, chain);
             }
         }
         chain.doFilter(request, response);

springboot-starter-security-jwt/src/main/java/com/codingapi/springboot/security/filter/MyLoginFilter.java

@@ -84,7 +84,7 @@ protected void successfulAuthentication(HttpServletRequest request, HttpServletR
         String content = JSONObject.toJSONString(SingleResponse.of(login));
         IOUtils.write(content, response.getOutputStream(), StandardCharsets.UTF_8);
 
-        loginHandler.postHandle(request,response,loginRequest);
+        loginHandler.postHandle(request,response,loginRequest,token);
         LoginRequestContext.getInstance().clean();
 
     }

springboot-starter-security-jwt/src/main/java/com/codingapi/springboot/security/filter/SecurityLoginHandler.java

@@ -1,13 +1,14 @@
 package com.codingapi.springboot.security.filter;
 
 import com.codingapi.springboot.security.dto.request.LoginRequest;
+import com.codingapi.springboot.security.jwt.Token;
 import jakarta.servlet.http.HttpServletRequest;
 import jakarta.servlet.http.HttpServletResponse;
 
 public interface SecurityLoginHandler {
 
     void preHandle(HttpServletRequest request, HttpServletResponse response, LoginRequest handler) throws Exception;
 
-    void postHandle(HttpServletRequest request, HttpServletResponse response, LoginRequest handler);
+    void postHandle(HttpServletRequest request, HttpServletResponse response, LoginRequest handler, Token token);
 
 }