diff options
Diffstat (limited to 'src/main/java/org/onap/pomba/contextbuilder/aai/util/RestUtil.java')
-rw-r--r-- | src/main/java/org/onap/pomba/contextbuilder/aai/util/RestUtil.java | 15 |
1 files changed, 14 insertions, 1 deletions
diff --git a/src/main/java/org/onap/pomba/contextbuilder/aai/util/RestUtil.java b/src/main/java/org/onap/pomba/contextbuilder/aai/util/RestUtil.java index 240a55b..8681d21 100644 --- a/src/main/java/org/onap/pomba/contextbuilder/aai/util/RestUtil.java +++ b/src/main/java/org/onap/pomba/contextbuilder/aai/util/RestUtil.java @@ -16,7 +16,6 @@ package org.onap.pomba.contextbuilder.aai.util; import com.sun.jersey.core.util.MultivaluedMapImpl; -//import com.sun.jersey.core.util.MultivaluedMapImpl; import java.text.MessageFormat; import java.util.ArrayList; import java.util.Collections; @@ -66,6 +65,7 @@ public class RestUtil { // HTTP headers private static final String TRANSACTION_ID = "X-TransactionId"; private static final String FROM_APP_ID = "X-FromAppId"; + private static final String AUTHORIZATION = "Authorization"; private static final String APP_NAME = "aaiCtxBuilder"; @@ -114,6 +114,19 @@ public class RestUtil { } } + public static void validateBasicAuthorization(HttpHeaders headers, String basicAuthorization) throws AuditException { + String authorization = null; + + // validation on HTTP Authorization Header + authorization = headers.getRequestHeaders().getFirst(AUTHORIZATION); + if (authorization != null && !authorization.trim().isEmpty() && authorization.startsWith("Basic")) { + if (!authorization.equals(basicAuthorization)) { + throw new AuditException(Status.UNAUTHORIZED, AuditError.MISMATCH); + }; + } else { + throw new AuditException(Status.UNAUTHORIZED, AuditError.MISSING_AUTHORIZATION_HEADER); + } + } public static void validateHeader(HttpHeaders headers) throws AuditException { String fromAppId = null; |