added redirect if the user was logged in (JWT)

annahileta · annahileta · commit c1dcd84f8b28 · 2022-12-05T16:59:05.000+02:00
diff --git a/src/main/java/com/docusign/WebSecurityConfig.java b/src/main/java/com/docusign/WebSecurityConfig.java
@@ -37,6 +37,8 @@
 import org.springframework.security.web.SecurityFilterChain;
 import org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint;
 import org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter;
+import org.springframework.security.web.savedrequest.HttpSessionRequestCache;
+import org.springframework.security.web.savedrequest.RequestCache;
 import org.springframework.web.filter.CompositeFilter;
 
 import javax.servlet.Filter;
@@ -142,6 +144,11 @@ private List<String> getScopes() throws IOException {
 //        return filter;
 //    }
 
+    @Bean
+    public RequestCache requestCache() {
+        return new HttpSessionRequestCache();
+    }
+
     @Bean
     public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
         http
@@ -176,6 +183,7 @@ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
                                 }
                             }
                     )
+                    .requestCache().requestCache(requestCache()).and()
                     .oauth2Login(Customizer.withDefaults())
                     .oauth2Client(Customizer.withDefaults())
                     .logout(logout -> logout
diff --git a/src/main/java/com/docusign/core/controller/IndexController.java b/src/main/java/com/docusign/core/controller/IndexController.java
@@ -16,13 +16,16 @@
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.security.core.context.SecurityContextHolder;
 import org.springframework.security.oauth2.client.authentication.OAuth2AuthenticationToken;
+import org.springframework.security.web.savedrequest.RequestCache;
+import org.springframework.security.web.savedrequest.SavedRequest;
 import org.springframework.stereotype.Controller;
 import org.springframework.ui.ModelMap;
 import org.springframework.util.MultiValueMap;
 import org.springframework.web.bind.annotation.*;
 import org.springframework.web.servlet.ModelAndView;
 import org.springframework.web.servlet.view.RedirectView;
 
+import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 import java.io.BufferedWriter;
 import java.io.File;
@@ -60,6 +63,9 @@ public class IndexController {
     @Autowired
     private User user;
 
+    @Autowired
+    private RequestCache requestCache;
+
     @Autowired
     private OAuthProperties jwtGrantSso;
 
@@ -101,10 +107,14 @@ public String index(ModelMap model, HttpServletResponse response) throws IOExcep
     }
 
     @GetMapping(path = "/ds/mustAuthenticate")
-    public ModelAndView mustAuthenticateController(ModelMap model) throws IOException {
+    public ModelAndView mustAuthenticateController(ModelMap model, HttpServletRequest req, HttpServletResponse resp) throws IOException {
         model.addAttribute(LAUNCHER_TEXTS, config.getCodeExamplesText().SupportingTexts);
         model.addAttribute(ATTR_TITLE, config.getCodeExamplesText().SupportingTexts.LoginPage.LoginButton);
 
+        SavedRequest savedRequest = requestCache.getRequest(req, resp);
+        var redirectURL = savedRequest != null && "GET".equals(savedRequest.getMethod()) ?
+                        savedRequest.getRedirectUrl() : "/";
+
         if (config.getIsConsentRedirectActivated()) {
             config.setIsConsentRedirectActivated(false);
             this.session.setAuthTypeSelected(AuthType.JWT);
@@ -114,7 +124,8 @@ public ModelAndView mustAuthenticateController(ModelMap model) throws IOExceptio
                     config.getUserId(),
                     config.getImpersonatedUserId(),
                     config.getBaseURL(),
-                    config));
+                    config,
+                    "/"));
         }
 
         if (session.isRefreshToken() || config.getQuickstart().equals("true")) {
@@ -128,7 +139,8 @@ public ModelAndView mustAuthenticateController(ModelMap model) throws IOExceptio
                         config.getUserId(),
                         config.getImpersonatedUserId(),
                         config.getBaseURL(),
-                        config));
+                        config,
+                        redirectURL));
             }
 
             return new ModelAndView(getRedirectView(session.getAuthTypeSelected()));
@@ -140,7 +152,8 @@ public ModelAndView mustAuthenticateController(ModelMap model) throws IOExceptio
                     config.getUserId(),
                     config.getImpersonatedUserId(),
                     config.getBaseURL(),
-                    config));
+                    config,
+                    redirectURL));
         } else {
             return new ModelAndView("pages/ds_must_authenticate");
         }
@@ -228,11 +241,16 @@ private void writeCorrectScopesIntoApplication(ApiType apiTypeSelected) throws I
     }
 
     @RequestMapping(path = "/ds/authenticate", method = RequestMethod.POST)
-    public RedirectView authenticate(ModelMap model, @RequestBody MultiValueMap<String, String> formParams) throws IOException {
+    public RedirectView authenticate(ModelMap model, @RequestBody MultiValueMap<String, String> formParams, HttpServletRequest req, HttpServletResponse resp) throws IOException {
         if (!formParams.containsKey("selectAuthType")) {
             model.addAttribute("message", "Select option with selectAuthType name must be provided.");
             return new RedirectView("pages/error");
         }
+
+        SavedRequest savedRequest = requestCache.getRequest(req, resp);
+        var redirectURL = savedRequest != null && "GET".equals(savedRequest.getMethod()) ?
+                savedRequest.getRedirectUrl() : "/";
+
         List<String> selectAuthTypeObject = formParams.get("selectAuthType");
         AuthType authTypeSelected = AuthType.valueOf(selectAuthTypeObject.get(0));
 
@@ -243,7 +261,8 @@ public RedirectView authenticate(ModelMap model, @RequestBody MultiValueMap<Stri
                     config.getUserId(),
                     config.getImpersonatedUserId(),
                     config.getBaseURL(),
-                    config);
+                    config,
+                    redirectURL);
         }else {
             return getRedirectView(authTypeSelected);
         }
diff --git a/src/main/java/com/docusign/core/security/jwt/JWTAuthenticationMethod.java b/src/main/java/com/docusign/core/security/jwt/JWTAuthenticationMethod.java
@@ -24,7 +24,8 @@ public static RedirectView loginUsingJWT(
             String userId,
             String impersonatedUserId,
             String baseURL,
-            DSConfiguration configuration) {
+            DSConfiguration configuration,
+            String redirectURL) {
         List<String> scopes = Arrays.asList(apiType.getScopes());
 
         try {
@@ -72,7 +73,7 @@ public static RedirectView loginUsingJWT(
             }
         }
 
-        return new RedirectView("/");
+        return new RedirectView(redirectURL);
     }
 
     private static void setSpringSecurityAuthentication(

Original file line number	Diff line number	Diff line change
`@@ -24,7 +24,8 @@ public static RedirectView loginUsingJWT(`
`24`	`24`	`String userId,`
`25`	`25`	`String impersonatedUserId,`
`26`	`26`	`String baseURL,`
`27`		`- DSConfiguration configuration) {`
	`27`	`+ DSConfiguration configuration,`
	`28`	`+ String redirectURL) {`
`28`	`29`	`List<String> scopes = Arrays.asList(apiType.getScopes());`
`29`	`30`
`30`	`31`	`try {`
`@@ -72,7 +73,7 @@ public static RedirectView loginUsingJWT(`
`72`	`73`	`}`
`73`	`74`	`}`
`74`	`75`
`75`		`- return new RedirectView("/");`
	`76`	`+ return new RedirectView(redirectURL);`
`76`	`77`	`}`
`77`	`78`
`78`	`79`	`private static void setSpringSecurityAuthentication(`