X-Git-Url: https://gerrit.o-ran-sc.org/r/gitweb?a=blobdiff_plain;ds=inline;f=acs%2Fapplication-booter%2Fsrc%2Fmain%2Fjava%2Forg%2Fcommscope%2Ftr069adapter%2Facs%2Fbooter%2FFilterInsecuredRequests.java;fp=acs%2Fapplication-booter%2Fsrc%2Fmain%2Fjava%2Forg%2Fcommscope%2Ftr069adapter%2Facs%2Fbooter%2FFilterInsecuredRequests.java;h=222c614b8654ee8de534c2e9c92d1b0e5626edfb;hb=a58ada8fd244e69cf2ebe48a251fcdd4d48acec4;hp=0000000000000000000000000000000000000000;hpb=5096ffe11e0c38f2a1cc60ccba41d27c1333f22a;p=oam%2Ftr069-adapter.git

diff --git a/acs/application-booter/src/main/java/org/commscope/tr069adapter/acs/booter/FilterInsecuredRequests.java b/acs/application-booter/src/main/java/org/commscope/tr069adapter/acs/booter/FilterInsecuredRequests.java
new file mode 100644
index 0000000..222c614
--- /dev/null
+++ b/acs/application-booter/src/main/java/org/commscope/tr069adapter/acs/booter/FilterInsecuredRequests.java
@@ -0,0 +1,70 @@
+/*
+ * ============LICENSE_START========================================================================
+ * ONAP : tr-069-adapter
+ * =================================================================================================
+ * Copyright (C) 2020 CommScope Inc Intellectual Property.
+ * =================================================================================================
+ * This tr-069-adapter software file is distributed by CommScope Inc under the Apache License,
+ * Version 2.0 (the "License"); you may not use this file except in compliance with the License. You
+ * may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * This file is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND,
+ * either express or implied. See the License for the specific language governing permissions and
+ * limitations under the License.
+ * ===============LICENSE_END=======================================================================
+ */
+
+package org.commscope.tr069adapter.acs.booter;
+
+import java.io.IOException;
+
+import javax.servlet.Filter;
+import javax.servlet.FilterChain;
+import javax.servlet.ServletException;
+import javax.servlet.ServletRequest;
+import javax.servlet.ServletResponse;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.springframework.stereotype.Component;
+
+@Component
+public class FilterInsecuredRequests implements Filter {
+
+  private String serverPort;
+
+  public FilterInsecuredRequests() {
+    super();
+  }
+
+  public FilterInsecuredRequests(String serverPort) {
+    super();
+    this.serverPort = serverPort;
+  }
+
+  /*
+   * (non-Javadoc)
+   * 
+   * @see javax.servlet.Filter#doFilter(javax.servlet.ServletRequest, javax.servlet.ServletResponse,
+   * javax.servlet.FilterChain)
+   */
+  @Override
+  public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain)
+      throws IOException, ServletException {
+    HttpServletRequest req = (HttpServletRequest) request;
+    HttpServletResponse res = (HttpServletResponse) response;
+
+    if (this.serverPort != null && !this.serverPort.equals("-1")
+        && !this.serverPort.equals(String.valueOf(req.getLocalPort()))
+        && req.getRequestURL().toString().contains("CPEMgmt")) {
+      res.setStatus(HttpServletResponse.SC_NOT_FOUND);
+      return;
+    }
+
+    chain.doFilter(request, response);
+  }
+
+
+}