Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

How to inject a DAO class (component) into REST resource filter

Vikash Kumar
Vikash Kumar August 26, 2017

I am writing a REST filter for one my rest api class. I want to do authorization in the rest filter and annotate all the REST services I need to apply authorization check on. Here's the Rest Resource Filter code:

@Scanned
@Component
public class AuthorizationFilter implements ResourceFilter {

 private MyActibeObjectDao myActibeObjectDao;
 
 @Inject
 public AuthorizationFilter(MyActibeObjectDao myActibeObjectDao) {
    this.myActibeObjectDao = myActibeObjectDao;
 }

 
 @Override
 public ContainerRequestFilter getRequestFilter() {
 
   return new ContainerRequestFilter() {
    @Override
    public ContainerRequest filter(ContainerRequest request) {
      ...
      /* Fetch admin users from AO */
      String[] admins = myActibeObjectDao.getAdminUsers();
      /* If not in the admins then throw Exception */
      throw new WebApplicationException(
             Response.status(Response.Status.FORBIDDEN)
             .entity("You are not authorized to this operation!")
             .build());
    }
  };
 }

...
 
}

Here's my REST class:

 @GET
 @AnonymousAllowed
 @Produces(MediaType.APPLICATION_JSON)
 @Path("/settings/{userId}")
 @ResourceFilters(AuthorizationFilter.class)
 public Response retrieveTableMetaData(@PathParam("userId") Integer userId) {
 /* To Do: */

}

 

The problem is, I am getting null value in 

myActibeObjectDao

Any pointer will be of great help in this regards.

Thank you!

Vikash 

Answer
Watch
Like Be the first to like this
965 views

2 answers

1 vote
Ferenc Nagy
Ferenc Nagy
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
May 27, 2021

I had similar problem with injection and it started to work after adding "@Provider" to my filter class. Got inspired by this topic:
https://community.atlassian.com/t5/Answers-Developer-Questions/How-can-I-intercept-every-rest-request-to-check-security/qaq-p/467601

Especially the sample code here:
https://bitbucket.org/atlassian/atlassian-rest/src/cc7f6aa16c340e5c7860b6fd6d611395396f0313/atlassian-rest-common/src/main/java/com/atlassian/plugins/rest/common/security/jersey/AdminOnlyResourceFilter.java?at=master

View More Comments
Vikash Kumar
Vikash Kumar August 28, 2021

It's been long time I worked on Atlassian plugin development. But seems this could be right answer now that I came back after a long time in this field :)

Thank you for your answer.

Like Ferenc Nagy likes this
Reply
0 votes
Vikash Kumar
Vikash Kumar August 31, 2017

Any one up for help here?

Reply

Suggest an answer

Log in or Sign up to answer
Confluence
Confluence
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Notice at Collection Terms Security