aboutsummaryrefslogtreecommitdiff
path: root/src/org/traccar/api/SecurityRequestFilter.java
diff options
context:
space:
mode:
Diffstat (limited to 'src/org/traccar/api/SecurityRequestFilter.java')
-rw-r--r--src/org/traccar/api/SecurityRequestFilter.java12
1 files changed, 5 insertions, 7 deletions
diff --git a/src/org/traccar/api/SecurityRequestFilter.java b/src/org/traccar/api/SecurityRequestFilter.java
index f207b6bff..20186b0cb 100644
--- a/src/org/traccar/api/SecurityRequestFilter.java
+++ b/src/org/traccar/api/SecurityRequestFilter.java
@@ -55,11 +55,6 @@ public class SecurityRequestFilter implements ContainerRequestFilter {
@Override
public void filter(ContainerRequestContext requestContext) {
- Method method = resourceInfo.getResourceMethod();
- if (method.isAnnotationPresent(PermitAll.class)) {
- return;
- }
-
SecurityContext securityContext = null;
String authHeader = requestContext.getHeaderString(AUTHORIZATION_HEADER);
@@ -87,8 +82,11 @@ public class SecurityRequestFilter implements ContainerRequestFilter {
if (securityContext != null) {
requestContext.setSecurityContext(securityContext);
} else {
- throw new WebApplicationException(
- Response.status(Response.Status.UNAUTHORIZED).header(WWW_AUTHENTICATE, BASIC_REALM).build());
+ Method method = resourceInfo.getResourceMethod();
+ if (!method.isAnnotationPresent(PermitAll.class)) {
+ throw new WebApplicationException(
+ Response.status(Response.Status.UNAUTHORIZED).header(WWW_AUTHENTICATE, BASIC_REALM).build());
+ }
}
}
generated by cgit v1.2.3 (git 2.39.1) at 2024-07-14 01:00:45 +0000