Authentication through the canvas-attribute signed_request

[examples/facebook-app] / src / main / java / de / juplo / yourshouter / UserCookieInterceptor.java

diff --git a/src/main/java/de/juplo/yourshouter/UserCookieInterceptor.java b/src/main/java/de/juplo/yourshouter/UserCookieInterceptor.java
index c72ef41..1b00e09 100644 (file)
--- a/src/main/java/de/juplo/yourshouter/UserCookieInterceptor.java
+++ b/src/main/java/de/juplo/yourshouter/UserCookieInterceptor.java
@@ -3,6 +3,7 @@ package de.juplo.yourshouter;
 
 import java.io.IOException;
 import java.util.Collections;
+import java.util.regex.Pattern;
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 import org.slf4j.Logger;
@@ -21,6 +22,7 @@ public final class UserCookieInterceptor extends HandlerInterceptorAdapter
 {
   private final static Logger LOG =
       LoggerFactory.getLogger(UserCookieInterceptor.class);
+  private final static Pattern PATTERN = Pattern.compile("^/signin|canvas");
 
 
   private final UsersConnectionRepository repository;
@@ -66,7 +68,7 @@ public final class UserCookieInterceptor extends HandlerInterceptorAdapter
       throws
         IOException
   {
-    if (request.getServletPath().startsWith("/signin"))
+    if (PATTERN.matcher(request.getServletPath()).find())
       return true;
 
     String user = UserCookieGenerator.INSTANCE.readCookieValue(request);