Fix #36577: add API endpoint to get current user

LEDfan · LEDfan · commit 71292e88fb40 · 2026-04-03T11:48:58.000+02:00
diff --git a/src/main/java/eu/openanalytics/containerproxy/security/WebSecurityConfig.java b/src/main/java/eu/openanalytics/containerproxy/security/WebSecurityConfig.java
@@ -213,6 +213,7 @@ public void handle(HttpServletRequest request, HttpServletResponse response, Acc
             .permitAll()
             .requestMatchers(
                 new MvcRequestMatcher(handlerMappingIntrospector, "/login"),
+                new MvcRequestMatcher(handlerMappingIntrospector, "/user/me"),
                 new MvcRequestMatcher(handlerMappingIntrospector, "/signin/**"),
                 new MvcRequestMatcher(handlerMappingIntrospector, "/auth-error"),
                 new MvcRequestMatcher(handlerMappingIntrospector, "/error"),
diff --git a/src/main/java/eu/openanalytics/containerproxy/ui/AuthController.java b/src/main/java/eu/openanalytics/containerproxy/ui/AuthController.java
@@ -21,6 +21,7 @@
 package eu.openanalytics.containerproxy.ui;
 
 import eu.openanalytics.containerproxy.api.BaseController;
+import eu.openanalytics.containerproxy.api.dto.ApiResponse;
 import eu.openanalytics.containerproxy.auth.IAuthenticationBackend;
 import eu.openanalytics.containerproxy.auth.impl.OpenIDAuthenticationBackend;
 import eu.openanalytics.containerproxy.auth.impl.SAMLAuthenticationBackend;
@@ -30,16 +31,24 @@
 import org.springframework.context.MessageSource;
 import org.springframework.context.i18n.LocaleContextHolder;
 import org.springframework.core.env.Environment;
+import org.springframework.http.MediaType;
+import org.springframework.http.ResponseEntity;
+import org.springframework.security.authentication.AnonymousAuthenticationToken;
+import org.springframework.security.core.Authentication;
+import org.springframework.security.core.context.SecurityContextHolder;
 import org.springframework.stereotype.Controller;
 import org.springframework.ui.ModelMap;
+import org.springframework.web.bind.annotation.GetMapping;
 import org.springframework.web.bind.annotation.RequestMapping;
 import org.springframework.web.bind.annotation.RequestMethod;
 import org.springframework.web.bind.annotation.RequestParam;
+import org.springframework.web.bind.annotation.ResponseBody;
 import org.springframework.web.servlet.support.ServletUriComponentsBuilder;
 import org.springframework.web.servlet.view.RedirectView;
 
 import javax.inject.Inject;
 import java.util.Locale;
+import java.util.Map;
 import java.util.Optional;
 
 @Controller
@@ -68,7 +77,7 @@ public Object getLoginPage(@RequestParam Optional<String> error, ModelMap map) {
             if (error.get().equals("expired")) {
                 map.put("error", messageSource.getMessage("auth.simple.expired_error", null, locale));
             } else {
-                map.put("error",  messageSource.getMessage("auth.simple.credentials_error", null, locale));
+                map.put("error", messageSource.getMessage("auth.simple.credentials_error", null, locale));
             }
         }
 
@@ -119,4 +128,23 @@ public String getLogoutSuccessPage(ModelMap map) {
         return "logout-success";
     }
 
+
+    @ResponseBody
+    @GetMapping(value = "/user/me", produces = MediaType.APPLICATION_JSON_VALUE)
+    public ResponseEntity<ApiResponse<Map<String, Object>>> getUserMetadata() {
+        Authentication authentication = SecurityContextHolder.getContext().getAuthentication();
+        boolean isLoggedIn = authentication != null && !(authentication instanceof AnonymousAuthenticationToken) && authentication.isAuthenticated();
+        if (!isLoggedIn) {
+            return ApiResponse.success(
+                Map.of("authenticated", false)
+            );
+        }
+        return ApiResponse.success(
+            Map.of(
+                "authenticated", true,
+                "username", authentication.getName()
+            )
+        );
+    }
+
 }
