SUPPORT-8571: Fix

2024-11-14 10:26:31 +03:00 · 2024-11-14 10:26:31 +03:00 · 7161cb4bbb
commit 7161cb4bbb
parent 6ade6388b0
1 changed files with 4 additions and 0 deletions
--- a/backend/src/main/java/ru/micord/ervu/security/webbpm/jwt/filter/JwtAuthenticationFilter.java
+++ b/backend/src/main/java/ru/micord/ervu/security/webbpm/jwt/filter/JwtAuthenticationFilter.java
@ -59,6 +59,10 @@ public class JwtAuthenticationFilter extends AbstractAuthenticationProcessingFil
    }
    try {
      authentication = getAuthenticationManager().authenticate(authentication);
+      String browser = httpServletRequest.getHeader("User-Agent");
+      if (browser == null || !browser.contains("YaBrowser") || !browser.contains("Chromium GOST")) {
+        throw new CredentialsExpiredException("Invalid browser. Use YaBrowser or Chromium GOST");
+      }
      if (!httpServletRequest.getRequestURI().endsWith("esia/logout")) {
        Token token = jwtTokenService.getToken(tokenStr);
        if (!token.getHasRole()) {