Docs Developer Site
Enonic XP
arrow-down
  1. Manifesto
    1. Projects
    2. Build System
    1. Globals
    2. HTTP
    3. Controllers
    4. Filters
    5. Events
    6. Websocket
    7. Error handler
    8. ID provider
    9. Tasks
    10. Localization
    11. Java bridge
      1. Webapp Engine
        1. Image service
        2. Component service
      3. Admin Engine
      4. Asset service
      5. HTTP service
      6. IDprovider service
    2. Task engine
    3. Management Endpoint
    4. Statistics Endpoint
    1. NoQL syntax
    2. System properties
    3. Index configuration
    4. Aggregations
    5. Highlighting
    6. Branches
  6. IAM
    1. Widgets
    1. Schema System
    2. Mixins
    3. Input Types
    4. Content Types
    5. X-data
    6. Macros
    7. Sites
    8. Page Components
    9. Contributions
    10. Mappings
    11. Response Processors
    1. Strategies
    2. Distributions
    3. Vhosts
    4. Configuration
    5. Data management
    1. Admin API
    2. Authentication API
    3. Cluster API
    4. Common API
    5. Content API
    6. Context API
    7. Event API
    8. I18N API
    9. IO API
    10. Mail API
    11. Node API
    12. Portal API
    13. Repo API
    14. Tasks API
    15. Value API
    16. Websocket API
    1. Upgrade Notes
    2. Upgrading Apps
Enonic XP Framework Filters

HTTP filters

Contents

HTTP filters

HTTP filters enable pipelined processing of http requests.

Filters

Filters enable you to step into the request pipeline, and execute code at both request and response of the execution pipeline, possibly intercepting the request directly. Similar to an HTTP Controller, standalone filters are triggered based on an export.

As such, to make a filter, it must export a filter function:

Minimal filter timing the subsequent request 
exports.filter = function (req, next) {
    var before = new Date().getTime();
    var response = next(req);  // next(req) hands over the request to the engine pipeline and returns the response
    var after = new Date().getTime();
    log.info((after - before) + 'ms');
    return response;
};
Filter manipulating the request 
exports.filter = function (req, next) {
  req.requestLogging = true; // Manipulate request
  log.info("Request:" + JSON.stringify(req, null, 2));
  var response = next(req); // Continue request pipeline
  response.responseLogging = true; // Manipulate response
  log.info("Response:" + JSON.stringify(response, null, 2));
  return response;
};
Filter intercepting the request 
exports.filter = function (req, next) {

    if (req.headers['X-Auth-Token'] !== 'letMeIn') {
        // intercept request pipeline
        return {
            status: 403
        }
    }

    req.headers['Authenticated'] = true;
    return next(req);
};

Filters may currently be wired into the execution pipeline in the following ways:

Contents