Search in sources :

Example 1 with MidpointHttpAuthorizationEvaluator

use of com.evolveum.midpoint.authentication.impl.authorization.evaluator.MidpointHttpAuthorizationEvaluator in project midpoint by Evolveum.

the class HttpBasicModuleWebSecurityConfigurer method configure.

@Override
protected void configure(HttpSecurity http) throws Exception {
    super.configure(http);
    HttpAuthenticationEntryPoint entryPoint = getObjectPostProcessor().postProcess(new HttpAuthenticationEntryPoint());
    http.antMatcher(AuthUtil.stripEndingSlashes(getPrefix()) + "/**");
    HttpBasicAuthenticationFilter filter = getObjectPostProcessor().postProcess(new HttpBasicAuthenticationFilter(authenticationManager(), entryPoint));
    RememberMeServices rememberMeServices = http.getSharedObject(RememberMeServices.class);
    if (rememberMeServices != null) {
        filter.setRememberMeServices(rememberMeServices);
    }
    http.authorizeRequests().accessDecisionManager(new MidpointHttpAuthorizationEvaluator(securityEnforcer, securityContextManager, taskManager, model));
    http.addFilterAt(filter, BasicAuthenticationFilter.class);
    http.formLogin().disable().csrf().disable();
    getOrApply(http, new MidpointExceptionHandlingConfigurer<>()).authenticationEntryPoint(entryPoint).authenticationTrustResolver(new MidpointAuthenticationTrustResolverImpl());
}
Also used : HttpBasicAuthenticationFilter(com.evolveum.midpoint.authentication.impl.filter.HttpBasicAuthenticationFilter) MidpointAuthenticationTrustResolverImpl(com.evolveum.midpoint.authentication.impl.MidpointAuthenticationTrustResolverImpl) RememberMeServices(org.springframework.security.web.authentication.RememberMeServices) HttpAuthenticationEntryPoint(com.evolveum.midpoint.authentication.impl.entry.point.HttpAuthenticationEntryPoint) MidpointHttpAuthorizationEvaluator(com.evolveum.midpoint.authentication.impl.authorization.evaluator.MidpointHttpAuthorizationEvaluator)

Example 2 with MidpointHttpAuthorizationEvaluator

use of com.evolveum.midpoint.authentication.impl.authorization.evaluator.MidpointHttpAuthorizationEvaluator in project midpoint by Evolveum.

the class HttpSecurityQuestionsModuleWebSecurityConfigurer method configure.

@Override
protected void configure(HttpSecurity http) throws Exception {
    super.configure(http);
    HttpAuthenticationEntryPoint entryPoint = getObjectPostProcessor().postProcess(new HttpSecurityQuestionsAuthenticationEntryPoint());
    http.antMatcher(AuthUtil.stripEndingSlashes(getPrefix()) + "/**");
    http.authorizeRequests().accessDecisionManager(new MidpointHttpAuthorizationEvaluator(securityEnforcer, securityContextManager, taskManager, model));
    HttpSecurityQuestionsAuthenticationFilter filter = getObjectPostProcessor().postProcess(new HttpSecurityQuestionsAuthenticationFilter(authenticationManager(), entryPoint));
    RememberMeServices rememberMeServices = http.getSharedObject(RememberMeServices.class);
    if (rememberMeServices != null) {
        filter.setRememberMeServices(rememberMeServices);
    }
    http.addFilterAt(filter, BasicAuthenticationFilter.class);
    http.formLogin().disable().csrf().disable();
    getOrApply(http, new MidpointExceptionHandlingConfigurer<>()).authenticationEntryPoint(entryPoint).authenticationTrustResolver(new MidpointAuthenticationTrustResolverImpl());
}
Also used : HttpSecurityQuestionsAuthenticationEntryPoint(com.evolveum.midpoint.authentication.impl.entry.point.HttpSecurityQuestionsAuthenticationEntryPoint) MidpointAuthenticationTrustResolverImpl(com.evolveum.midpoint.authentication.impl.MidpointAuthenticationTrustResolverImpl) RememberMeServices(org.springframework.security.web.authentication.RememberMeServices) HttpSecurityQuestionsAuthenticationFilter(com.evolveum.midpoint.authentication.impl.filter.HttpSecurityQuestionsAuthenticationFilter) HttpAuthenticationEntryPoint(com.evolveum.midpoint.authentication.impl.entry.point.HttpAuthenticationEntryPoint) MidpointHttpAuthorizationEvaluator(com.evolveum.midpoint.authentication.impl.authorization.evaluator.MidpointHttpAuthorizationEvaluator)

Example 3 with MidpointHttpAuthorizationEvaluator

use of com.evolveum.midpoint.authentication.impl.authorization.evaluator.MidpointHttpAuthorizationEvaluator in project midpoint by Evolveum.

the class OidcResourceServerModuleWebSecurityConfigurer method configure.

@Override
protected void configure(HttpSecurity http) throws Exception {
    super.configure(http);
    HttpAuthenticationEntryPoint entryPoint = getObjectPostProcessor().postProcess(new HttpAuthenticationEntryPoint());
    http.antMatcher(AuthUtil.stripEndingSlashes(getPrefix()) + "/**");
    OidcBearerTokenAuthenticationFilter filter = getObjectPostProcessor().postProcess(new OidcBearerTokenAuthenticationFilter(authenticationManager(), entryPoint));
    RememberMeServices rememberMeServices = http.getSharedObject(RememberMeServices.class);
    if (rememberMeServices != null) {
        filter.setRememberMeServices(rememberMeServices);
    }
    http.authorizeRequests().accessDecisionManager(new MidpointHttpAuthorizationEvaluator(securityEnforcer, securityContextManager, taskManager, model));
    http.addFilterAt(filter, BasicAuthenticationFilter.class);
    http.formLogin().disable().csrf().disable();
    getOrApply(http, new MidpointExceptionHandlingConfigurer<>()).authenticationEntryPoint(entryPoint).authenticationTrustResolver(new MidpointAuthenticationTrustResolverImpl());
}
Also used : OidcBearerTokenAuthenticationFilter(com.evolveum.midpoint.authentication.impl.oidc.OidcBearerTokenAuthenticationFilter) MidpointAuthenticationTrustResolverImpl(com.evolveum.midpoint.authentication.impl.MidpointAuthenticationTrustResolverImpl) RememberMeServices(org.springframework.security.web.authentication.RememberMeServices) HttpAuthenticationEntryPoint(com.evolveum.midpoint.authentication.impl.entry.point.HttpAuthenticationEntryPoint) MidpointHttpAuthorizationEvaluator(com.evolveum.midpoint.authentication.impl.authorization.evaluator.MidpointHttpAuthorizationEvaluator)

Aggregations

MidpointAuthenticationTrustResolverImpl (com.evolveum.midpoint.authentication.impl.MidpointAuthenticationTrustResolverImpl)3 MidpointHttpAuthorizationEvaluator (com.evolveum.midpoint.authentication.impl.authorization.evaluator.MidpointHttpAuthorizationEvaluator)3 HttpAuthenticationEntryPoint (com.evolveum.midpoint.authentication.impl.entry.point.HttpAuthenticationEntryPoint)3 RememberMeServices (org.springframework.security.web.authentication.RememberMeServices)3 HttpSecurityQuestionsAuthenticationEntryPoint (com.evolveum.midpoint.authentication.impl.entry.point.HttpSecurityQuestionsAuthenticationEntryPoint)1 HttpBasicAuthenticationFilter (com.evolveum.midpoint.authentication.impl.filter.HttpBasicAuthenticationFilter)1 HttpSecurityQuestionsAuthenticationFilter (com.evolveum.midpoint.authentication.impl.filter.HttpSecurityQuestionsAuthenticationFilter)1 OidcBearerTokenAuthenticationFilter (com.evolveum.midpoint.authentication.impl.oidc.OidcBearerTokenAuthenticationFilter)1