use of com.evolveum.midpoint.authentication.impl.filter.HttpBasicAuthenticationFilter in project midpoint by Evolveum.
the class HttpBasicModuleWebSecurityConfigurer method configure.
@Override
protected void configure(HttpSecurity http) throws Exception {
super.configure(http);
HttpAuthenticationEntryPoint entryPoint = getObjectPostProcessor().postProcess(new HttpAuthenticationEntryPoint());
http.antMatcher(AuthUtil.stripEndingSlashes(getPrefix()) + "/**");
HttpBasicAuthenticationFilter filter = getObjectPostProcessor().postProcess(new HttpBasicAuthenticationFilter(authenticationManager(), entryPoint));
RememberMeServices rememberMeServices = http.getSharedObject(RememberMeServices.class);
if (rememberMeServices != null) {
filter.setRememberMeServices(rememberMeServices);
}
http.authorizeRequests().accessDecisionManager(new MidpointHttpAuthorizationEvaluator(securityEnforcer, securityContextManager, taskManager, model));
http.addFilterAt(filter, BasicAuthenticationFilter.class);
http.formLogin().disable().csrf().disable();
getOrApply(http, new MidpointExceptionHandlingConfigurer<>()).authenticationEntryPoint(entryPoint).authenticationTrustResolver(new MidpointAuthenticationTrustResolverImpl());
}
Aggregations