Search in sources :

Example 1 with OidcBearerTokenAuthenticationFilter

use of com.evolveum.midpoint.authentication.impl.oidc.OidcBearerTokenAuthenticationFilter in project midpoint by Evolveum.

the class OidcResourceServerModuleWebSecurityConfigurer method configure.

@Override
protected void configure(HttpSecurity http) throws Exception {
    super.configure(http);
    HttpAuthenticationEntryPoint entryPoint = getObjectPostProcessor().postProcess(new HttpAuthenticationEntryPoint());
    http.antMatcher(AuthUtil.stripEndingSlashes(getPrefix()) + "/**");
    OidcBearerTokenAuthenticationFilter filter = getObjectPostProcessor().postProcess(new OidcBearerTokenAuthenticationFilter(authenticationManager(), entryPoint));
    RememberMeServices rememberMeServices = http.getSharedObject(RememberMeServices.class);
    if (rememberMeServices != null) {
        filter.setRememberMeServices(rememberMeServices);
    }
    http.authorizeRequests().accessDecisionManager(new MidpointHttpAuthorizationEvaluator(securityEnforcer, securityContextManager, taskManager, model));
    http.addFilterAt(filter, BasicAuthenticationFilter.class);
    http.formLogin().disable().csrf().disable();
    getOrApply(http, new MidpointExceptionHandlingConfigurer<>()).authenticationEntryPoint(entryPoint).authenticationTrustResolver(new MidpointAuthenticationTrustResolverImpl());
}
Also used : OidcBearerTokenAuthenticationFilter(com.evolveum.midpoint.authentication.impl.oidc.OidcBearerTokenAuthenticationFilter) MidpointAuthenticationTrustResolverImpl(com.evolveum.midpoint.authentication.impl.MidpointAuthenticationTrustResolverImpl) RememberMeServices(org.springframework.security.web.authentication.RememberMeServices) HttpAuthenticationEntryPoint(com.evolveum.midpoint.authentication.impl.entry.point.HttpAuthenticationEntryPoint) MidpointHttpAuthorizationEvaluator(com.evolveum.midpoint.authentication.impl.authorization.evaluator.MidpointHttpAuthorizationEvaluator)

Aggregations

MidpointAuthenticationTrustResolverImpl (com.evolveum.midpoint.authentication.impl.MidpointAuthenticationTrustResolverImpl)1 MidpointHttpAuthorizationEvaluator (com.evolveum.midpoint.authentication.impl.authorization.evaluator.MidpointHttpAuthorizationEvaluator)1 HttpAuthenticationEntryPoint (com.evolveum.midpoint.authentication.impl.entry.point.HttpAuthenticationEntryPoint)1 OidcBearerTokenAuthenticationFilter (com.evolveum.midpoint.authentication.impl.oidc.OidcBearerTokenAuthenticationFilter)1 RememberMeServices (org.springframework.security.web.authentication.RememberMeServices)1