Examples with SecurityConstraint io.undertow.servlet.api.SecurityConstraint used on opensource projects

Search in sources :

Example 21 with SecurityConstraint

use of io.undertow.servlet.api.SecurityConstraint in project keycloak by keycloak.

the class SamlServletExtension method addEndpointConstraint.

/**
 * add security constraint to /saml so that the endpoint can be called and auth mechanism pinged.
 * @param deploymentInfo
 */
protected void addEndpointConstraint(DeploymentInfo deploymentInfo) {
    SecurityConstraint constraint = new SecurityConstraint();
    WebResourceCollection collection = new WebResourceCollection();
    collection.addUrlPattern("/saml");
    constraint.addWebResourceCollection(collection);
    deploymentInfo.addSecurityConstraint(constraint);
}
Also used : WebResourceCollection(io.undertow.servlet.api.WebResourceCollection) SecurityConstraint(io.undertow.servlet.api.SecurityConstraint)

Example 22 with SecurityConstraint

use of io.undertow.servlet.api.SecurityConstraint in project keycloak by keycloak.

the class SimpleWebXmlParser method parseWebXml.

void parseWebXml(Document webXml, DeploymentInfo di) {
    try {
        DocumentWrapper document = new DocumentWrapper(webXml);
        if (di.getServlets().get("ResteasyServlet") == null) {
            // SERVLETS
            Map<String, String> servletMappings = new HashMap<>();
            List<ElementWrapper> sm = document.getElementsByTagName("servlet-mapping");
            for (ElementWrapper mapping : sm) {
                String servletName = mapping.getElementByTagName("servlet-name").getText();
                String path = mapping.getElementByTagName("url-pattern").getText();
                servletMappings.put(servletName, path);
            }
            List<ElementWrapper> servlets = document.getElementsByTagName("servlet");
            for (ElementWrapper servlet : servlets) {
                String servletName = servlet.getElementByTagName("servlet-name").getText();
                ElementWrapper servletClassEw = servlet.getElementByTagName("servlet-class");
                String servletClass = servletClassEw == null ? servletName : servletClassEw.getText();
                ElementWrapper loadOnStartupEw = servlet.getElementByTagName("load-on-startup");
                Integer loadOnStartup = loadOnStartupEw == null ? null : Integer.valueOf(loadOnStartupEw.getText());
                Class<? extends Servlet> servletClazz = (Class<? extends Servlet>) Class.forName(servletClass, false, di.getClassLoader());
                ServletInfo undertowServlet = new ServletInfo(servletName, servletClazz);
                if (servletMappings.containsKey(servletName)) {
                    undertowServlet.addMapping(servletMappings.get(servletName));
                    undertowServlet.setLoadOnStartup(loadOnStartup);
                    di.addServlet(undertowServlet);
                } else {
                    log.warnf("Missing servlet-mapping for '%s'", servletName);
                }
            }
        }
        // FILTERS
        Map<String, String> filterMappings = new HashMap<>();
        List<ElementWrapper> fm = document.getElementsByTagName("filter-mapping");
        for (ElementWrapper mapping : fm) {
            String filterName = mapping.getElementByTagName("filter-name").getText();
            String path = mapping.getElementByTagName("url-pattern").getText();
            filterMappings.put(filterName, path);
        }
        List<ElementWrapper> filters = document.getElementsByTagName("filter");
        for (ElementWrapper filter : filters) {
            String filterName = filter.getElementByTagName("filter-name").getText();
            String filterClass = filter.getElementByTagName("filter-class").getText();
            Class<? extends Filter> filterClazz = (Class<? extends Filter>) Class.forName(filterClass, false, di.getClassLoader());
            FilterInfo undertowFilter = new FilterInfo(filterName, filterClazz);
            List<ElementWrapper> initParams = filter.getElementsByTagName("init-param");
            for (ElementWrapper initParam : initParams) {
                String paramName = initParam.getElementByTagName("param-name").getText();
                String paramValue = initParam.getElementByTagName("param-value").getText();
                undertowFilter.addInitParam(paramName, paramValue);
            }
            di.addFilter(undertowFilter);
            if (filterMappings.containsKey(filterName)) {
                di.addFilterUrlMapping(filterName, filterMappings.get(filterName), DispatcherType.REQUEST);
            } else {
                log.warnf("Missing filter-mapping for '%s'", filterName);
            }
        }
        // CONTEXT PARAMS
        List<ElementWrapper> contextParams = document.getElementsByTagName("context-param");
        for (ElementWrapper param : contextParams) {
            String paramName = param.getElementByTagName("param-name").getText();
            String paramValue = param.getElementByTagName("param-value").getText();
            di.addInitParameter(paramName, paramValue);
        }
        // ROLES
        List<ElementWrapper> securityRoles = document.getElementsByTagName("security-role");
        for (ElementWrapper sr : securityRoles) {
            String roleName = sr.getElementByTagName("role-name").getText();
            di.addSecurityRole(roleName);
        }
        // SECURITY CONSTRAINTS
        List<ElementWrapper> secConstraints = document.getElementsByTagName("security-constraint");
        for (ElementWrapper constraint : secConstraints) {
            String urlPattern = constraint.getElementByTagName("web-resource-collection").getElementByTagName("url-pattern").getText();
            ElementWrapper authCsnt = constraint.getElementByTagName("auth-constraint");
            String roleName = authCsnt == null ? null : authCsnt.getElementByTagName("role-name").getText();
            SecurityConstraint undertowConstraint = new SecurityConstraint();
            WebResourceCollection collection = new WebResourceCollection();
            collection.addUrlPattern(urlPattern);
            undertowConstraint.addWebResourceCollection(collection);
            if (roleName != null) {
                undertowConstraint.addRoleAllowed(roleName);
            } else {
                undertowConstraint.setEmptyRoleSemantic(SecurityInfo.EmptyRoleSemantic.PERMIT);
            }
            di.addSecurityConstraint(undertowConstraint);
        }
        // LOGIN CONFIG
        ElementWrapper loginCfg = document.getElementByTagName("login-config");
        if (loginCfg != null) {
            String mech = loginCfg.getElementByTagName("auth-method").getText();
            String realmName = loginCfg.getElementByTagName("realm-name").getText();
            ElementWrapper form = loginCfg.getElementByTagName("form-login-config");
            if (form != null) {
                String loginPage = form.getElementByTagName("form-login-page").getText();
                String errorPage = form.getElementByTagName("form-error-page").getText();
                di.setLoginConfig(new LoginConfig(mech, realmName, loginPage, errorPage));
            } else {
                di.setLoginConfig(new LoginConfig(realmName).addFirstAuthMethod(mech));
            }
        }
        // COOKIE CONFIG
        ElementWrapper sessionCfg = document.getElementByTagName("session-config");
        if (sessionCfg != null) {
            ElementWrapper cookieConfig = sessionCfg.getElementByTagName("cookie-config");
            String cookieName = cookieConfig.getElementByTagName("name").getText();
            ServletSessionConfig cfg = new ServletSessionConfig();
            if (cookieConfig.getElementByTagName("http-only") != null) {
                cfg.setHttpOnly(Boolean.parseBoolean(cookieConfig.getElementByTagName("http-only").getText()));
            }
            cfg.setName(cookieName);
            di.setServletSessionConfig(cfg);
        }
        // ERROR PAGES
        List<ElementWrapper> errorPages = document.getElementsByTagName("error-page");
        for (ElementWrapper errorPageWrapper : errorPages) {
            String location = errorPageWrapper.getElementByTagName("location").getText();
            ErrorPage errorPage;
            if (errorPageWrapper.getElementByTagName("error-code") != null) {
                errorPage = new ErrorPage(location, Integer.parseInt(errorPageWrapper.getElementByTagName("error-code").getText()));
            } else {
                errorPage = new ErrorPage(location);
            }
            di.addErrorPage(errorPage);
        }
    } catch (ClassNotFoundException cnfe) {
        throw new RuntimeException(cnfe);
    } catch (NullPointerException npe) {
        throw new RuntimeException("Error parsing web.xml of " + di.getDeploymentName(), npe);
    }
}
Also used : WebResourceCollection(io.undertow.servlet.api.WebResourceCollection) ErrorPage(io.undertow.servlet.api.ErrorPage) HashMap(java.util.HashMap) ServletSessionConfig(io.undertow.servlet.api.ServletSessionConfig) SecurityConstraint(io.undertow.servlet.api.SecurityConstraint) ServletInfo(io.undertow.servlet.api.ServletInfo) Filter(javax.servlet.Filter) LoginConfig(io.undertow.servlet.api.LoginConfig) Servlet(javax.servlet.Servlet) FilterInfo(io.undertow.servlet.api.FilterInfo)

Aggregations

SecurityConstraint (io.undertow.servlet.api.SecurityConstraint)22 WebResourceCollection (io.undertow.servlet.api.WebResourceCollection)21 DeploymentInfo (io.undertow.servlet.api.DeploymentInfo)18 LoginConfig (io.undertow.servlet.api.LoginConfig)16 ServletInfo (io.undertow.servlet.api.ServletInfo)15 PathHandler (io.undertow.server.handlers.PathHandler)12 ServletContainer (io.undertow.servlet.api.ServletContainer)12 BeforeClass (org.junit.BeforeClass)12 DeploymentManager (io.undertow.servlet.api.DeploymentManager)11 ServletIdentityManager (io.undertow.servlet.test.security.constraint.ServletIdentityManager)8 SimpleServletTestCase (io.undertow.servlet.test.SimpleServletTestCase)7 AuthMethodConfig (io.undertow.servlet.api.AuthMethodConfig)6 ServletSecurityInfo (io.undertow.servlet.api.ServletSecurityInfo)5 HashMap (java.util.HashMap)5 HttpHandler (io.undertow.server.HttpHandler)3 ErrorPage (io.undertow.servlet.api.ErrorPage)3 FilterInfo (io.undertow.servlet.api.FilterInfo)3 HttpMethodSecurityInfo (io.undertow.servlet.api.HttpMethodSecurityInfo)3 ListenerInfo (io.undertow.servlet.api.ListenerInfo)3 SendAuthTypeServlet (io.undertow.servlet.test.security.SendAuthTypeServlet)3
About Me
UseOf

Java Tutorials :

Simple Java RabbitMQ Example with Spring
Simple Springboot JPA Eclipeslink Example
Simple SpringBoot JPA Hibernate Example
Jackson JSON @JsonIgnore and @JsonIgnoreProperties Examples
Java Infinite recursion (StackOverflowError) Jackson solutions
Simple Java Jackson Serialize Objects to JSON and convert them back To Object
ElasticSearch 5 - Upload files using Java API in binary field Example
Java JAXB marshall unmarshall Examples from String and Stream
Java 8 forEach List and Map examples
ElasticSearch 5 Java API SearchRequestBuilder examples
Java ElasticSearch 5 examples with node index and mapping - running local
Convert String to int or Integer Java 8
Java 9 in action - JShell - Ubuntu
Java - removing invalid characters from a file name
Hello world!? or Hello Tutorial