Example 21 with ConstraintSecurityHandler
use of org.eclipse.jetty.security.ConstraintSecurityHandler in project camel by apache.
the class HttpBasicAuthTest method getSecurityHandler.
private SecurityHandler getSecurityHandler() throws IOException {
Constraint constraint = new Constraint(Constraint.__BASIC_AUTH, "user");
constraint.setAuthenticate(true);
ConstraintMapping cm = new ConstraintMapping();
cm.setPathSpec("/*");
cm.setConstraint(constraint);
ConstraintSecurityHandler sh = new ConstraintSecurityHandler();
sh.setAuthenticator(new BasicAuthenticator());
sh.setConstraintMappings(Arrays.asList(new ConstraintMapping[] { cm }));
HashLoginService loginService = new HashLoginService("MyRealm", "src/test/resources/myRealm.properties");
sh.setLoginService(loginService);
sh.setConstraintMappings(Arrays.asList(new ConstraintMapping[] { cm }));
return sh;
}
Also used :
ConstraintMapping(org.eclipse.jetty.security.ConstraintMapping)
HashLoginService(org.eclipse.jetty.security.HashLoginService)
BasicAuthenticator(org.eclipse.jetty.security.authentication.BasicAuthenticator)
Constraint(org.eclipse.jetty.util.security.Constraint)
ConstraintSecurityHandler(org.eclipse.jetty.security.ConstraintSecurityHandler)
Example 22 with ConstraintSecurityHandler
use of org.eclipse.jetty.security.ConstraintSecurityHandler in project EventHub by Codecademy.
the class EventHubHandler method main.
public static void main(String[] args) throws Exception {
Properties properties = new Properties();
properties.load(EventHub.class.getClassLoader().getResourceAsStream("hub.properties"));
properties.load(EventHubHandler.class.getClassLoader().getResourceAsStream("web.properties"));
properties.putAll(System.getProperties());
Injector injector = Guice.createInjector(Modules.override(new DmaIdListModule(), new DatedEventIndexModule(), new ShardedEventIndexModule(), new PropertiesIndexModule(), new UserEventIndexModule(), new EventStorageModule(), new UserStorageModule(), new EventHubModule(properties)).with(new Module()));
final EventHubHandler eventHubHandler = injector.getInstance(EventHubHandler.class);
int port = injector.getInstance(Key.get(Integer.class, Names.named("eventhubhandler.port")));
final Server server = new Server(port);
@SuppressWarnings("ConstantConditions") String webDir = EventHubHandler.class.getClassLoader().getResource("frontend").toExternalForm();
HashLoginService loginService = new HashLoginService();
loginService.putUser(properties.getProperty("eventhubhandler.username"), new Password(properties.getProperty("eventhubhandler.password")), new String[] { "user" });
server.addBean(loginService);
ConstraintSecurityHandler securityHandler = new ConstraintSecurityHandler();
Constraint constraint = new Constraint();
constraint.setName("auth");
constraint.setAuthenticate(true);
constraint.setRoles(new String[] { "user", "admin" });
ConstraintMapping mapping = new ConstraintMapping();
mapping.setPathSpec("/*");
mapping.setConstraint(constraint);
securityHandler.setConstraintMappings(Collections.singletonList(mapping));
securityHandler.setAuthenticator(new BasicAuthenticator());
securityHandler.setLoginService(loginService);
ResourceHandler resourceHandler = new ResourceHandler();
resourceHandler.setDirectoriesListed(false);
resourceHandler.setWelcomeFiles(new String[] { "main.html" });
resourceHandler.setResourceBase(webDir);
HandlerList handlers = new HandlerList();
handlers.setHandlers(new Handler[] { new JsonpCallbackHandler(eventHubHandler), securityHandler });
server.setHandler(handlers);
securityHandler.setHandler(resourceHandler);
server.start();
Runtime.getRuntime().addShutdownHook(new Thread(new Runnable() {
@Override
public void run() {
if (server.isStarted()) {
try {
server.stop();
eventHubHandler.close();
} catch (Exception e) {
e.printStackTrace();
}
}
}
}, "Stop Jetty Hook"));
server.join();
}
Also used :
HandlerList(org.eclipse.jetty.server.handler.HandlerList)
UserEventIndexModule(com.codecademy.eventhub.index.UserEventIndexModule)
Server(org.eclipse.jetty.server.Server)
Constraint(org.eclipse.jetty.util.security.Constraint)
ResourceHandler(org.eclipse.jetty.server.handler.ResourceHandler)
Properties(java.util.Properties)
HashLoginService(org.eclipse.jetty.security.HashLoginService)
BasicAuthenticator(org.eclipse.jetty.security.authentication.BasicAuthenticator)
Injector(com.google.inject.Injector)
ConstraintSecurityHandler(org.eclipse.jetty.security.ConstraintSecurityHandler)
DatedEventIndexModule(com.codecademy.eventhub.index.DatedEventIndexModule)
Password(org.eclipse.jetty.util.security.Password)
ConstraintMapping(org.eclipse.jetty.security.ConstraintMapping)
PropertiesIndexModule(com.codecademy.eventhub.index.PropertiesIndexModule)
EventHubModule(com.codecademy.eventhub.EventHubModule)
Constraint(org.eclipse.jetty.util.security.Constraint)
ServletException(javax.servlet.ServletException)
IOException(java.io.IOException)
DmaIdListModule(com.codecademy.eventhub.list.DmaIdListModule)
ShardedEventIndexModule(com.codecademy.eventhub.index.ShardedEventIndexModule)
EventStorageModule(com.codecademy.eventhub.storage.EventStorageModule)
UserStorageModule(com.codecademy.eventhub.storage.UserStorageModule)
DatedEventIndexModule(com.codecademy.eventhub.index.DatedEventIndexModule)
UserEventIndexModule(com.codecademy.eventhub.index.UserEventIndexModule)
PropertiesIndexModule(com.codecademy.eventhub.index.PropertiesIndexModule)
EventHubModule(com.codecademy.eventhub.EventHubModule)
DmaIdListModule(com.codecademy.eventhub.list.DmaIdListModule)
UserStorageModule(com.codecademy.eventhub.storage.UserStorageModule)
ShardedEventIndexModule(com.codecademy.eventhub.index.ShardedEventIndexModule)
EventStorageModule(com.codecademy.eventhub.storage.EventStorageModule)
Example 23 with ConstraintSecurityHandler
use of org.eclipse.jetty.security.ConstraintSecurityHandler in project calcite-avatica by apache.
the class HttpServer method configureCommonAuthentication.
protected ConstraintSecurityHandler configureCommonAuthentication(Server server, ServerConnector connector, AvaticaServerConfiguration config, String constraintName, String[] allowedRoles, Authenticator authenticator, String realm, LoginService loginService) {
Constraint constraint = new Constraint();
constraint.setName(constraintName);
constraint.setRoles(allowedRoles);
// This is telling Jetty to not allow unauthenticated requests through (very important!)
constraint.setAuthenticate(true);
ConstraintMapping cm = new ConstraintMapping();
cm.setConstraint(constraint);
cm.setPathSpec("/*");
ConstraintSecurityHandler sh = new ConstraintSecurityHandler();
sh.setAuthenticator(authenticator);
sh.setLoginService(loginService);
sh.setConstraintMappings(new ConstraintMapping[] { cm });
sh.setRealmName(realm);
return sh;
}
Also used :
ConstraintMapping(org.eclipse.jetty.security.ConstraintMapping)
Constraint(org.eclipse.jetty.util.security.Constraint)
ConstraintSecurityHandler(org.eclipse.jetty.security.ConstraintSecurityHandler)
Example 24 with ConstraintSecurityHandler
use of org.eclipse.jetty.security.ConstraintSecurityHandler in project bnd by bndtools.
the class HttpConnectorTest method startJetty.
private static Server startJetty() throws Exception {
Server server = new Server();
// Create the login service
String REQUIRED_ROLE = "users";
HashLoginService loginSvc = new HashLoginService(REQUIRED_ROLE, USER_ROLE_FILE);
server.addBean(loginSvc);
// Start HTTP and HTTPS connectors
SelectChannelConnector httpConnector = new SelectChannelConnector();
httpConnector.setPort(0);
httpConnector.setHost(LOCALHOST);
server.addConnector(httpConnector);
SslSelectChannelConnector sslConnector = new SslSelectChannelConnector();
sslConnector.setPort(0);
sslConnector.setHost(LOCALHOST);
SslContextFactory contextFactory = sslConnector.getSslContextFactory();
contextFactory.setKeyStorePath(KEYSTORE_PATH);
contextFactory.setKeyStorePassword(KEYSTORE_PASS);
server.addConnector(sslConnector);
// Create the resource handler to serve files
ResourceHandler resourceHandler = new ETaggingResourceHandler();
resourceHandler.setResourceBase(RESOURCE_BASE);
resourceHandler.setDirectoriesListed(true);
// Setup user role constraints
Constraint constraint = new Constraint();
constraint.setName(Constraint.__BASIC_AUTH);
constraint.setRoles(new String[] { REQUIRED_ROLE });
constraint.setAuthenticate(true);
// Map constraints to the secured directory
ConstraintMapping cm = new ConstraintMapping();
cm.setConstraint(constraint);
cm.setPathSpec(SECURED_PATH);
// Setup the constraint handler
ConstraintSecurityHandler securityHandler = new ConstraintSecurityHandler();
securityHandler.setAuthMethod("BASIC");
securityHandler.setHandler(resourceHandler);
securityHandler.setLoginService(loginSvc);
securityHandler.setConstraintMappings(new ConstraintMapping[] { cm });
// Finally!! Start the server
server.setHandler(securityHandler);
server.start();
while (!server.isRunning()) {
Thread.sleep(10);
}
HTTP_PORT = httpConnector.getLocalPort();
HTTPS_PORT = sslConnector.getLocalPort();
assertNotSame(Integer.valueOf(0), Integer.valueOf(HTTP_PORT));
assertNotSame(Integer.valueOf(-1), Integer.valueOf(HTTP_PORT));
assertNotSame(Integer.valueOf(0), Integer.valueOf(HTTPS_PORT));
assertNotSame(Integer.valueOf(-1), Integer.valueOf(HTTPS_PORT));
assertNotSame(Integer.valueOf(HTTP_PORT), Integer.valueOf(HTTPS_PORT));
return server;
}
Also used :
HashLoginService(org.eclipse.jetty.security.HashLoginService)
SslSelectChannelConnector(org.eclipse.jetty.server.ssl.SslSelectChannelConnector)
SelectChannelConnector(org.eclipse.jetty.server.nio.SelectChannelConnector)
SslContextFactory(org.eclipse.jetty.util.ssl.SslContextFactory)
ConstraintMapping(org.eclipse.jetty.security.ConstraintMapping)
Server(org.eclipse.jetty.server.Server)
ETaggingResourceHandler(test.http.ETaggingResourceHandler)
Constraint(org.eclipse.jetty.util.security.Constraint)
ConstraintSecurityHandler(org.eclipse.jetty.security.ConstraintSecurityHandler)
ResourceHandler(org.eclipse.jetty.server.handler.ResourceHandler)
ETaggingResourceHandler(test.http.ETaggingResourceHandler)
SslSelectChannelConnector(org.eclipse.jetty.server.ssl.SslSelectChannelConnector)
Aggregations
ConstraintSecurityHandler (org.eclipse.jetty.security.ConstraintSecurityHandler)24
ConstraintMapping (org.eclipse.jetty.security.ConstraintMapping)19
Constraint (org.eclipse.jetty.util.security.Constraint)19
HashLoginService (org.eclipse.jetty.security.HashLoginService)12
BasicAuthenticator (org.eclipse.jetty.security.authentication.BasicAuthenticator)11
Server (org.eclipse.jetty.server.Server)10
ServerConnector (org.eclipse.jetty.server.ServerConnector)5
WebAppContext (org.eclipse.jetty.webapp.WebAppContext)5
ContextHandler (org.eclipse.jetty.server.handler.ContextHandler)4
DefaultHandler (org.eclipse.jetty.server.handler.DefaultHandler)4
Password (org.eclipse.jetty.util.security.Password)4
IOException (java.io.IOException)3
HashSet (java.util.HashSet)3
Handler (org.eclipse.jetty.server.Handler)3
ContextHandlerCollection (org.eclipse.jetty.server.handler.ContextHandlerCollection)3
HandlerCollection (org.eclipse.jetty.server.handler.HandlerCollection)3
HandlerList (org.eclipse.jetty.server.handler.HandlerList)3
ServletContextHandler (org.eclipse.jetty.servlet.ServletContextHandler)3
ServletHolder (org.eclipse.jetty.servlet.ServletHolder)3
File (java.io.File)2
