Example 6 with AbstractAddStepHandler
use of org.jboss.as.controller.AbstractAddStepHandler in project wildfly by wildfly.
the class ElytronIntegrationResourceDefinitions method getElytronKeyStoreResourceDefinition.
/**
* Defines a resource that represents an Elytron-compatible key store that can be exported by a JSSE-enabled domain
* in the legacy security subsystem.
*
* To export the key store the resource uses a {@code BasicAddHandler} implementation that registers the elytron key-store
* capability and implements a {@code org.jboss.as.security.elytron.BasicService.ValueSupplier} that uses the injected
* {@code SecurityDomainContext} to obtain a {@code JSSESecurityDomain}. If such domain is found, its configured key
* store is obtained and returned.
*
* The {@code ValueSupplier} implementation throws an exception if the referenced legacy domain is not a JSSE-enabled
* domain or if the domain doesn't contain a key store configuration.
*/
public static ResourceDefinition getElytronKeyStoreResourceDefinition() {
final AttributeDefinition[] attributes = new AttributeDefinition[] { LEGACY_JSSE_CONFIG };
final AbstractAddStepHandler addHandler = new BasicAddHandler<KeyStore>(attributes, KEY_STORE_RUNTIME_CAPABILITY) {
@Override
protected BasicService.ValueSupplier<KeyStore> getValueSupplier(ServiceBuilder<KeyStore> serviceBuilder, OperationContext context, ModelNode model) throws OperationFailedException {
final String legacyJSSEConfig = asStringIfDefined(context, LEGACY_JSSE_CONFIG, model);
final InjectedValue<SecurityDomainContext> securityDomainContextInjector = new InjectedValue<>();
if (legacyJSSEConfig != null) {
serviceBuilder.addDependency(SecurityDomainService.SERVICE_NAME.append(legacyJSSEConfig), SecurityDomainContext.class, securityDomainContextInjector);
}
return () -> {
final SecurityDomainContext domainContext = securityDomainContextInjector.getValue();
final JSSESecurityDomain jsseDomain = domainContext.getJSSE();
if (jsseDomain == null) {
throw SecurityLogger.ROOT_LOGGER.unableToLocateJSSEConfig(legacyJSSEConfig);
}
final KeyStore keyStore = jsseDomain.getKeyStore();
if (keyStore == null) {
throw SecurityLogger.ROOT_LOGGER.unableToLocateComponentInJSSEDomain("key store", legacyJSSEConfig);
}
return keyStore;
};
}
};
return new BasicResourceDefinition(Constants.ELYTRON_KEY_STORE, addHandler, attributes, KEY_STORE_RUNTIME_CAPABILITY);
}
Also used :
OperationContext(org.jboss.as.controller.OperationContext)
InjectedValue(org.jboss.msc.value.InjectedValue)
JSSESecurityDomain(org.jboss.security.JSSESecurityDomain)
AttributeDefinition(org.jboss.as.controller.AttributeDefinition)
SimpleAttributeDefinition(org.jboss.as.controller.SimpleAttributeDefinition)
KeyStore(java.security.KeyStore)
SecurityDomainContext(org.jboss.as.security.plugins.SecurityDomainContext)
ServiceBuilder(org.jboss.msc.service.ServiceBuilder)
AbstractAddStepHandler(org.jboss.as.controller.AbstractAddStepHandler)
ModelNode(org.jboss.dmr.ModelNode)
Example 7 with AbstractAddStepHandler
use of org.jboss.as.controller.AbstractAddStepHandler in project wildfly by wildfly.
the class ElytronIntegrationResourceDefinitions method getElytronRealmResourceDefinition.
/**
* Defines a resource that represents an Elytron-compatible realm that can be exported by the legacy security subsystem.
* The constructed {@code SecurityRealm} wraps a legacy {@code SecurityDomainContext} and delegates authentication
* decisions to that context.
*
* To export the realm the resource uses a {@code BasicAddHandler} implementation that registers the security-realm
* capability and implements a {@code org.jboss.as.security.elytron.BasicService.ValueSupplier} that uses the injected
* {@code SecurityDomainContext} to create and return an instance of {@code SecurityDomainContextRealm}.
*/
public static ResourceDefinition getElytronRealmResourceDefinition() {
final AttributeDefinition[] attributes = new AttributeDefinition[] { LEGACY_JAAS_CONFIG };
final AbstractAddStepHandler addHandler = new BasicAddHandler<SecurityRealm>(attributes, SECURITY_REALM_RUNTIME_CAPABILITY) {
@Override
protected BasicService.ValueSupplier<SecurityRealm> getValueSupplier(ServiceBuilder<SecurityRealm> serviceBuilder, OperationContext context, ModelNode model) throws OperationFailedException {
final String legacyJAASConfig = asStringIfDefined(context, LEGACY_JAAS_CONFIG, model);
final InjectedValue<SecurityDomainContext> securityDomainContextInjector = new InjectedValue<>();
if (legacyJAASConfig != null) {
serviceBuilder.addDependency(SecurityDomainService.SERVICE_NAME.append(legacyJAASConfig), SecurityDomainContext.class, securityDomainContextInjector);
}
return () -> {
final SecurityDomainContext domainContext = securityDomainContextInjector.getValue();
return new SecurityDomainContextRealm(domainContext);
};
}
};
return new BasicResourceDefinition(Constants.ELYTRON_REALM, addHandler, attributes, SECURITY_REALM_RUNTIME_CAPABILITY);
}
Also used :
OperationContext(org.jboss.as.controller.OperationContext)
InjectedValue(org.jboss.msc.value.InjectedValue)
SecurityRealm(org.wildfly.security.auth.server.SecurityRealm)
AttributeDefinition(org.jboss.as.controller.AttributeDefinition)
SimpleAttributeDefinition(org.jboss.as.controller.SimpleAttributeDefinition)
SecurityDomainContext(org.jboss.as.security.plugins.SecurityDomainContext)
ServiceBuilder(org.jboss.msc.service.ServiceBuilder)
AbstractAddStepHandler(org.jboss.as.controller.AbstractAddStepHandler)
ModelNode(org.jboss.dmr.ModelNode)
Example 8 with AbstractAddStepHandler
use of org.jboss.as.controller.AbstractAddStepHandler in project wildfly by wildfly.
the class MappingModuleDefinition method registerOperations.
@Override
public void registerOperations(ManagementResourceRegistration resourceRegistration) {
super.registerOperations(resourceRegistration);
super.registerAddOperation(resourceRegistration, new AbstractAddStepHandler() {
@Override
protected void populateModel(ModelNode operation, ModelNode model) throws OperationFailedException {
for (AttributeDefinition attr : getAttributes()) {
attr.validateAndSet(operation, model);
}
}
}, OperationEntry.Flag.RESTART_NONE);
}
Also used :
AbstractAddStepHandler(org.jboss.as.controller.AbstractAddStepHandler)
OperationFailedException(org.jboss.as.controller.OperationFailedException)
SimpleAttributeDefinition(org.jboss.as.controller.SimpleAttributeDefinition)
PropertiesAttributeDefinition(org.jboss.as.controller.PropertiesAttributeDefinition)
AttributeDefinition(org.jboss.as.controller.AttributeDefinition)
ModelNode(org.jboss.dmr.ModelNode)
Aggregations
AbstractAddStepHandler (org.jboss.as.controller.AbstractAddStepHandler)8
ModelNode (org.jboss.dmr.ModelNode)8
OperationContext (org.jboss.as.controller.OperationContext)7
AttributeDefinition (org.jboss.as.controller.AttributeDefinition)6
SimpleAttributeDefinition (org.jboss.as.controller.SimpleAttributeDefinition)6
SecurityDomainContext (org.jboss.as.security.plugins.SecurityDomainContext)5
ServiceBuilder (org.jboss.msc.service.ServiceBuilder)5
InjectedValue (org.jboss.msc.value.InjectedValue)5
JSSESecurityDomain (org.jboss.security.JSSESecurityDomain)4
KeyStore (java.security.KeyStore)2
AbstractRemoveStepHandler (org.jboss.as.controller.AbstractRemoveStepHandler)2
OperationStepHandler (org.jboss.as.controller.OperationStepHandler)2
PathAddress (org.jboss.as.controller.PathAddress)2
ManagementResourceRegistration (org.jboss.as.controller.registry.ManagementResourceRegistration)2
KeyManager (javax.net.ssl.KeyManager)1
TrustManager (javax.net.ssl.TrustManager)1
OperationFailedException (org.jboss.as.controller.OperationFailedException)1
PropertiesAttributeDefinition (org.jboss.as.controller.PropertiesAttributeDefinition)1
SecurityRealm (org.wildfly.security.auth.server.SecurityRealm)1
