Examples with AbstractAuthorizeAdapter org.maxkey.authz.endpoint.adapter.AbstractAuthorizeAdapter used on opensource projects

Search in sources :

Example 6 with AbstractAuthorizeAdapter

use of org.maxkey.authz.endpoint.adapter.AbstractAuthorizeAdapter in project MaxKey by dromara.

the class Cas30AuthorizeEndpoint method serviceValidate.

@Operation(summary = "CAS 3.0 ticket验证接口", description = "通过ticket获取当前登录用户信息", method = "POST")
@RequestMapping(value = CasConstants.ENDPOINT.ENDPOINT_SERVICE_VALIDATE_V3)
public void serviceValidate(HttpServletRequest request, HttpServletResponse response, @RequestParam(value = CasConstants.PARAMETER.TICKET) String ticket, @RequestParam(value = CasConstants.PARAMETER.SERVICE) String service, @RequestParam(value = CasConstants.PARAMETER.PROXY_CALLBACK_URL, required = false) String pgtUrl, @RequestParam(value = CasConstants.PARAMETER.RENEW, required = false) String renew, @RequestParam(value = CasConstants.PARAMETER.FORMAT, required = false, defaultValue = HttpResponseConstants.FORMAT_TYPE.XML) String format) {
    _logger.debug("serviceValidate " + " ticket " + ticket + " , service " + service + " , pgtUrl " + pgtUrl + " , renew " + renew + " , format " + format);
    Ticket storedTicket = null;
    if (ticket.startsWith(CasConstants.PREFIX.SERVICE_TICKET_PREFIX)) {
        try {
            storedTicket = ticketServices.consumeTicket(ticket);
        } catch (Exception e) {
            e.printStackTrace();
        }
    }
    ServiceResponseBuilder serviceResponseBuilder = new ServiceResponseBuilder();
    if (storedTicket != null) {
        SigninPrincipal authentication = ((SigninPrincipal) storedTicket.getAuthentication().getPrincipal());
        if (StringUtils.isNotBlank(pgtUrl)) {
            ProxyGrantingTicketIOUImpl proxyGrantingTicketIOUImpl = new ProxyGrantingTicketIOUImpl();
            String proxyGrantingTicketIOU = casProxyGrantingTicketServices.createTicket(proxyGrantingTicketIOUImpl);
            ProxyGrantingTicketImpl proxyGrantingTicketImpl = new ProxyGrantingTicketImpl(storedTicket.getAuthentication(), storedTicket.getCasDetails());
            String proxyGrantingTicket = casProxyGrantingTicketServices.createTicket(proxyGrantingTicketImpl);
            serviceResponseBuilder.success().setTicket(proxyGrantingTicketIOU);
            serviceResponseBuilder.success().setProxy(pgtUrl);
            httpRequestAdapter.post(pgtUrl + "?pgtId=" + proxyGrantingTicket + "&pgtIou=" + proxyGrantingTicketIOU, null);
        }
        if (ConstsBoolean.isTrue(storedTicket.getCasDetails().getIsAdapter())) {
            Object samlAdapter = Instance.newInstance(storedTicket.getCasDetails().getAdapter());
            try {
                BeanUtils.setProperty(samlAdapter, "serviceResponseBuilder", serviceResponseBuilder);
            } catch (IllegalAccessException | InvocationTargetException e) {
                _logger.error("setProperty error . ", e);
            }
            UserInfo userInfo = (UserInfo) userInfoService.findByUsername(authentication.getUsername());
            AbstractAuthorizeAdapter adapter = (AbstractAuthorizeAdapter) samlAdapter;
            adapter.setAuthentication(authentication);
            adapter.setUserInfo(userInfo);
            adapter.setApp(storedTicket.getCasDetails());
            adapter.generateInfo();
        }
    } else {
        serviceResponseBuilder.failure().setCode(CasConstants.ERROR_CODE.INVALID_TICKET).setDescription("Ticket " + ticket + " not recognized");
    }
    httpResponseAdapter.write(response, serviceResponseBuilder.serviceResponseBuilder(), format);
}
Also used : AbstractAuthorizeAdapter(org.maxkey.authz.endpoint.adapter.AbstractAuthorizeAdapter) Ticket(org.maxkey.authz.cas.endpoint.ticket.Ticket) ProxyGrantingTicketIOUImpl(org.maxkey.authz.cas.endpoint.ticket.ProxyGrantingTicketIOUImpl) UserInfo(org.maxkey.entity.UserInfo) ServiceResponseBuilder(org.maxkey.authz.cas.endpoint.response.ServiceResponseBuilder) ProxyServiceResponseBuilder(org.maxkey.authz.cas.endpoint.response.ProxyServiceResponseBuilder) InvocationTargetException(java.lang.reflect.InvocationTargetException) InvocationTargetException(java.lang.reflect.InvocationTargetException) SigninPrincipal(org.maxkey.authn.SigninPrincipal) ProxyGrantingTicketImpl(org.maxkey.authz.cas.endpoint.ticket.ProxyGrantingTicketImpl) Operation(io.swagger.v3.oas.annotations.Operation) RequestMapping(org.springframework.web.bind.annotation.RequestMapping)

Example 7 with AbstractAuthorizeAdapter

use of org.maxkey.authz.endpoint.adapter.AbstractAuthorizeAdapter in project MaxKey by dromara.

the class UserInfoEndpoint method apiV20UserInfo.

@Operation(summary = "OAuth 2.0 用户信息接口", description = "传递参数access_token", method = "GET")
@RequestMapping(value = OAuth2Constants.ENDPOINT.ENDPOINT_USERINFO, method = { RequestMethod.POST, RequestMethod.GET })
public void apiV20UserInfo(@RequestParam(value = "access_token", required = false) String access_token, HttpServletRequest request, HttpServletResponse response) {
    if (StringUtils.isBlank(access_token)) {
        // for header authorization bearer
        access_token = AuthorizationHeaderUtils.resolveBearer(request);
    }
    if (!StringGenerator.uuidMatches(access_token)) {
        httpResponseAdapter.write(response, JsonUtils.gson2Json(accessTokenFormatError(access_token)), "json");
    }
    String principal = "";
    OAuth2Authentication oAuth2Authentication = null;
    try {
        oAuth2Authentication = oauth20tokenServices.loadAuthentication(access_token);
        principal = ((SigninPrincipal) oAuth2Authentication.getUserAuthentication().getPrincipal()).getUsername();
        String client_id = oAuth2Authentication.getOAuth2Request().getClientId();
        ClientDetails clientDetails = clientDetailsService.loadClientByClientId(client_id, true);
        UserInfo userInfo = queryUserInfo(principal);
        Apps app = appsService.get(client_id);
        AbstractAuthorizeAdapter adapter;
        if (ConstsBoolean.isTrue(app.getIsAdapter())) {
            adapter = (AbstractAuthorizeAdapter) Instance.newInstance(app.getAdapter());
            try {
                BeanUtils.setProperty(adapter, "clientDetails", clientDetails);
            } catch (IllegalAccessException | InvocationTargetException e) {
                _logger.error("setProperty error . ", e);
            }
        } else {
            adapter = (AbstractAuthorizeAdapter) new OAuthDefaultUserInfoAdapter(clientDetails);
        }
        adapter.setAuthentication((SigninPrincipal) oAuth2Authentication.getUserAuthentication().getPrincipal());
        adapter.setUserInfo(userInfo);
        adapter.setApp(app);
        Object jsonData = adapter.generateInfo();
        httpResponseAdapter.write(response, jsonData.toString(), "json");
    } catch (OAuth2Exception e) {
        HashMap<String, Object> authzException = new HashMap<String, Object>();
        authzException.put(OAuth2Exception.ERROR, e.getOAuth2ErrorCode());
        authzException.put(OAuth2Exception.DESCRIPTION, e.getMessage());
        httpResponseAdapter.write(response, JsonUtils.gson2Json(authzException), "json");
    }
}
Also used : AbstractAuthorizeAdapter(org.maxkey.authz.endpoint.adapter.AbstractAuthorizeAdapter) HashMap(java.util.HashMap) UserInfo(org.maxkey.entity.UserInfo) Apps(org.maxkey.entity.apps.Apps) InvocationTargetException(java.lang.reflect.InvocationTargetException) ClientDetails(org.maxkey.entity.apps.oauth2.provider.ClientDetails) OAuth2Authentication(org.maxkey.authz.oauth2.provider.OAuth2Authentication) OAuth2Exception(org.maxkey.authz.oauth2.common.exceptions.OAuth2Exception) Operation(io.swagger.v3.oas.annotations.Operation) RequestMapping(org.springframework.web.bind.annotation.RequestMapping)

Example 8 with AbstractAuthorizeAdapter

use of org.maxkey.authz.endpoint.adapter.AbstractAuthorizeAdapter in project MaxKey by dromara.

the class TokenBasedAuthorizeEndpoint method authorize.

@Operation(summary = "TokenBased认证接口", description = "传递参数应用ID", method = "GET")
@RequestMapping("/authz/tokenbased/{id}")
public ModelAndView authorize(HttpServletRequest request, HttpServletResponse response, @PathVariable("id") String id) {
    ModelAndView modelAndView = new ModelAndView();
    AppsTokenBasedDetails tokenBasedDetails = null;
    tokenBasedDetails = tokenBasedDetailsService.getAppDetails(id, true);
    _logger.debug("" + tokenBasedDetails);
    Apps application = getApp(id);
    tokenBasedDetails.setAdapter(application.getAdapter());
    tokenBasedDetails.setIsAdapter(application.getIsAdapter());
    AbstractAuthorizeAdapter adapter;
    if (ConstsBoolean.isTrue(tokenBasedDetails.getIsAdapter())) {
        adapter = (AbstractAuthorizeAdapter) Instance.newInstance(tokenBasedDetails.getAdapter());
    } else {
        adapter = (AbstractAuthorizeAdapter) new TokenBasedDefaultAdapter();
    }
    adapter.setAuthentication((SigninPrincipal) WebContext.getAuthentication().getPrincipal());
    adapter.setUserInfo(WebContext.getUserInfo());
    adapter.setApp(tokenBasedDetails);
    adapter.generateInfo();
    adapter.encrypt(null, tokenBasedDetails.getAlgorithmKey(), tokenBasedDetails.getAlgorithm());
    if (tokenBasedDetails.getTokenType().equalsIgnoreCase("POST")) {
        return adapter.authorize(modelAndView);
    } else {
        _logger.debug("Cookie Name : {}", tokenBasedDetails.getCookieName());
        Cookie cookie = new Cookie(tokenBasedDetails.getCookieName(), adapter.serialize());
        Integer maxAge = tokenBasedDetails.getExpires();
        _logger.debug("Cookie Max Age : {} seconds.", maxAge);
        cookie.setMaxAge(maxAge);
        cookie.setPath("/");
        // 
        // cookie.setDomain("."+applicationConfig.getBaseDomainName());
        // tomcat 8.5
        cookie.setDomain(applicationConfig.getBaseDomainName());
        _logger.debug("Sub Domain Name : .{}", applicationConfig.getBaseDomainName());
        response.addCookie(cookie);
        if (tokenBasedDetails.getRedirectUri().indexOf(applicationConfig.getBaseDomainName()) > -1) {
            return WebContext.redirect(tokenBasedDetails.getRedirectUri());
        } else {
            _logger.error(tokenBasedDetails.getRedirectUri() + " not in domain " + applicationConfig.getBaseDomainName());
            return null;
        }
    }
}
Also used : AbstractAuthorizeAdapter(org.maxkey.authz.endpoint.adapter.AbstractAuthorizeAdapter) TokenBasedDefaultAdapter(org.maxkey.authz.token.endpoint.adapter.TokenBasedDefaultAdapter) Cookie(javax.servlet.http.Cookie) ModelAndView(org.springframework.web.servlet.ModelAndView) AppsTokenBasedDetails(org.maxkey.entity.apps.AppsTokenBasedDetails) Apps(org.maxkey.entity.apps.Apps) Operation(io.swagger.v3.oas.annotations.Operation) RequestMapping(org.springframework.web.bind.annotation.RequestMapping)

Aggregations

Operation (io.swagger.v3.oas.annotations.Operation)8 AbstractAuthorizeAdapter (org.maxkey.authz.endpoint.adapter.AbstractAuthorizeAdapter)8 RequestMapping (org.springframework.web.bind.annotation.RequestMapping)8 InvocationTargetException (java.lang.reflect.InvocationTargetException)5 Apps (org.maxkey.entity.apps.Apps)5 UserInfo (org.maxkey.entity.UserInfo)4 ModelAndView (org.springframework.web.servlet.ModelAndView)4 SigninPrincipal (org.maxkey.authn.SigninPrincipal)3 ProxyServiceResponseBuilder (org.maxkey.authz.cas.endpoint.response.ProxyServiceResponseBuilder)3 ServiceResponseBuilder (org.maxkey.authz.cas.endpoint.response.ServiceResponseBuilder)3 Ticket (org.maxkey.authz.cas.endpoint.ticket.Ticket)3 Cookie (javax.servlet.http.Cookie)2 ProxyGrantingTicketIOUImpl (org.maxkey.authz.cas.endpoint.ticket.ProxyGrantingTicketIOUImpl)2 ProxyGrantingTicketImpl (org.maxkey.authz.cas.endpoint.ticket.ProxyGrantingTicketImpl)2 Accounts (org.maxkey.entity.Accounts)2 ResponseBody (org.springframework.web.bind.annotation.ResponseBody)2 HashMap (java.util.HashMap)1 FormBasedDefaultAdapter (org.maxkey.authz.formbased.endpoint.adapter.FormBasedDefaultAdapter)1 JwtAdapter (org.maxkey.authz.jwt.endpoint.adapter.JwtAdapter)1 OAuth2Exception (org.maxkey.authz.oauth2.common.exceptions.OAuth2Exception)1
About Me
UseOf

Java Tutorials :

Simple Java RabbitMQ Example with Spring
Simple Springboot JPA Eclipeslink Example
Simple SpringBoot JPA Hibernate Example
Jackson JSON @JsonIgnore and @JsonIgnoreProperties Examples
Java Infinite recursion (StackOverflowError) Jackson solutions
Simple Java Jackson Serialize Objects to JSON and convert them back To Object
ElasticSearch 5 - Upload files using Java API in binary field Example
Java JAXB marshall unmarshall Examples from String and Stream
Java 8 forEach List and Map examples
ElasticSearch 5 Java API SearchRequestBuilder examples
Java ElasticSearch 5 examples with node index and mapping - running local
Convert String to int or Integer Java 8
Java 9 in action - JShell - Ubuntu
Java - removing invalid characters from a file name
Hello world!? or Hello Tutorial