Example 1 with CasConfiguration
use of org.pac4j.cas.config.CasConfiguration in project cas by apereo.
the class CasSecurityContextConfiguration method config.
@RefreshScope
@Bean
public Config config() {
try {
final AdminPagesSecurityProperties adminProps = casProperties.getAdminPagesSecurity();
if (StringUtils.isNotBlank(adminProps.getLoginUrl()) && StringUtils.isNotBlank(adminProps.getService())) {
final CasConfiguration casConfig = new CasConfiguration(adminProps.getLoginUrl());
final DirectCasClient client = new DirectCasClient(casConfig);
client.setName(CAS_CLIENT_NAME);
final Config cfg = new Config(adminProps.getService(), client);
if (adminProps.getUsers() == null) {
LOGGER.warn("List of authorized users for admin pages security is not defined. " + "Allowing access for all authenticated users");
client.setAuthorizationGenerator(new DefaultCasAuthorizationGenerator<>());
cfg.setAuthorizer(new IsAuthenticatedAuthorizer());
} else {
final Resource file = ResourceUtils.prepareClasspathResourceIfNeeded(adminProps.getUsers());
if (file != null && file.exists()) {
LOGGER.debug("Loading list of authorized users from [{}]", file);
final Properties properties = new Properties();
properties.load(file.getInputStream());
client.setAuthorizationGenerator(new SpringSecurityPropertiesAuthorizationGenerator(properties));
cfg.setAuthorizer(new RequireAnyRoleAuthorizer(adminProps.getAdminRoles()));
}
}
return cfg;
}
} catch (final Exception e) {
LOGGER.warn(e.getMessage(), e);
}
return new Config();
}
Also used :
DirectCasClient(org.pac4j.cas.client.direct.DirectCasClient)
IsAuthenticatedAuthorizer(org.pac4j.core.authorization.authorizer.IsAuthenticatedAuthorizer)
SpringSecurityPropertiesAuthorizationGenerator(org.pac4j.core.authorization.generator.SpringSecurityPropertiesAuthorizationGenerator)
CasConfiguration(org.pac4j.cas.config.CasConfiguration)
Config(org.pac4j.core.config.Config)
Resource(org.springframework.core.io.Resource)
AdminPagesSecurityProperties(org.apereo.cas.configuration.model.core.web.security.AdminPagesSecurityProperties)
CasConfigurationProperties(org.apereo.cas.configuration.CasConfigurationProperties)
EnableConfigurationProperties(org.springframework.boot.context.properties.EnableConfigurationProperties)
Properties(java.util.Properties)
AdminPagesSecurityProperties(org.apereo.cas.configuration.model.core.web.security.AdminPagesSecurityProperties)
RequireAnyRoleAuthorizer(org.pac4j.core.authorization.authorizer.RequireAnyRoleAuthorizer)
RefreshScope(org.springframework.cloud.context.config.annotation.RefreshScope)
Bean(org.springframework.context.annotation.Bean)
Example 2 with CasConfiguration
use of org.pac4j.cas.config.CasConfiguration in project cas by apereo.
the class OAuth20DefaultCasClientRedirectActionBuilder method build.
@Override
public RedirectAction build(final CasClient casClient, final WebContext context) {
try {
final CasConfiguration casConfiguration = casClient.getConfiguration();
final String redirectionUrl = CommonUtils.constructRedirectUrl(casConfiguration.getLoginUrl(), CasProtocolConstants.PARAMETER_SERVICE, casClient.computeFinalCallbackUrl(context), casConfiguration.isRenew(), casConfiguration.isGateway());
LOGGER.debug("Final redirect url is [{}]", redirectionUrl);
return RedirectAction.redirect(redirectionUrl);
} catch (final Exception e) {
throw new IllegalArgumentException(e);
}
}
Also used :
CasConfiguration(org.pac4j.cas.config.CasConfiguration)
Example 3 with CasConfiguration
use of org.pac4j.cas.config.CasConfiguration in project cas by apereo.
the class CasManagementWebAppConfiguration method casClient.
@Bean
public Client casClient() {
final CasConfiguration cfg = new CasConfiguration(casProperties.getServer().getLoginUrl());
final DirectCasClient client = new DirectCasClient(cfg);
client.setAuthorizationGenerator(authorizationGenerator());
client.setName("CasClient");
return client;
}
Also used :
DirectCasClient(org.pac4j.cas.client.direct.DirectCasClient)
CasConfiguration(org.pac4j.cas.config.CasConfiguration)
ConditionalOnMissingBean(org.springframework.boot.autoconfigure.condition.ConditionalOnMissingBean)
Bean(org.springframework.context.annotation.Bean)
Example 4 with CasConfiguration
use of org.pac4j.cas.config.CasConfiguration in project cas by apereo.
the class Pac4jAuthenticationEventExecutionPlanConfiguration method configureCasClient.
private void configureCasClient(final Collection<BaseClient> properties) {
final AtomicInteger index = new AtomicInteger();
casProperties.getAuthn().getPac4j().getCas().stream().filter(cas -> StringUtils.isNotBlank(cas.getLoginUrl())).forEach(cas -> {
final CasConfiguration cfg = new CasConfiguration(cas.getLoginUrl(), cas.getProtocol());
final CasClient client = new CasClient(cfg);
client.setName(client.getClass().getSimpleName() + index.incrementAndGet());
properties.add(client);
});
}
Also used :
CasConfigurationProperties(org.apereo.cas.configuration.CasConfigurationProperties)
CasConfiguration(org.pac4j.cas.config.CasConfiguration)
CasClient(org.pac4j.cas.client.CasClient)
Google2Client(org.pac4j.oauth.client.Google2Client)
OidcConfiguration(org.pac4j.oidc.config.OidcConfiguration)
SAML2Client(org.pac4j.saml.client.SAML2Client)
LoggerFactory(org.slf4j.LoggerFactory)
Autowired(org.springframework.beans.factory.annotation.Autowired)
StringUtils(org.apache.commons.lang3.StringUtils)
AuthenticationEventExecutionPlan(org.apereo.cas.authentication.AuthenticationEventExecutionPlan)
YahooClient(org.pac4j.oauth.client.YahooClient)
RefreshScope(org.springframework.cloud.context.config.annotation.RefreshScope)
AuthenticationHandler(org.apereo.cas.authentication.AuthenticationHandler)
PrincipalFactory(org.apereo.cas.authentication.principal.PrincipalFactory)
Clients(org.pac4j.core.client.Clients)
LinkedIn2Client(org.pac4j.oauth.client.LinkedIn2Client)
AtomicInteger(java.util.concurrent.atomic.AtomicInteger)
ClientAuthenticationHandler(org.apereo.cas.support.pac4j.authentication.handler.support.ClientAuthenticationHandler)
ConditionalOnMissingBean(org.springframework.boot.autoconfigure.condition.ConditionalOnMissingBean)
ClientAuthenticationMetaDataPopulator(org.apereo.cas.support.pac4j.authentication.ClientAuthenticationMetaDataPopulator)
Verb(com.github.scribejava.core.model.Verb)
Collection(java.util.Collection)
PrincipalResolver(org.apereo.cas.authentication.principal.PrincipalResolver)
Set(java.util.Set)
JWSAlgorithm(com.nimbusds.jose.JWSAlgorithm)
SAML2ClientLogoutAction(org.apereo.cas.support.pac4j.web.flow.SAML2ClientLogoutAction)
Action(org.springframework.webflow.execution.Action)
AuthenticationEventExecutionPlanConfigurer(org.apereo.cas.config.support.authentication.AuthenticationEventExecutionPlanConfigurer)
Configuration(org.springframework.context.annotation.Configuration)
BaseClient(org.pac4j.core.client.BaseClient)
FoursquareClient(org.pac4j.oauth.client.FoursquareClient)
GitHubClient(org.pac4j.oauth.client.GitHubClient)
SAML2ClientConfiguration(org.pac4j.saml.client.SAML2ClientConfiguration)
AuthenticationMetaDataPopulator(org.apereo.cas.authentication.AuthenticationMetaDataPopulator)
WindowsLiveClient(org.pac4j.oauth.client.WindowsLiveClient)
AzureAdClient(org.pac4j.oidc.client.AzureAdClient)
BitbucketClient(org.pac4j.oauth.client.BitbucketClient)
WordPressClient(org.pac4j.oauth.client.WordPressClient)
ArrayList(java.util.ArrayList)
OidcClient(org.pac4j.oidc.client.OidcClient)
Qualifier(org.springframework.beans.factory.annotation.Qualifier)
PayPalClient(org.pac4j.oauth.client.PayPalClient)
SAMLConstants(org.opensaml.saml.common.xml.SAMLConstants)
LinkedHashSet(java.util.LinkedHashSet)
ServicesManager(org.apereo.cas.services.ServicesManager)
GoogleOidcClient(org.pac4j.oidc.client.GoogleOidcClient)
Logger(org.slf4j.Logger)
FacebookClient(org.pac4j.oauth.client.FacebookClient)
GenericOAuth20Client(org.pac4j.oauth.client.GenericOAuth20Client)
Pac4jProperties(org.apereo.cas.configuration.model.support.pac4j.Pac4jProperties)
TwitterClient(org.pac4j.oauth.client.TwitterClient)
Bean(org.springframework.context.annotation.Bean)
DefaultPrincipalFactory(org.apereo.cas.authentication.principal.DefaultPrincipalFactory)
DropBoxClient(org.pac4j.oauth.client.DropBoxClient)
AtomicInteger(java.util.concurrent.atomic.AtomicInteger)
CasConfiguration(org.pac4j.cas.config.CasConfiguration)
CasClient(org.pac4j.cas.client.CasClient)
Example 5 with CasConfiguration
use of org.pac4j.cas.config.CasConfiguration in project cas by apereo.
the class CasOAuthConfiguration method oauthSecConfig.
@RefreshScope
@Bean
public Config oauthSecConfig() {
final CasConfiguration cfg = new CasConfiguration(casProperties.getServer().getLoginUrl());
final CasClient oauthCasClient = new CasClient(cfg);
oauthCasClient.setRedirectActionBuilder(webContext -> oauthCasClientRedirectActionBuilder().build(oauthCasClient, webContext));
oauthCasClient.setName(Authenticators.CAS_OAUTH_CLIENT);
oauthCasClient.setUrlResolver(casCallbackUrlResolver());
final Authenticator authenticator = oAuthClientAuthenticator();
final DirectBasicAuthClient basicAuthClient = new DirectBasicAuthClient(authenticator);
basicAuthClient.setName(Authenticators.CAS_OAUTH_CLIENT_BASIC_AUTHN);
final DirectFormClient directFormClient = new DirectFormClient(authenticator);
directFormClient.setName(Authenticators.CAS_OAUTH_CLIENT_DIRECT_FORM);
directFormClient.setUsernameParameter(CLIENT_ID);
directFormClient.setPasswordParameter(CLIENT_SECRET);
final DirectFormClient userFormClient = new DirectFormClient(oAuthUserAuthenticator());
userFormClient.setName(Authenticators.CAS_OAUTH_CLIENT_USER_FORM);
return new Config(OAuthUtils.casOAuthCallbackUrl(casProperties.getServer().getPrefix()), oauthCasClient, basicAuthClient, directFormClient, userFormClient);
}
Also used :
DirectFormClient(org.pac4j.http.client.direct.DirectFormClient)
CasConfiguration(org.pac4j.cas.config.CasConfiguration)
Config(org.pac4j.core.config.Config)
DirectBasicAuthClient(org.pac4j.http.client.direct.DirectBasicAuthClient)
OAuthUserAuthenticator(org.apereo.cas.support.oauth.authenticator.OAuthUserAuthenticator)
OAuthClientAuthenticator(org.apereo.cas.support.oauth.authenticator.OAuthClientAuthenticator)
Authenticator(org.pac4j.core.credentials.authenticator.Authenticator)
CasClient(org.pac4j.cas.client.CasClient)
RefreshScope(org.springframework.cloud.context.config.annotation.RefreshScope)
ConditionalOnMissingBean(org.springframework.boot.autoconfigure.condition.ConditionalOnMissingBean)
Bean(org.springframework.context.annotation.Bean)
Aggregations
CasConfiguration (org.pac4j.cas.config.CasConfiguration)5
Bean (org.springframework.context.annotation.Bean)4
ConditionalOnMissingBean (org.springframework.boot.autoconfigure.condition.ConditionalOnMissingBean)3
RefreshScope (org.springframework.cloud.context.config.annotation.RefreshScope)3
CasConfigurationProperties (org.apereo.cas.configuration.CasConfigurationProperties)2
CasClient (org.pac4j.cas.client.CasClient)2
DirectCasClient (org.pac4j.cas.client.direct.DirectCasClient)2
Config (org.pac4j.core.config.Config)2
Verb (com.github.scribejava.core.model.Verb)1
JWSAlgorithm (com.nimbusds.jose.JWSAlgorithm)1
ArrayList (java.util.ArrayList)1
Collection (java.util.Collection)1
LinkedHashSet (java.util.LinkedHashSet)1
Properties (java.util.Properties)1
Set (java.util.Set)1
AtomicInteger (java.util.concurrent.atomic.AtomicInteger)1
StringUtils (org.apache.commons.lang3.StringUtils)1
AuthenticationEventExecutionPlan (org.apereo.cas.authentication.AuthenticationEventExecutionPlan)1
AuthenticationHandler (org.apereo.cas.authentication.AuthenticationHandler)1
AuthenticationMetaDataPopulator (org.apereo.cas.authentication.AuthenticationMetaDataPopulator)1
