Example 21 with AuthenticationManagerBuilder
use of org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder in project gravitee-management-rest-api by gravitee-io.
the class LdapAuthenticationProvider method configure.
@Override
public SecurityConfigurer configure() throws Exception {
LOGGER.info("Configuring an LDAP Identity Provider");
LdapAuthenticationProviderConfigurer<AuthenticationManagerBuilder> ldapAuthenticationProviderConfigurer = new LdapAuthenticationProviderConfigurer<>();
// Create LDAP context
DefaultSpringSecurityContextSource contextSource = new DefaultSpringSecurityContextSource(environment.getProperty("context.url"));
contextSource.setBase(environment.getProperty("context.base"));
contextSource.setUserDn(environment.getProperty("context.username"));
contextSource.setPassword(environment.getProperty("context.password"));
contextSource.afterPropertiesSet();
ldapAuthenticationProviderConfigurer.userSearchBase(environment.getProperty("authentication.user.base", "")).userSearchFilter(environment.getProperty("authentication.user.filter")).groupSearchBase(environment.getProperty("authentication.group.base", "")).groupSearchFilter(environment.getProperty("authentication.group.filter", "(uniqueMember={0})")).groupRoleAttribute(environment.getProperty("authentication.group.role.attribute", "cn")).rolePrefix("");
DefaultLdapAuthoritiesPopulator populator = new DefaultLdapAuthoritiesPopulator(contextSource, environment.getProperty("authentication.group.base", ""));
populator.setRolePrefix("");
populator.setGroupRoleAttribute(environment.getProperty("authentication.group.role.attribute", "cn"));
populator.setGroupSearchFilter(environment.getProperty("authentication.group.filter", "(uniqueMember={0})"));
ldapAuthenticationProviderConfigurer.ldapAuthoritiesPopulator(populator).contextSource(contextSource);
// set up LDAP mapper
UserDetailsContextPropertiesMapper userDetailsContextPropertiesMapper = new UserDetailsContextPropertiesMapper();
userDetailsContextPropertiesMapper.setEnvironment(environment);
userDetailsContextPropertiesMapper.afterPropertiesSet();
ldapAuthenticationProviderConfigurer.userDetailsContextMapper(userDetailsContextPropertiesMapper);
return ldapAuthenticationProviderConfigurer;
}
Also used :
DefaultSpringSecurityContextSource(org.springframework.security.ldap.DefaultSpringSecurityContextSource)
AuthenticationManagerBuilder(org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder)
DefaultLdapAuthoritiesPopulator(org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator)
Example 22 with AuthenticationManagerBuilder
use of org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder in project gravitee-management-rest-api by gravitee-io.
the class BasicSecurityConfigurerAdapter method configure.
@Override
protected void configure(AuthenticationManagerBuilder auth) throws Exception {
LOGGER.info("--------------------------------------------------------------");
LOGGER.info("Portal API BasicSecurity Config");
LOGGER.info("Loading authentication identity providers for Basic authentication");
List<io.gravitee.rest.api.security.authentication.AuthenticationProvider> providers = authenticationProviderManager.getIdentityProviders().stream().filter(authenticationProvider -> !authenticationProvider.external()).collect(Collectors.toList());
for (AuthenticationProvider provider : providers) {
String providerType = provider.type();
LOGGER.info("Loading authentication provider of type {} at position {}", providerType, provider.index());
Collection<IdentityProvider> identityProviders = identityProviderManager.getAll();
if (identityProviders != null) {
Optional<io.gravitee.rest.api.idp.api.authentication.AuthenticationProvider> authenticationProviderPlugin = identityProviders.stream().filter(ip -> ip.type().equalsIgnoreCase(providerType)).map(ip -> identityProviderManager.loadIdentityProvider(ip.type(), provider.configuration())).filter(Objects::nonNull).findFirst();
if (authenticationProviderPlugin.isPresent()) {
Object authenticationProvider = authenticationProviderPlugin.get().configure();
if (authenticationProvider instanceof org.springframework.security.authentication.AuthenticationProvider) {
auth.authenticationProvider((org.springframework.security.authentication.AuthenticationProvider) authenticationProvider);
} else if (authenticationProvider instanceof SecurityConfigurer) {
auth.apply((SecurityConfigurer) authenticationProvider);
}
} else {
LOGGER.error("No authentication provider found for type: {}", providerType);
}
}
}
LOGGER.info("--------------------------------------------------------------");
}
Also used :
LoggerFactory(org.slf4j.LoggerFactory)
Autowired(org.springframework.beans.factory.annotation.Autowired)
HttpSecurity(org.springframework.security.config.annotation.web.builders.HttpSecurity)
CookieCsrfSignedTokenRepository(io.gravitee.rest.api.security.csrf.CookieCsrfSignedTokenRepository)
HeadersConfigurer(org.springframework.security.config.annotation.web.configurers.HeadersConfigurer)
AuthoritiesProvider(io.gravitee.rest.api.security.utils.AuthoritiesProvider)
CorsConfigurationSource(org.springframework.web.cors.CorsConfigurationSource)
WebSecurityConfigurerAdapter(org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter)
CookieGenerator(io.gravitee.rest.api.security.cookies.CookieGenerator)
HttpServletRequest(javax.servlet.http.HttpServletRequest)
AuthenticationManagerBuilder(org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder)
ConfigurableEnvironment(org.springframework.core.env.ConfigurableEnvironment)
CsrfRequestMatcher(io.gravitee.rest.api.security.csrf.CsrfRequestMatcher)
AuthenticationDetailsSource(org.springframework.security.authentication.AuthenticationDetailsSource)
SecurityConfigurer(org.springframework.security.config.annotation.SecurityConfigurer)
AuthenticationSuccessListener(io.gravitee.rest.api.security.listener.AuthenticationSuccessListener)
AuthenticationProviderManager(io.gravitee.rest.api.security.authentication.AuthenticationProviderManager)
ParameterService(io.gravitee.rest.api.service.ParameterService)
BasicAuthenticationFilter(org.springframework.security.web.authentication.www.BasicAuthenticationFilter)
Logger(org.slf4j.Logger)
RecaptchaFilter(io.gravitee.rest.api.security.filter.RecaptchaFilter)
Collection(java.util.Collection)
CsrfFilter(org.springframework.security.web.csrf.CsrfFilter)
ObjectMapper(com.fasterxml.jackson.databind.ObjectMapper)
HttpMethod(org.springframework.http.HttpMethod)
IdentityProviderManager(io.gravitee.rest.api.idp.core.plugin.IdentityProviderManager)
CsrfIncludeFilter(io.gravitee.rest.api.security.filter.CsrfIncludeFilter)
IdentityProvider(io.gravitee.rest.api.idp.api.IdentityProvider)
Collectors(java.util.stream.Collectors)
Profile(org.springframework.context.annotation.Profile)
Objects(java.util.Objects)
Configuration(org.springframework.context.annotation.Configuration)
AuthenticationFailureListener(io.gravitee.rest.api.security.listener.AuthenticationFailureListener)
List(java.util.List)
EventManager(io.gravitee.common.event.EventManager)
TokenAuthenticationFilter(io.gravitee.rest.api.security.filter.TokenAuthenticationFilter)
EnableWebSecurity(org.springframework.security.config.annotation.web.configuration.EnableWebSecurity)
GraviteeAuthenticationDetails(io.gravitee.rest.api.security.authentication.GraviteeAuthenticationDetails)
SessionCreationPolicy(org.springframework.security.config.http.SessionCreationPolicy)
Optional(java.util.Optional)
AuthenticationProvider(io.gravitee.rest.api.security.authentication.AuthenticationProvider)
Bean(org.springframework.context.annotation.Bean)
ReCaptchaService(io.gravitee.rest.api.service.ReCaptchaService)
SecurityConfigurer(org.springframework.security.config.annotation.SecurityConfigurer)
AuthenticationProvider(io.gravitee.rest.api.security.authentication.AuthenticationProvider)
IdentityProvider(io.gravitee.rest.api.idp.api.IdentityProvider)
Aggregations
AuthenticationManagerBuilder (org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder)22
Test (org.junit.jupiter.api.Test)7
Bean (org.springframework.context.annotation.Bean)6
HttpSecurity (org.springframework.security.config.annotation.web.builders.HttpSecurity)5
Autowired (org.springframework.beans.factory.annotation.Autowired)4
AuthenticationProvider (org.springframework.security.authentication.AuthenticationProvider)4
Collection (java.util.Collection)3
List (java.util.List)3
Collectors (java.util.stream.Collectors)3
Logger (org.slf4j.Logger)3
LoggerFactory (org.slf4j.LoggerFactory)3
Configuration (org.springframework.context.annotation.Configuration)3
Profile (org.springframework.context.annotation.Profile)3
ConfigurableEnvironment (org.springframework.core.env.ConfigurableEnvironment)3
HttpMethod (org.springframework.http.HttpMethod)3
DefaultSpringSecurityContextSource (org.springframework.security.ldap.DefaultSpringSecurityContextSource)3
ObjectMapper (com.fasterxml.jackson.databind.ObjectMapper)2
EventManager (io.gravitee.common.event.EventManager)2
IdentityProvider (io.gravitee.rest.api.idp.api.IdentityProvider)2
IdentityProviderManager (io.gravitee.rest.api.idp.core.plugin.IdentityProviderManager)2
