Example 41 with UserDetails
use of org.springframework.security.core.userdetails.UserDetails in project nikita-noark5-core by HiOA-ABI.
the class JwtAuthenticationTokenFilter method doFilterInternal.
@Override
protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, FilterChain chain) throws ServletException, IOException {
String authToken = request.getHeader(this.tokenHeader);
String username = jwtTokenUtil.getUsernameFromToken(authToken);
logger.info("checking authentication für user " + username);
if (username != null && SecurityContextHolder.getContext().getAuthentication() == null) {
// It is not compelling necessary to load the use details from the database. You could also store the information
// in the token and read it from it. It's up to you ;)
UserDetails userDetails = this.userDetailsService.loadUserByUsername(username);
// the database compellingly. Again it's up to you ;)
if (jwtTokenUtil.validateToken(authToken, userDetails)) {
UsernamePasswordAuthenticationToken authentication = new UsernamePasswordAuthenticationToken(userDetails, null, userDetails.getAuthorities());
authentication.setDetails(new WebAuthenticationDetailsSource().buildDetails(request));
logger.info("authenticated user " + username + ", setting security context");
SecurityContextHolder.getContext().setAuthentication(authentication);
}
}
chain.doFilter(request, response);
}
Also used :
UserDetails(org.springframework.security.core.userdetails.UserDetails)
UsernamePasswordAuthenticationToken(org.springframework.security.authentication.UsernamePasswordAuthenticationToken)
WebAuthenticationDetailsSource(org.springframework.security.web.authentication.WebAuthenticationDetailsSource)
Example 42 with UserDetails
use of org.springframework.security.core.userdetails.UserDetails in project dhis2-core by dhis2.
the class DhisConvenienceTest method saveAndInjectUserSecurityContext.
protected void saveAndInjectUserSecurityContext(User user) {
userService.addUser(user);
userService.addUserCredentials(user.getUserCredentials());
List<GrantedAuthority> grantedAuthorities = user.getUserCredentials().getAllAuthorities().stream().map(SimpleGrantedAuthority::new).collect(Collectors.toList());
UserDetails userDetails = new org.springframework.security.core.userdetails.User(user.getUserCredentials().getUsername(), user.getUserCredentials().getPassword(), grantedAuthorities);
Authentication authentication = new UsernamePasswordAuthenticationToken(userDetails, "", grantedAuthorities);
SecurityContextHolder.getContext().setAuthentication(authentication);
}
Also used :
UserDetails(org.springframework.security.core.userdetails.UserDetails)
User(org.hisp.dhis.user.User)
Authentication(org.springframework.security.core.Authentication)
GrantedAuthority(org.springframework.security.core.GrantedAuthority)
SimpleGrantedAuthority(org.springframework.security.core.authority.SimpleGrantedAuthority)
UsernamePasswordAuthenticationToken(org.springframework.security.authentication.UsernamePasswordAuthenticationToken)
Example 43 with UserDetails
use of org.springframework.security.core.userdetails.UserDetails in project dhis2-core by dhis2.
the class DhisConvenienceTest method createUserAndInjectSecurityContext.
/**
* Creates a user and injects into the security context with username
* "username". Requires <code>identifiableObjectManager</code> and
* <code>userService</code> to be injected into the test.
*
* @param organisationUnits the organisation units of the user.
* @param dataViewOrganisationUnits user's data view organisation units.
* @param allAuth whether to grant the ALL authority.
* @param auths authorities to grant to user.
* @return the user.
*/
protected User createUserAndInjectSecurityContext(Set<OrganisationUnit> organisationUnits, Set<OrganisationUnit> dataViewOrganisationUnits, boolean allAuth, String... auths) {
Assert.notNull(userService, "UserService must be injected in test");
Set<String> authorities = new HashSet<>();
if (allAuth) {
authorities.add(UserAuthorityGroup.AUTHORITY_ALL);
}
if (auths != null) {
authorities.addAll(Lists.newArrayList(auths));
}
UserAuthorityGroup userAuthorityGroup = new UserAuthorityGroup();
userAuthorityGroup.setName("Superuser");
userAuthorityGroup.getAuthorities().addAll(authorities);
userService.addUserAuthorityGroup(userAuthorityGroup);
User user = createUser('A');
if (organisationUnits != null) {
user.setOrganisationUnits(organisationUnits);
}
if (dataViewOrganisationUnits != null) {
user.setDataViewOrganisationUnits(dataViewOrganisationUnits);
}
user.getUserCredentials().getUserAuthorityGroups().add(userAuthorityGroup);
userService.addUser(user);
user.getUserCredentials().setUserInfo(user);
userService.addUserCredentials(user.getUserCredentials());
Set<GrantedAuthority> grantedAuths = authorities.stream().map(a -> new SimpleGrantedAuthority(a)).collect(Collectors.toSet());
UserDetails userDetails = new org.springframework.security.core.userdetails.User(user.getUserCredentials().getUsername(), user.getUserCredentials().getPassword(), grantedAuths);
Authentication authentication = new UsernamePasswordAuthenticationToken(userDetails, "", grantedAuths);
SecurityContextHolder.getContext().setAuthentication(authentication);
return user;
}
Also used :
UniqunessType(org.hisp.dhis.program.UniqunessType)
AopUtils(org.springframework.aop.support.AopUtils)
ProgramStageDataElement(org.hisp.dhis.program.ProgramStageDataElement)
ProgramMessage(org.hisp.dhis.program.message.ProgramMessage)
SqlView(org.hisp.dhis.sqlview.SqlView)
Autowired(org.springframework.beans.factory.annotation.Autowired)
TrackedEntityAttributeValue(org.hisp.dhis.trackedentityattributevalue.TrackedEntityAttributeValue)
ProgramRuleVariableSourceType(org.hisp.dhis.programrule.ProgramRuleVariableSourceType)
UserCredentials(org.hisp.dhis.user.UserCredentials)
MonthlyPeriodType(org.hisp.dhis.period.MonthlyPeriodType)
ValidationRuleGroup(org.hisp.dhis.validation.ValidationRuleGroup)
NamespaceContext(javax.xml.namespace.NamespaceContext)
DataElementCategoryService(org.hisp.dhis.dataelement.DataElementCategoryService)
SecurityContextHolder(org.springframework.security.core.context.SecurityContextHolder)
IndicatorGroup(org.hisp.dhis.indicator.IndicatorGroup)
PrintWriter(java.io.PrintWriter)
OrganisationUnitGroup(org.hisp.dhis.organisationunit.OrganisationUnitGroup)
UserGroup(org.hisp.dhis.user.UserGroup)
TrackedEntityInstance(org.hisp.dhis.trackedentity.TrackedEntityInstance)
CacheStrategy(org.hisp.dhis.common.cache.CacheStrategy)
Set(java.util.Set)
ProgramRuleActionType(org.hisp.dhis.programrule.ProgramRuleActionType)
DataElementCategoryOption(org.hisp.dhis.dataelement.DataElementCategoryOption)
Operator(org.hisp.dhis.expression.Operator)
GrantedAuthority(org.springframework.security.core.GrantedAuthority)
DimensionalObject(org.hisp.dhis.common.DimensionalObject)
Predictor(org.hisp.dhis.predictor.Predictor)
ProgramType(org.hisp.dhis.program.ProgramType)
LogFactory(org.apache.commons.logging.LogFactory)
UsernamePasswordAuthenticationToken(org.springframework.security.authentication.UsernamePasswordAuthenticationToken)
Legend(org.hisp.dhis.legend.Legend)
DataDimensionType(org.hisp.dhis.common.DataDimensionType)
XPath(javax.xml.xpath.XPath)
Advised(org.springframework.aop.framework.Advised)
DataSet(org.hisp.dhis.dataset.DataSet)
ProgramStageInstance(org.hisp.dhis.program.ProgramStageInstance)
Attribute(org.hisp.dhis.attribute.Attribute)
Lists(com.google.common.collect.Lists)
ProgramNotificationRecipient(org.hisp.dhis.program.notification.ProgramNotificationRecipient)
DataElementCategoryCombo(org.hisp.dhis.dataelement.DataElementCategoryCombo)
LegendSet(org.hisp.dhis.legend.LegendSet)
Indicator(org.hisp.dhis.indicator.Indicator)
DataElementGroupSet(org.hisp.dhis.dataelement.DataElementGroupSet)
IndicatorType(org.hisp.dhis.indicator.IndicatorType)
NotificationTrigger(org.hisp.dhis.program.notification.NotificationTrigger)
CategoryOptionGroupSet(org.hisp.dhis.dataelement.CategoryOptionGroupSet)
IdentifiableObject(org.hisp.dhis.common.IdentifiableObject)
StringWriter(java.io.StringWriter)
AggregationType(org.hisp.dhis.analytics.AggregationType)
CategoryOptionGroup(org.hisp.dhis.dataelement.CategoryOptionGroup)
IOException(java.io.IOException)
OrganisationUnitGroupSet(org.hisp.dhis.organisationunit.OrganisationUnitGroupSet)
SqlViewType(org.hisp.dhis.sqlview.SqlViewType)
File(java.io.File)
OptionSet(org.hisp.dhis.option.OptionSet)
StringReader(java.io.StringReader)
TrackedEntity(org.hisp.dhis.trackedentity.TrackedEntity)
ProgramTrackedEntityAttribute(org.hisp.dhis.program.ProgramTrackedEntityAttribute)
DataValue(org.hisp.dhis.datavalue.DataValue)
PeriodType(org.hisp.dhis.period.PeriodType)
CodeGenerator(org.hisp.dhis.common.CodeGenerator)
Expression(org.hisp.dhis.expression.Expression)
DataElementGroup(org.hisp.dhis.dataelement.DataElementGroup)
OrganisationUnitLevel(org.hisp.dhis.organisationunit.OrganisationUnitLevel)
IndicatorGroupSet(org.hisp.dhis.indicator.IndicatorGroupSet)
XPathExpressionException(javax.xml.xpath.XPathExpressionException)
ProgramTrackedEntityAttributeGroup(org.hisp.dhis.program.ProgramTrackedEntityAttributeGroup)
ValueType(org.hisp.dhis.common.ValueType)
Date(java.util.Date)
RenderService(org.hisp.dhis.render.RenderService)
Constant(org.hisp.dhis.constant.Constant)
Method(java.lang.reflect.Method)
Period(org.hisp.dhis.period.Period)
DataEntryForm(org.hisp.dhis.dataentryform.DataEntryForm)
UserService(org.hisp.dhis.user.UserService)
Chart(org.hisp.dhis.chart.Chart)
ProgramNotificationTemplate(org.hisp.dhis.program.notification.ProgramNotificationTemplate)
Collection(java.util.Collection)
Collectors(java.util.stream.Collectors)
Sets(com.google.common.collect.Sets)
DataElementCategoryOptionCombo(org.hisp.dhis.dataelement.DataElementCategoryOptionCombo)
ProgramRule(org.hisp.dhis.programrule.ProgramRule)
List(java.util.List)
UserAuthorityGroup(org.hisp.dhis.user.UserAuthorityGroup)
PostConstruct(javax.annotation.PostConstruct)
ValidationCriteria(org.hisp.dhis.validation.ValidationCriteria)
ProgramIndicator(org.hisp.dhis.program.ProgramIndicator)
Authentication(org.springframework.security.core.Authentication)
TrackedEntityAttribute(org.hisp.dhis.trackedentity.TrackedEntityAttribute)
ProgramMessageStatus(org.hisp.dhis.program.message.ProgramMessageStatus)
AttributeValue(org.hisp.dhis.attribute.AttributeValue)
LocationManager(org.hisp.dhis.external.location.LocationManager)
ValidationNotificationTemplate(org.hisp.dhis.validation.notification.ValidationNotificationTemplate)
ClassPathResource(org.springframework.core.io.ClassPathResource)
ProgramRuleVariable(org.hisp.dhis.programrule.ProgramRuleVariable)
SimpleGrantedAuthority(org.springframework.security.core.authority.SimpleGrantedAuthority)
ProgramDataElementDimensionItem(org.hisp.dhis.program.ProgramDataElementDimensionItem)
ProgramRuleAction(org.hisp.dhis.programrule.ProgramRuleAction)
Program(org.hisp.dhis.program.Program)
DataElement(org.hisp.dhis.dataelement.DataElement)
HashSet(java.util.HashSet)
ProgramMessageRecipients(org.hisp.dhis.program.message.ProgramMessageRecipients)
RelationshipType(org.hisp.dhis.relationship.RelationshipType)
User(org.hisp.dhis.user.User)
UserDetails(org.springframework.security.core.userdetails.UserDetails)
XMLConstants(javax.xml.XMLConstants)
InputSource(org.xml.sax.InputSource)
DataElementCategory(org.hisp.dhis.dataelement.DataElementCategory)
Iterator(java.util.Iterator)
DataElementDomain(org.hisp.dhis.dataelement.DataElementDomain)
DateTime(org.joda.time.DateTime)
ValidationRule(org.hisp.dhis.validation.ValidationRule)
ProgramStage(org.hisp.dhis.program.ProgramStage)
ProgramStageSection(org.hisp.dhis.program.ProgramStageSection)
OrganisationUnit(org.hisp.dhis.organisationunit.OrganisationUnit)
XPathFactory(javax.xml.xpath.XPathFactory)
Option(org.hisp.dhis.option.Option)
DeliveryChannel(org.hisp.dhis.common.DeliveryChannel)
Log(org.apache.commons.logging.Log)
Collections(java.util.Collections)
ChartType(org.hisp.dhis.chart.ChartType)
Assert(org.springframework.util.Assert)
User(org.hisp.dhis.user.User)
GrantedAuthority(org.springframework.security.core.GrantedAuthority)
SimpleGrantedAuthority(org.springframework.security.core.authority.SimpleGrantedAuthority)
UsernamePasswordAuthenticationToken(org.springframework.security.authentication.UsernamePasswordAuthenticationToken)
SimpleGrantedAuthority(org.springframework.security.core.authority.SimpleGrantedAuthority)
UserDetails(org.springframework.security.core.userdetails.UserDetails)
UserAuthorityGroup(org.hisp.dhis.user.UserAuthorityGroup)
Authentication(org.springframework.security.core.Authentication)
HashSet(java.util.HashSet)
Example 44 with UserDetails
use of org.springframework.security.core.userdetails.UserDetails in project dhis2-core by dhis2.
the class AbstractSpringSecurityCurrentUserService method getCurrentUsername.
@Override
public String getCurrentUsername() {
Authentication authentication = SecurityContextHolder.getContext().getAuthentication();
if (authentication == null || !authentication.isAuthenticated() || authentication.getPrincipal() == null) {
return null;
}
/*
* If getPrincipal returns a string, it means that the user has been
* authenticated anonymous (String == anonymousUser).
*/
if (authentication.getPrincipal() instanceof String) {
String principal = (String) authentication.getPrincipal();
if (principal.compareTo("anonymousUser") != 0) {
return null;
}
return principal;
}
UserDetails userDetails = (UserDetails) authentication.getPrincipal();
return userDetails.getUsername();
}
Also used :
UserDetails(org.springframework.security.core.userdetails.UserDetails)
Authentication(org.springframework.security.core.Authentication)
Example 45 with UserDetails
use of org.springframework.security.core.userdetails.UserDetails in project uplace.es by Uplace.
the class DomainUserDetailsServiceIntTest method assertThatUserCanBeFoundByLoginIgnoreCase.
@Test
@Transactional
public void assertThatUserCanBeFoundByLoginIgnoreCase() {
UserDetails userDetails = domainUserDetailsService.loadUserByUsername(USER_ONE_LOGIN.toUpperCase(Locale.ENGLISH));
assertThat(userDetails).isNotNull();
assertThat(userDetails.getUsername()).isEqualTo(USER_ONE_LOGIN);
}
Also used :
UserDetails(org.springframework.security.core.userdetails.UserDetails)
Test(org.junit.Test)
SpringBootTest(org.springframework.boot.test.context.SpringBootTest)
Transactional(org.springframework.transaction.annotation.Transactional)
Aggregations
UserDetails (org.springframework.security.core.userdetails.UserDetails)111
Test (org.junit.Test)42
UsernamePasswordAuthenticationToken (org.springframework.security.authentication.UsernamePasswordAuthenticationToken)33
Authentication (org.springframework.security.core.Authentication)32
GrantedAuthority (org.springframework.security.core.GrantedAuthority)17
UserDetailsService (org.springframework.security.core.userdetails.UserDetailsService)15
User (org.springframework.security.core.userdetails.User)14
SimpleGrantedAuthority (org.springframework.security.core.authority.SimpleGrantedAuthority)10
BadCredentialsException (org.springframework.security.authentication.BadCredentialsException)9
UsernameNotFoundException (org.springframework.security.core.userdetails.UsernameNotFoundException)8
HttpServletRequest (javax.servlet.http.HttpServletRequest)7
LdapUserDetailsService (org.springframework.security.ldap.userdetails.LdapUserDetailsService)7
UserAccountBean (org.akaza.openclinica.bean.login.UserAccountBean)6
UserAccountDAO (org.akaza.openclinica.dao.login.UserAccountDAO)6
Transactional (org.springframework.transaction.annotation.Transactional)6
Date (java.util.Date)4
User (org.apache.atlas.web.model.User)4
User (org.hisp.dhis.user.User)4
SpringBootTest (org.springframework.boot.test.context.SpringBootTest)4
AuthenticationException (org.springframework.security.core.AuthenticationException)4
