Example 6 with DefaultSpringSecurityContextSource
use of org.springframework.security.ldap.DefaultSpringSecurityContextSource in project incubator-atlas by apache.
the class AtlasLdapAuthenticationProvider method getLdapContextSource.
private LdapContextSource getLdapContextSource() throws Exception {
LdapContextSource ldapContextSource = new DefaultSpringSecurityContextSource(ldapURL);
ldapContextSource.setUserDn(ldapBindDN);
ldapContextSource.setPassword(ldapBindPassword);
ldapContextSource.setReferral(ldapReferral);
ldapContextSource.setCacheEnvironmentProperties(false);
ldapContextSource.setAnonymousReadOnly(false);
ldapContextSource.setPooled(true);
ldapContextSource.afterPropertiesSet();
return ldapContextSource;
}
Also used :
DefaultSpringSecurityContextSource(org.springframework.security.ldap.DefaultSpringSecurityContextSource)
LdapContextSource(org.springframework.ldap.core.support.LdapContextSource)
Example 7 with DefaultSpringSecurityContextSource
use of org.springframework.security.ldap.DefaultSpringSecurityContextSource in project incubator-atlas by apache.
the class AtlasLdapAuthenticationProvider method getLdapAuthentication.
private Authentication getLdapAuthentication(Authentication authentication) {
if (isDebugEnabled) {
LOG.debug("==> AtlasLdapAuthenticationProvider getLdapAuthentication");
}
try {
// taking the user-name and password from the authentication
// object.
String userName = authentication.getName();
String userPassword = "";
if (authentication.getCredentials() != null) {
userPassword = authentication.getCredentials().toString();
}
// populating LDAP context source with LDAP URL and user-DN-pattern
LdapContextSource ldapContextSource = new DefaultSpringSecurityContextSource(ldapURL);
ldapContextSource.setCacheEnvironmentProperties(false);
ldapContextSource.setAnonymousReadOnly(true);
// Creating BindAuthenticator using Ldap Context Source.
BindAuthenticator bindAuthenticator = new BindAuthenticator(ldapContextSource);
//String[] userDnPatterns = new String[] { rangerLdapUserDNPattern };
String[] userDnPatterns = ldapUserDNPattern.split(";");
bindAuthenticator.setUserDnPatterns(userDnPatterns);
LdapAuthenticationProvider ldapAuthenticationProvider = null;
if (!StringUtils.isEmpty(ldapGroupSearchBase) && !StringUtils.isEmpty(ldapGroupSearchFilter)) {
// Creating LDAP authorities populator using Ldap context source and
// Ldap group search base.
// populating LDAP authorities populator with group search
// base,group role attribute, group search filter.
DefaultLdapAuthoritiesPopulator defaultLdapAuthoritiesPopulator = new DefaultLdapAuthoritiesPopulator(ldapContextSource, ldapGroupSearchBase);
defaultLdapAuthoritiesPopulator.setGroupRoleAttribute(ldapGroupRoleAttribute);
defaultLdapAuthoritiesPopulator.setGroupSearchFilter(ldapGroupSearchFilter);
defaultLdapAuthoritiesPopulator.setIgnorePartialResultException(true);
// Creating Ldap authentication provider using BindAuthenticator and Ldap authentication populator
ldapAuthenticationProvider = new LdapAuthenticationProvider(bindAuthenticator, defaultLdapAuthoritiesPopulator);
} else {
ldapAuthenticationProvider = new LdapAuthenticationProvider(bindAuthenticator);
}
// getting user authenticated
if (userName != null && userPassword != null && !userName.trim().isEmpty() && !userPassword.trim().isEmpty()) {
final List<GrantedAuthority> grantedAuths = getAuthorities(userName);
final UserDetails principal = new User(userName, userPassword, grantedAuths);
final Authentication finalAuthentication = new UsernamePasswordAuthenticationToken(principal, userPassword, grantedAuths);
authentication = ldapAuthenticationProvider.authenticate(finalAuthentication);
if (groupsFromUGI) {
authentication = getAuthenticationWithGrantedAuthorityFromUGI(authentication);
}
return authentication;
} else {
return authentication;
}
} catch (Exception e) {
LOG.error("getLdapAuthentication LDAP Authentication Failed:", e);
}
if (isDebugEnabled) {
LOG.debug("<== AtlasLdapAuthenticationProvider getLdapAuthentication");
}
return authentication;
}
Also used :
BindAuthenticator(org.springframework.security.ldap.authentication.BindAuthenticator)
DefaultSpringSecurityContextSource(org.springframework.security.ldap.DefaultSpringSecurityContextSource)
User(org.apache.atlas.web.model.User)
LdapContextSource(org.springframework.ldap.core.support.LdapContextSource)
DefaultLdapAuthoritiesPopulator(org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator)
GrantedAuthority(org.springframework.security.core.GrantedAuthority)
UsernamePasswordAuthenticationToken(org.springframework.security.authentication.UsernamePasswordAuthenticationToken)
AuthenticationException(org.springframework.security.core.AuthenticationException)
UserDetails(org.springframework.security.core.userdetails.UserDetails)
Authentication(org.springframework.security.core.Authentication)
LdapAuthenticationProvider(org.springframework.security.ldap.authentication.LdapAuthenticationProvider)
Example 8 with DefaultSpringSecurityContextSource
use of org.springframework.security.ldap.DefaultSpringSecurityContextSource in project gocd by gocd.
the class ServerConfigServiceIntegrationTest method shouldUseTheEncryptedPasswordWhenPasswordIsNotChanged.
@Test
public void shouldUseTheEncryptedPasswordWhenPasswordIsNotChanged() throws InvalidCipherTextException {
String encryptedPassword = new GoCipher().encrypt("encrypted_password");
LdapConfig ldapConfig = new LdapConfig(LDAP_URL, MANAGER_DN, MANAGER_PASSWORD, encryptedPassword, false, new BasesConfig(new BaseConfig(SEARCH_BASE)), SEARCH_FILTER);
DefaultSpringSecurityContextSource source = serverConfigService.ldapContextSource(ldapConfig);
assertThat(source.getAuthenticationSource().getCredentials(), is("encrypted_password"));
}
Also used :
DefaultSpringSecurityContextSource(org.springframework.security.ldap.DefaultSpringSecurityContextSource)
GoCipher(com.thoughtworks.go.security.GoCipher)
StringContains.containsString(org.hamcrest.core.StringContains.containsString)
BasesConfig(com.thoughtworks.go.config.server.security.ldap.BasesConfig)
BaseConfig(com.thoughtworks.go.config.server.security.ldap.BaseConfig)
Test(org.junit.Test)
Example 9 with DefaultSpringSecurityContextSource
use of org.springframework.security.ldap.DefaultSpringSecurityContextSource in project gocd by gocd.
the class ServerConfigService method ldapContextSource.
DefaultSpringSecurityContextSource ldapContextSource(LdapConfig ldapConfig) {
DefaultSpringSecurityContextSource source = new DefaultSpringSecurityContextSource(ldapConfig.uri());
//so user can define the variable java.naming.referral=follow in the server.sh
source.setBaseEnvironmentProperties(System.getProperties());
new LdapContextSourceConfigurator(ldapConfig).configure(source);
try {
source.afterPropertiesSet();
} catch (Exception e) {
bomb("Cannot create ldap context", e);
}
return source;
}
Also used :
DefaultSpringSecurityContextSource(org.springframework.security.ldap.DefaultSpringSecurityContextSource)
LdapContextSourceConfigurator(com.thoughtworks.go.server.security.LdapContextSourceConfigurator)
URISyntaxException(java.net.URISyntaxException)
AddressException(javax.mail.internet.AddressException)
Example 10 with DefaultSpringSecurityContextSource
use of org.springframework.security.ldap.DefaultSpringSecurityContextSource in project spring-security by spring-projects.
the class LdapServerBeanDefinitionParserTests method embeddedServerCreationContainsExpectedContextSourceAndData.
@Test
public void embeddedServerCreationContainsExpectedContextSourceAndData() {
appCtx = new InMemoryXmlApplicationContext("<ldap-server ldif='classpath:test-server.ldif'/>");
DefaultSpringSecurityContextSource contextSource = (DefaultSpringSecurityContextSource) appCtx.getBean(BeanIds.CONTEXT_SOURCE);
// Check data is loaded
LdapTemplate template = new LdapTemplate(contextSource);
template.lookup("uid=ben,ou=people");
}
Also used :
DefaultSpringSecurityContextSource(org.springframework.security.ldap.DefaultSpringSecurityContextSource)
LdapTemplate(org.springframework.ldap.core.LdapTemplate)
InMemoryXmlApplicationContext(org.springframework.security.config.util.InMemoryXmlApplicationContext)
Test(org.junit.Test)
Aggregations
DefaultSpringSecurityContextSource (org.springframework.security.ldap.DefaultSpringSecurityContextSource)10
Test (org.junit.Test)5
LdapTemplate (org.springframework.ldap.core.LdapTemplate)3
LdapContextSource (org.springframework.ldap.core.support.LdapContextSource)3
InMemoryXmlApplicationContext (org.springframework.security.config.util.InMemoryXmlApplicationContext)3
BaseConfig (com.thoughtworks.go.config.server.security.ldap.BaseConfig)2
BasesConfig (com.thoughtworks.go.config.server.security.ldap.BasesConfig)2
User (org.apache.atlas.web.model.User)2
UsernamePasswordAuthenticationToken (org.springframework.security.authentication.UsernamePasswordAuthenticationToken)2
Authentication (org.springframework.security.core.Authentication)2
GrantedAuthority (org.springframework.security.core.GrantedAuthority)2
UserDetails (org.springframework.security.core.userdetails.UserDetails)2
BindAuthenticator (org.springframework.security.ldap.authentication.BindAuthenticator)2
LdapAuthenticationProvider (org.springframework.security.ldap.authentication.LdapAuthenticationProvider)2
LdapConfig (com.thoughtworks.go.config.LdapConfig)1
SecurityConfig (com.thoughtworks.go.config.SecurityConfig)1
GoCipher (com.thoughtworks.go.security.GoCipher)1
LdapContextSourceConfigurator (com.thoughtworks.go.server.security.LdapContextSourceConfigurator)1
URISyntaxException (java.net.URISyntaxException)1
AddressException (javax.mail.internet.AddressException)1
