JAVA-69: Renamed spring-security-rest-custom to

spring-security-web-rest-custom
2020-08-18 15:38:21 +05:30
parent 526d66067f
commit 61dd35dc83
32 changed files with 2 additions and 2 deletions
@@ -0,0 +1,55 @@
+package com.baeldung.config;
+
+import java.util.Set;
+
+import javax.servlet.FilterRegistration.Dynamic;
+import javax.servlet.ServletContext;
+import javax.servlet.ServletException;
+import javax.servlet.ServletRegistration;
+
+import org.springframework.web.WebApplicationInitializer;
+import org.springframework.web.context.ContextLoaderListener;
+import org.springframework.web.context.support.AnnotationConfigWebApplicationContext;
+import org.springframework.web.filter.DelegatingFilterProxy;
+import org.springframework.web.servlet.DispatcherServlet;
+
+public class MainWebAppInitializer implements WebApplicationInitializer {
+
+    public MainWebAppInitializer() {
+        super();
+    }
+
+    //
+
+    /**
+     * Register and configure all Servlet container components necessary to power the web application.
+     */
+    @Override
+    public void onStartup(final ServletContext sc) throws ServletException {
+        System.out.println("MyWebAppInitializer.onStartup()");
+
+        // Create the 'root' Spring application context
+        final AnnotationConfigWebApplicationContext root = new AnnotationConfigWebApplicationContext();
+        root.scan("com.baeldung.config.parent");
+        // root.getEnvironment().setDefaultProfiles("embedded");
+
+        // Manages the lifecycle of the root application context
+        sc.addListener(new ContextLoaderListener(root));
+
+        // Handles requests into the application
+        final AnnotationConfigWebApplicationContext childWebApplicationContext = new AnnotationConfigWebApplicationContext();
+        childWebApplicationContext.scan("com.baeldung.config.child");
+        final ServletRegistration.Dynamic appServlet = sc.addServlet("api", new DispatcherServlet(childWebApplicationContext));
+        appServlet.setLoadOnStartup(1);
+        final Set<String> mappingConflicts = appServlet.addMapping("/");
+        if (!mappingConflicts.isEmpty()) {
+            throw new IllegalStateException("'appServlet' could not be mapped to '/' due " + "to an existing mapping. This is a known issue under Tomcat versions " + "<= 7.0.14; see https://issues.apache.org/bugzilla/show_bug.cgi?id=51278");
+        }
+
+        // spring security filter
+        final DelegatingFilterProxy springSecurityFilterChain = new DelegatingFilterProxy("springSecurityFilterChain");
+        final Dynamic addedFilter = sc.addFilter("springSecurityFilterChain", springSecurityFilterChain);
+        addedFilter.addMappingForUrlPatterns(null, false, "/*");
+    }
+
+}
@@ -0,0 +1,37 @@
+package com.baeldung.config.child;
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.access.intercept.RunAsImplAuthenticationProvider;
+import org.springframework.security.access.intercept.RunAsManager;
+import org.springframework.security.access.intercept.RunAsManagerImpl;
+import org.springframework.security.authentication.AuthenticationProvider;
+import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
+import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity;
+import org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration;
+
+
+@Configuration
+@EnableGlobalMethodSecurity(securedEnabled = true)
+public class MethodSecurityConfig extends GlobalMethodSecurityConfiguration {
+
+    @Override
+    protected RunAsManager runAsManager() {
+        RunAsManagerImpl runAsManager = new RunAsManagerImpl();
+        runAsManager.setKey("MyRunAsKey");
+        return runAsManager;
+    }
+
+    @Autowired
+    public void configureGlobal(AuthenticationManagerBuilder auth) throws Exception {
+        auth.authenticationProvider(runAsAuthenticationProvider());
+    }
+
+    @Bean
+    public AuthenticationProvider runAsAuthenticationProvider() {
+        RunAsImplAuthenticationProvider authProvider = new RunAsImplAuthenticationProvider();
+        authProvider.setKey("MyRunAsKey");
+        return authProvider;
+    }
+}
@@ -0,0 +1,80 @@
+package com.baeldung.config.child;
+
+import java.util.List;
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.ApplicationContext;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.ComponentScan;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.context.support.PropertySourcesPlaceholderConfigurer;
+import org.springframework.http.converter.HttpMessageConverter;
+import org.springframework.http.converter.json.MappingJackson2HttpMessageConverter;
+import org.springframework.web.servlet.ViewResolver;
+import org.springframework.web.servlet.config.annotation.EnableWebMvc;
+import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
+import org.thymeleaf.extras.springsecurity5.dialect.SpringSecurityDialect;
+import org.thymeleaf.spring5.ISpringTemplateEngine;
+import org.thymeleaf.spring5.SpringTemplateEngine;
+import org.thymeleaf.spring5.templateresolver.SpringResourceTemplateResolver;
+import org.thymeleaf.spring5.view.ThymeleafViewResolver;
+import org.thymeleaf.templatemode.TemplateMode;
+import org.thymeleaf.templateresolver.ITemplateResolver;
+
+@Configuration
+@EnableWebMvc
+@ComponentScan("com.baeldung.web")
+//@ImportResource({ "classpath:prop.xml" })    
+//@PropertySource("classpath:foo.properties")
+public class WebConfig implements WebMvcConfigurer {
+    
+    @Autowired
+    private ApplicationContext applicationContext;
+
+    public WebConfig() {
+        super();
+    }
+
+    // beans
+
+    @Override
+    public void configureMessageConverters(final List<HttpMessageConverter<?>> converters) {
+        converters.add(new MappingJackson2HttpMessageConverter());
+    }
+
+    // beans
+
+    @Bean
+    public static PropertySourcesPlaceholderConfigurer propertySourcesPlaceholderConfigurer() {
+        final PropertySourcesPlaceholderConfigurer ppc = new PropertySourcesPlaceholderConfigurer();
+        ppc.setIgnoreUnresolvablePlaceholders(true);
+        return ppc;
+    }
+    
+    @Bean
+    public ViewResolver viewResolver() {
+      ThymeleafViewResolver resolver = new ThymeleafViewResolver();
+      resolver.setTemplateEngine(templateEngine());
+      resolver.setCharacterEncoding("UTF-8");
+      return resolver;
+    }
+
+    @Bean
+    public ISpringTemplateEngine templateEngine() {
+      SpringTemplateEngine engine = new SpringTemplateEngine();
+      engine.setEnableSpringELCompiler(true);
+      engine.setTemplateResolver(templateResolver());
+      engine.addDialect(new SpringSecurityDialect());
+      return engine;
+    }
+
+    private ITemplateResolver templateResolver() {
+      SpringResourceTemplateResolver resolver = new SpringResourceTemplateResolver();
+      resolver.setApplicationContext(applicationContext);
+      resolver.setPrefix("/WEB-INF/templates/");
+      resolver.setSuffix(".html");
+      resolver.setTemplateMode(TemplateMode.HTML);
+      return resolver;
+    }
+
+}
@@ -0,0 +1,40 @@
+package com.baeldung.config.parent;
+
+import com.baeldung.security.CustomAuthenticationProvider;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.annotation.ComponentScan;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
+import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+
+@Configuration
+//@ImportResource({ "classpath:webSecurityConfig.xml" })
+@EnableWebSecurity
+@ComponentScan("com.baeldung.security")
+public class SecurityConfig extends WebSecurityConfigurerAdapter {
+
+    @Autowired
+    private CustomAuthenticationProvider authProvider;
+
+    public SecurityConfig() {
+        super();
+    }
+
+    @Override
+    protected void configure(final AuthenticationManagerBuilder auth) throws Exception {
+        auth.authenticationProvider(authProvider);
+    }
+
+    @Override
+    protected void configure(final HttpSecurity http) throws Exception {
+        // @formatter:off
+        http
+        .authorizeRequests().anyRequest().authenticated()
+        .and()
+        .httpBasic();
+        // @formatter:on
+    }
+
+}
@@ -0,0 +1,28 @@
+package com.baeldung.config.parent;
+
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.ComponentScan;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.context.annotation.PropertySource;
+import org.springframework.context.support.PropertySourcesPlaceholderConfigurer;
+
+@Configuration
+@ComponentScan("com.baeldung.service")
+// @ImportResource({ "classpath:prop.xml" })
+@PropertySource("classpath:foo.properties")
+public class ServiceConfig {
+
+    public ServiceConfig() {
+        super();
+    }
+
+    // beans
+
+    @Bean
+    public static PropertySourcesPlaceholderConfigurer propertySourcesPlaceholderConfigurer() {
+        final PropertySourcesPlaceholderConfigurer ppc = new PropertySourcesPlaceholderConfigurer();
+        ppc.setIgnoreUnresolvablePlaceholders(true);
+        return ppc;
+    }
+
+}
@@ -0,0 +1,21 @@
+package com.baeldung.security;
+
+import org.springframework.security.core.Authentication;
+import org.springframework.security.core.context.SecurityContextHolder;
+import org.springframework.stereotype.Component;
+
+@Component
+public class AuthenticationFacade implements IAuthenticationFacade {
+
+    public AuthenticationFacade() {
+        super();
+    }
+
+    // API
+
+    @Override
+    public final Authentication getAuthentication() {
+        return SecurityContextHolder.getContext().getAuthentication();
+    }
+
+}
@@ -0,0 +1,45 @@
+package com.baeldung.security;
+
+import java.util.ArrayList;
+import java.util.List;
+
+import org.springframework.security.authentication.AuthenticationProvider;
+import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
+import org.springframework.security.core.Authentication;
+import org.springframework.security.core.AuthenticationException;
+import org.springframework.security.core.GrantedAuthority;
+import org.springframework.security.core.authority.SimpleGrantedAuthority;
+import org.springframework.security.core.userdetails.User;
+import org.springframework.security.core.userdetails.UserDetails;
+import org.springframework.stereotype.Component;
+
+@Component
+public class CustomAuthenticationProvider implements AuthenticationProvider {
+
+    public CustomAuthenticationProvider() {
+        super();
+    }
+
+    // API
+
+    @Override
+    public Authentication authenticate(final Authentication authentication) throws AuthenticationException {
+        final String name = authentication.getName();
+        final String password = authentication.getCredentials().toString();
+        if (name.equals("admin") && password.equals("system")) {
+            final List<GrantedAuthority> grantedAuths = new ArrayList<>();
+            grantedAuths.add(new SimpleGrantedAuthority("ROLE_USER"));
+            final UserDetails principal = new User(name, password, grantedAuths);
+            final Authentication auth = new UsernamePasswordAuthenticationToken(principal, password, grantedAuths);
+            return auth;
+        } else {
+            return null;
+        }
+    }
+
+    @Override
+    public boolean supports(final Class<?> authentication) {
+        return authentication.equals(UsernamePasswordAuthenticationToken.class);
+    }
+
+}
@@ -0,0 +1,9 @@
+package com.baeldung.security;
+
+import org.springframework.security.core.Authentication;
+
+public interface IAuthenticationFacade {
+
+    Authentication getAuthentication();
+
+}
@@ -0,0 +1,48 @@
+package com.baeldung.security;
+
+import java.io.IOException;
+
+import javax.servlet.ServletException;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.springframework.security.core.Authentication;
+import org.springframework.security.web.authentication.SimpleUrlAuthenticationSuccessHandler;
+import org.springframework.security.web.savedrequest.HttpSessionRequestCache;
+import org.springframework.security.web.savedrequest.RequestCache;
+import org.springframework.security.web.savedrequest.SavedRequest;
+import org.springframework.util.StringUtils;
+
+public class MySavedRequestAwareAuthenticationSuccessHandler extends SimpleUrlAuthenticationSuccessHandler {
+
+    private RequestCache requestCache = new HttpSessionRequestCache();
+
+    @Override
+    public void onAuthenticationSuccess(final HttpServletRequest request, final HttpServletResponse response, final Authentication authentication) throws ServletException, IOException {
+        final SavedRequest savedRequest = requestCache.getRequest(request, response);
+
+        if (savedRequest == null) {
+            super.onAuthenticationSuccess(request, response, authentication);
+
+            return;
+        }
+        final String targetUrlParameter = getTargetUrlParameter();
+        if (isAlwaysUseDefaultTargetUrl() || (targetUrlParameter != null && StringUtils.hasText(request.getParameter(targetUrlParameter)))) {
+            requestCache.removeRequest(request, response);
+            super.onAuthenticationSuccess(request, response, authentication);
+
+            return;
+        }
+
+        clearAuthenticationAttributes(request);
+
+        // Use the DefaultSavedRequest URL
+        // final String targetUrl = savedRequest.getRedirectUrl();
+        // logger.debug("Redirecting to DefaultSavedRequest Url: " + targetUrl);
+        // getRedirectStrategy().sendRedirect(request, response, targetUrl);
+    }
+
+    public void setRequestCache(final RequestCache requestCache) {
+        this.requestCache = requestCache;
+    }
+}
@@ -0,0 +1,23 @@
+package com.baeldung.security;
+
+import java.io.IOException;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.springframework.security.core.AuthenticationException;
+import org.springframework.security.web.AuthenticationEntryPoint;
+import org.springframework.stereotype.Component;
+
+/**
+ * The Entry Point will not redirect to any sort of Login - it will return the 401
+ */
+@Component
+public final class RestAuthenticationEntryPoint implements AuthenticationEntryPoint {
+
+    @Override
+    public void commence(final HttpServletRequest request, final HttpServletResponse response, final AuthenticationException authException) throws IOException {
+        response.sendError(HttpServletResponse.SC_UNAUTHORIZED, "Unauthorized");
+    }
+
+}
@@ -0,0 +1,36 @@
+package com.baeldung.service;
+
+import com.baeldung.web.dto.Foo;
+import org.springframework.beans.factory.InitializingBean;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.core.env.Environment;
+import org.springframework.stereotype.Service;
+
+@Service
+public class FooService implements IFooService, InitializingBean {
+
+    @Value("${foo1}")
+    private String foo1;
+
+    @Autowired
+    private Environment env;
+
+    public FooService() {
+        super();
+    }
+
+    // API
+
+    @Override
+    public Foo findOne(final Long id) {
+        return new Foo();
+    }
+
+    @Override
+    public final void afterPropertiesSet() {
+        System.out.println("In Parent Context, property via @Value = " + foo1);
+        System.out.println("In Parent Context, property via env = " + env.getProperty("foo2"));
+    }
+
+}
@@ -0,0 +1,9 @@
+package com.baeldung.service;
+
+import com.baeldung.web.dto.Foo;
+
+public interface IFooService {
+
+    Foo findOne(final Long id);
+
+}
@@ -0,0 +1,17 @@
+package com.baeldung.service;
+
+import org.springframework.security.access.annotation.Secured;
+import org.springframework.security.core.Authentication;
+import org.springframework.security.core.context.SecurityContextHolder;
+import org.springframework.stereotype.Service;
+
+@Service
+public class RunAsService {
+
+    @Secured({ "ROLE_RUN_AS_REPORTER" })
+    public Authentication getCurrentUser() {
+        Authentication authentication = 
+                SecurityContextHolder.getContext().getAuthentication();
+        return authentication;
+    }
+}
@@ -0,0 +1,46 @@
+package com.baeldung.web.controller;
+
+import com.baeldung.service.IFooService;
+import com.baeldung.web.dto.Foo;
+import org.springframework.beans.factory.InitializingBean;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.core.env.Environment;
+import org.springframework.stereotype.Controller;
+import org.springframework.web.bind.annotation.PathVariable;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestMethod;
+import org.springframework.web.bind.annotation.ResponseBody;
+
+@Controller
+@RequestMapping(value = "/foos")
+public class FooController implements InitializingBean {
+
+    @Value("${foo1}")
+    private String foo1;
+
+    @Autowired
+    private Environment env;
+
+    @Autowired
+    private IFooService service;
+
+    public FooController() {
+        super();
+    }
+
+    // API
+
+    @RequestMapping(value = "/{id}", method = RequestMethod.GET)
+    @ResponseBody
+    public Foo findOne(@PathVariable("id") final Long id) {
+        return service.findOne(id);
+    }
+
+    @Override
+    public final void afterPropertiesSet() {
+        System.out.println("In Child Context, property via @Value = " + foo1);
+        System.out.println("In Child Context, property via env = " + env.getProperty("foo2"));
+    }
+
+}
@@ -0,0 +1,30 @@
+package com.baeldung.web.controller;
+
+import com.baeldung.security.IAuthenticationFacade;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.security.core.Authentication;
+import org.springframework.stereotype.Controller;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestMethod;
+import org.springframework.web.bind.annotation.ResponseBody;
+
+@Controller
+public class GetUserWithCustomInterfaceController {
+
+    @Autowired
+    private IAuthenticationFacade authenticationFacade;
+
+    public GetUserWithCustomInterfaceController() {
+        super();
+    }
+
+    // API
+
+    @RequestMapping(value = "/username5", method = RequestMethod.GET)
+    @ResponseBody
+    public String currentUserNameSimple() {
+        final Authentication authentication = authenticationFacade.getAuthentication();
+        return authentication.getName();
+    }
+
+}
@@ -0,0 +1,28 @@
+package com.baeldung.web.controller;
+
+import java.security.Principal;
+
+import javax.servlet.http.HttpServletRequest;
+
+import org.springframework.stereotype.Controller;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestMethod;
+import org.springframework.web.bind.annotation.ResponseBody;
+
+@Controller
+public class GetUserWithHTTPServletRequestController {
+
+    public GetUserWithHTTPServletRequestController() {
+        super();
+    }
+
+    // API
+
+    @RequestMapping(value = "/username4", method = RequestMethod.GET)
+    @ResponseBody
+    public String currentUserNameSimple(final HttpServletRequest request) {
+        final Principal principal = request.getUserPrincipal();
+        return principal.getName();
+    }
+
+}
@@ -0,0 +1,23 @@
+package com.baeldung.web.controller;
+
+import org.springframework.security.access.annotation.Secured;
+import org.springframework.security.core.Authentication;
+import org.springframework.security.core.context.SecurityContextHolder;
+import org.springframework.stereotype.Controller;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.ResponseBody;
+
+
+@Controller
+@RequestMapping("/runas")
+public class RunAsController {
+
+    @Secured({ "ROLE_USER", "RUN_AS_REPORTER" })
+    @RequestMapping
+    @ResponseBody
+    public String tryRunAs() {
+        Authentication auth = SecurityContextHolder.getContext().getAuthentication();
+        return "Current User Authorities inside this RunAS method only " + 
+        auth.getAuthorities().toString();
+    }
+}
@@ -0,0 +1,25 @@
+package com.baeldung.web.controller;
+
+import java.security.Principal;
+
+import org.springframework.stereotype.Controller;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestMethod;
+import org.springframework.web.bind.annotation.ResponseBody;
+
+@Controller
+public class SecurityController {
+
+    public SecurityController() {
+        super();
+    }
+
+    // API
+
+    @RequestMapping(value = "/username2", method = RequestMethod.GET)
+    @ResponseBody
+    public String currentUserName(final Principal principal) {
+        return principal.getName();
+    }
+
+}
@@ -0,0 +1,39 @@
+package com.baeldung.web.controller;
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.ApplicationEventPublisher;
+import org.springframework.security.authentication.AnonymousAuthenticationToken;
+import org.springframework.security.core.Authentication;
+import org.springframework.security.core.context.SecurityContextHolder;
+import org.springframework.stereotype.Controller;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestMethod;
+import org.springframework.web.bind.annotation.ResponseBody;
+
+@Controller
+public class SecurityController1 {
+
+    @Autowired
+    private ApplicationEventPublisher eventPublisher;
+
+    public SecurityController1() {
+        super();
+    }
+
+    // API
+
+    @RequestMapping(value = "/username1", method = RequestMethod.GET)
+    @ResponseBody
+    public String currentUserName() {
+        final Authentication authentication = SecurityContextHolder.getContext().getAuthentication();
+        if (!(authentication instanceof AnonymousAuthenticationToken)) {
+            final String currentPrincipalName = authentication.getName();
+            System.out.println("Authentication: " + authentication);
+            System.out.println("Principal: " + authentication.getPrincipal());
+            return currentPrincipalName;
+        }
+
+        return null;
+    }
+
+}
@@ -0,0 +1,27 @@
+package com.baeldung.web.controller;
+
+import org.springframework.security.core.Authentication;
+import org.springframework.security.core.userdetails.UserDetails;
+import org.springframework.stereotype.Controller;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestMethod;
+import org.springframework.web.bind.annotation.ResponseBody;
+
+@Controller
+public class SecurityController3 {
+
+    public SecurityController3() {
+        super();
+    }
+
+    // API
+
+    @RequestMapping(value = "/username3", method = RequestMethod.GET)
+    @ResponseBody
+    public String currentUserNameSimple(final Authentication authentication) {
+        UserDetails userDetails = (UserDetails) authentication.getPrincipal();
+        System.out.println("Retrieved user with authorities: " + userDetails.getAuthorities());
+        return authentication.getName();
+    }
+
+}
@@ -0,0 +1,18 @@
+package com.baeldung.web.controller;
+
+import org.springframework.stereotype.Controller;
+import org.springframework.web.bind.annotation.RequestMapping;
+
+@Controller
+public class ViewController {
+
+    @RequestMapping({ "/index", "/" })
+    public String index() {
+        return "index";
+    }
+    
+    @RequestMapping({ "/runashome" })
+    public String run() {
+        return "runas";
+    }
+}
@@ -0,0 +1,14 @@
+package com.baeldung.web.dto;
+
+import java.io.Serializable;
+
+import javax.xml.bind.annotation.XmlRootElement;
+
+@XmlRootElement
+public class Foo implements Serializable {
+
+    public Foo() {
+        super();
+    }
+
+}