SpringConfig(Security security) { OAuth2 oauth2 = security.getAuthn().getOauth2(); if (oauth2.isEnabled()) { this.oauth2 = oauth2; } } }
SpringConfig(Security security) { OAuth2 oauth2 = security.getAuthn().getOauth2(); if (oauth2.isEnabled()) { this.oauth2 = oauth2; } } }
public boolean isAuth(DeploymentConfiguration deploymentConfiguration) { return deploymentConfiguration.getSecurity().getAuthn().isEnabled(); } }
public boolean isAuth(DeploymentConfiguration deploymentConfiguration) { return deploymentConfiguration.getSecurity().getAuthn().isEnabled(); } }
public Authn getAuthn(String deploymentName) { Security security = getSecurity(deploymentName); Authn result = security.getAuthn(); if (result == null) { result = new Authn(); security.setAuthn(result); } return result; }
public Authn getAuthn(String deploymentName) { Security security = getSecurity(deploymentName); Authn result = security.getAuthn(); if (result == null) { result = new Authn(); security.setAuthn(result); } return result; }
public X509Config(Security security) { if (!security.getAuthn().getX509().isEnabled()) { return; } X509 x509 = security.getAuthn().getX509(); this.enabled = x509.isEnabled(); if (StringUtils.isNotEmpty(x509.getRoleOid())) { this.roleOid = x509.getRoleOid(); } if (StringUtils.isNotEmpty(x509.getNodeName())) { this.subjectPrincipalRegex = x509.getSubjectPrincipalRegex(); } } }
public X509Config(Security security) { if (!security.getAuthn().getX509().isEnabled()) { return; } X509 x509 = security.getAuthn().getX509(); this.enabled = x509.isEnabled(); if (StringUtils.isNotEmpty(x509.getRoleOid())) { this.roleOid = x509.getRoleOid(); } if (StringUtils.isNotEmpty(x509.getNodeName())) { this.subjectPrincipalRegex = x509.getSubjectPrincipalRegex(); } } }
@Override protected GateConfig getGateConfig(ServiceSettings gate, Security security) { GateConfig config = new GateConfig(gate, security); if (security.getAuthn().getOauth2().isEnabled()) { config.security.oauth2 = security.getAuthn().getOauth2(); } else if (security.getAuthn().getSaml().isEnabled()) { config.saml = new SamlConfig(security); } else if (security.getAuthn().getLdap().isEnabled()) { config.ldap = new LdapConfig(security); } else if (security.getAuthn().getIap().isEnabled()) { config.google.iap = new IAPConfig(security); } if (security.getAuthn().getX509().isEnabled()) { config.x509 = new X509Config(security); } return config; } }
@Override protected GateConfig getGateConfig(ServiceSettings gate, Security security) { GateConfig config = new GateConfig(gate, security); if (security.getAuthn().getOauth2().isEnabled()) { config.spring = new SpringConfig(security); } else if (security.getAuthn().getSaml().isEnabled()) { config.saml = new SamlConfig(security); } else if (security.getAuthn().getLdap().isEnabled()) { config.ldap = new LdapConfig(security); } else if (security.getAuthn().getIap().isEnabled()) { config.google.iap = new IAPConfig(security); } if (security.getAuthn().getX509().isEnabled()) { config.x509 = new X509Config(security); } return config; } }
public LdapConfig(Security security) { if (!security.getAuthn().getLdap().isEnabled()) { return; } Ldap ldap = security.getAuthn().getLdap(); this.enabled = ldap.isEnabled(); this.url = ldap.getUrl(); this.userDnPattern = ldap.getUserDnPattern(); this.userSearchBase = ldap.getUserSearchBase(); this.userSearchFilter = ldap.getUserSearchFilter(); } }
public LdapConfig(Security security) { if (!security.getAuthn().getLdap().isEnabled()) { return; } Ldap ldap = security.getAuthn().getLdap(); this.enabled = ldap.isEnabled(); this.url = ldap.getUrl(); this.userDnPattern = ldap.getUserDnPattern(); this.userSearchBase = ldap.getUserSearchBase(); this.userSearchFilter = ldap.getUserSearchFilter(); } }
@Override public ServiceSettings buildServiceSettings(DeploymentConfiguration deploymentConfiguration) { boolean authEnabled = deploymentConfiguration.getSecurity().getAuthn().isEnabled(); return new Settings(deploymentConfiguration.getSecurity().getUiSecurity()) .setArtifactId(getArtifactId(deploymentConfiguration.getName())) .setHost(authEnabled ? "0.0.0.0" : getDefaultHost()) .setEnabled(true); }
@Override public ServiceSettings buildServiceSettings(DeploymentConfiguration deploymentConfiguration) { boolean authEnabled = deploymentConfiguration.getSecurity().getAuthn().isEnabled(); return new Settings(deploymentConfiguration.getSecurity().getApiSecurity()) .setArtifactId(getArtifactId(deploymentConfiguration.getName())) .setHost(authEnabled ? "0.0.0.0" : getDefaultHost()) .setEnabled(true); }
@Override public ServiceSettings buildServiceSettings(DeploymentConfiguration deploymentConfiguration) { boolean authEnabled = deploymentConfiguration.getSecurity().getAuthn().isEnabled(); return new Settings(deploymentConfiguration.getSecurity().getApiSecurity()) .setArtifactId(getArtifactId(deploymentConfiguration.getName())) .setHost(authEnabled ? "0.0.0.0" : getDefaultHost()) .setEnabled(true); }
@Override public ServiceSettings buildServiceSettings(DeploymentConfiguration deploymentConfiguration) { boolean authEnabled = deploymentConfiguration.getSecurity().getAuthn().isEnabled(); return new Settings(deploymentConfiguration.getSecurity().getApiSecurity()) .setArtifactId(getArtifactId(deploymentConfiguration.getName())) .setHost(authEnabled ? "0.0.0.0" : getDefaultHost()) .setEnabled(true); }
@Override public ServiceSettings buildServiceSettings(DeploymentConfiguration deploymentConfiguration) { boolean authEnabled = deploymentConfiguration.getSecurity().getAuthn().isEnabled(); return new Settings(deploymentConfiguration.getSecurity().getUiSecurity()) .setArtifactId(getArtifactId(deploymentConfiguration.getName())) .setHost(authEnabled ? "0.0.0.0" : getDefaultHost()) .setEnabled(true); }
@Override public ServiceSettings buildServiceSettings(DeploymentConfiguration deploymentConfiguration) { boolean authEnabled = deploymentConfiguration.getSecurity().getAuthn().isEnabled(); return new Settings(deploymentConfiguration.getSecurity().getApiSecurity()) .setArtifactId(getArtifactId(deploymentConfiguration.getName())) .setHost(authEnabled ? "0.0.0.0" : getDefaultHost()) .setEnabled(true); }
@Override public void setProfile(Profile profile, DeploymentConfiguration deploymentConfiguration, SpinnakerRuntimeSettings endpoints) { super.setProfile(profile, deploymentConfiguration, endpoints); Security security = deploymentConfiguration.getSecurity(); List<String> requiredFiles = backupRequiredFiles(security.getApiSecurity(), deploymentConfiguration.getName()); requiredFiles.addAll(backupRequiredFiles(security.getAuthn(), deploymentConfiguration.getName())); requiredFiles.addAll(backupRequiredFiles(security.getAuthz(), deploymentConfiguration.getName())); GateConfig gateConfig = getGateConfig(endpoints.getServiceSettings(Type.GATE), security); gateConfig.getCors().setAllowedOriginsPattern(security.getApiSecurity()); profile.appendContents(yamlToString(gateConfig)) .appendContents(profile.getBaseContents()) .setRequiredFiles(requiredFiles); }
@Override public void setProfile(Profile profile, DeploymentConfiguration deploymentConfiguration, SpinnakerRuntimeSettings endpoints) { super.setProfile(profile, deploymentConfiguration, endpoints); Security security = deploymentConfiguration.getSecurity(); List<String> requiredFiles = backupRequiredFiles(security.getApiSecurity(), deploymentConfiguration.getName()); requiredFiles.addAll(backupRequiredFiles(security.getAuthn(), deploymentConfiguration.getName())); requiredFiles.addAll(backupRequiredFiles(security.getAuthz(), deploymentConfiguration.getName())); GateConfig gateConfig = getGateConfig(endpoints.getServiceSettings(Type.GATE), security); gateConfig.getCors().setAllowedOriginsPattern(security.getApiSecurity()); profile.appendContents(yamlToString(gateConfig)) .appendContents(profile.getBaseContents()) .setRequiredFiles(requiredFiles); }