@Override public boolean authorize(PathConfiguration pathConfiguration, HttpServletRequest request, HttpServletResponse response) { AuthorizationConfiguration authorizationConfiguration = pathConfiguration.getAuthorizationConfiguration(); if (authorizationConfiguration == null) { return true; } return doAuthorize(pathConfiguration, request, response); }
@Override public boolean authorize(PathConfiguration pathConfiguration, HttpServletRequest request, HttpServletResponse response) { AuthorizationConfiguration authorizationConfiguration = pathConfiguration.getAuthorizationConfiguration(); if (authorizationConfiguration == null) { return true; } return doAuthorize(pathConfiguration, request, response); }
@Override public boolean authorize(PathConfiguration pathConfiguration, HttpServletRequest request, HttpServletResponse response) { AuthorizationConfiguration authorizationConfiguration = pathConfiguration.getAuthorizationConfiguration(); if (authorizationConfiguration == null) { return true; } return doAuthorize(pathConfiguration, request, response); }
@Override protected boolean doAuthorize(PathConfiguration pathConfiguration, HttpServletRequest request, HttpServletResponse response) { AuthorizationConfiguration authorizationConfiguration = pathConfiguration.getAuthorizationConfiguration(); String[] allowedRoles = authorizationConfiguration.getAllowedRoles(); if (allowedRoles != null) { Identity identity = getIdentity(); for (String roneName : allowedRoles) { if (!hasRole(identity, this.partitionManager, roneName)) { return false; } } } return true; }
@Override protected boolean doAuthorize(PathConfiguration pathConfiguration, HttpServletRequest request, HttpServletResponse response) { AuthorizationConfiguration authorizationConfiguration = pathConfiguration.getAuthorizationConfiguration(); String[] allowedGroups = authorizationConfiguration.getAllowedGroups(); if (allowedGroups != null) { Identity identity = getIdentity(); for (String groupName : allowedGroups) { if (!AuthorizationUtil.isMember(identity, this.partitionManager, groupName)) { return false; } } } return true; }
private void initializePathAuthorizers() { for (List<PathConfiguration> configurations : this.configuration.getPaths().values()) { for (PathConfiguration pathConfiguration : configurations) { if (pathConfiguration.isSecured()) { AuthorizationConfiguration authorizationConfiguration = pathConfiguration.getAuthorizationConfiguration(); if (authorizationConfiguration != null) { List<PathAuthorizer> pathAuthorizers = new ArrayList<PathAuthorizer>(); List<Class<? extends PathAuthorizer>> pathAuthorizerTypes = new ArrayList<Class<? extends PathAuthorizer>>( authorizationConfiguration.getAuthorizers()); pathAuthorizerTypes.addAll(getDefaultPathAuthorizers()); for (Class<? extends PathAuthorizer> authorizerType : pathAuthorizerTypes) { try { pathAuthorizers.add(resolveInstance(this.pathAuthorizerInstance, authorizerType)); } catch (Exception e) { throw new HttpSecurityConfigurationException("Could not resolve PathAuthorizer [" + authorizerType + "].", e); } } this.pathAuthorizers.put(pathConfiguration, pathAuthorizers); } } } } }
@Override protected boolean doAuthorize(PathConfiguration pathConfiguration, HttpServletRequest request, HttpServletResponse response) { AuthorizationConfiguration authorizationConfiguration = pathConfiguration.getAuthorizationConfiguration(); String[] allowedRoles = authorizationConfiguration.getAllowedRoles(); if (allowedRoles != null) { Identity identity = getIdentity(); for (String roneName : allowedRoles) { if (!hasRole(identity, this.partitionManager, roneName)) { return false; } } } return true; }
@Override protected boolean doAuthorize(PathConfiguration pathConfiguration, HttpServletRequest request, HttpServletResponse response) { AuthorizationConfiguration authorizationConfiguration = pathConfiguration.getAuthorizationConfiguration(); String[] allowedGroups = authorizationConfiguration.getAllowedGroups(); if (allowedGroups != null) { Identity identity = getIdentity(); for (String groupName : allowedGroups) { if (!AuthorizationUtil.isMember(identity, this.partitionManager, groupName)) { return false; } } } return true; }
private void initializePathAuthorizers() { for (List<PathConfiguration> configurations : this.configuration.getPaths().values()) { for (PathConfiguration pathConfiguration : configurations) { if (pathConfiguration.isSecured()) { AuthorizationConfiguration authorizationConfiguration = pathConfiguration.getAuthorizationConfiguration(); if (authorizationConfiguration != null) { List<PathAuthorizer> pathAuthorizers = new ArrayList<PathAuthorizer>(); List<Class<? extends PathAuthorizer>> pathAuthorizerTypes = new ArrayList<Class<? extends PathAuthorizer>>( authorizationConfiguration.getAuthorizers()); pathAuthorizerTypes.addAll(getDefaultPathAuthorizers()); for (Class<? extends PathAuthorizer> authorizerType : pathAuthorizerTypes) { try { pathAuthorizers.add(resolveInstance(this.pathAuthorizerInstance, authorizerType)); } catch (Exception e) { throw new HttpSecurityConfigurationException("Could not resolve PathAuthorizer [" + authorizerType + "].", e); } } this.pathAuthorizers.put(pathConfiguration, pathAuthorizers); } } } } }
@Override protected boolean doAuthorize(PathConfiguration pathConfiguration, HttpServletRequest request, HttpServletResponse response) { AuthorizationConfiguration authorizationConfiguration = pathConfiguration.getAuthorizationConfiguration(); String[] allowedGroups = authorizationConfiguration.getAllowedGroups(); if (allowedGroups != null) { Identity identity = getIdentity(); for (String groupName : allowedGroups) { if (!AuthorizationUtil.isMember(identity, this.partitionManager, groupName)) { return false; } } } return true; }
@Override protected boolean doAuthorize(PathConfiguration pathConfiguration, HttpServletRequest request, HttpServletResponse response) { AuthorizationConfiguration authorizationConfiguration = pathConfiguration.getAuthorizationConfiguration(); String[] allowedRoles = authorizationConfiguration.getAllowedRoles(); if (allowedRoles != null) { Identity identity = getIdentity(); for (String roneName : allowedRoles) { if (!hasRole(identity, this.partitionManager, roneName)) { return false; } } } return true; }
private void initializePathAuthorizers() { for (List<PathConfiguration> configurations : this.configuration.getPaths().values()) { for (PathConfiguration pathConfiguration : configurations) { if (pathConfiguration.isSecured()) { AuthorizationConfiguration authorizationConfiguration = pathConfiguration.getAuthorizationConfiguration(); if (authorizationConfiguration != null) { List<PathAuthorizer> pathAuthorizers = new ArrayList<PathAuthorizer>(); List<Class<? extends PathAuthorizer>> pathAuthorizerTypes = new ArrayList<Class<? extends PathAuthorizer>>( authorizationConfiguration.getAuthorizers()); pathAuthorizerTypes.addAll(getDefaultPathAuthorizers()); for (Class<? extends PathAuthorizer> authorizerType : pathAuthorizerTypes) { try { pathAuthorizers.add(resolveInstance(this.pathAuthorizerInstance, authorizerType)); } catch (Exception e) { throw new HttpSecurityConfigurationException("Could not resolve PathAuthorizer [" + authorizerType + "].", e); } } this.pathAuthorizers.put(pathConfiguration, pathAuthorizers); } } } } }
private void validate() { if (this.uriConfiguration.isEmpty()) { throw new HttpSecurityConfigurationException("No URI configuration is defined. You must provide at least one URI to protect."); } for (List<PathConfiguration> configurations : this.uriConfiguration.values()) { for (PathConfiguration configuration : configurations) { if (!configuration.isGroup()) { String groupName = configuration.getGroupName(); if (!this.groupConfiguration.containsKey(groupName) && !configuration.isDefaultGroup()) { throw new HttpSecurityConfigurationException("Group [" + groupName + "] for URI [" + configuration .getUri() + "] is not defined."); } } if (configuration.isSecured() && ((configuration == null) || ((configuration != null && configuration.getAuthenticationConfiguration() == null) && (configuration == null && configuration.getAuthorizationConfiguration() == null) && (configuration == null && configuration.getLogoutConfiguration() == null) && (configuration == null && configuration.getMethods() == null || configuration.getMethods().isEmpty()) && (configuration.getRedirects().isEmpty())))) { throw new HttpSecurityConfigurationException("You must provide an authentication, authorization or logout configuration for URI [" + configuration.getUri() + "]."); } } } }
private void validate() { if (this.uriConfiguration.isEmpty()) { throw new HttpSecurityConfigurationException("No URI configuration is defined. You must provide at least one URI to protect."); } for (List<PathConfiguration> configurations : this.uriConfiguration.values()) { for (PathConfiguration configuration : configurations) { if (!configuration.isGroup()) { String groupName = configuration.getGroupName(); if (!this.groupConfiguration.containsKey(groupName) && !configuration.isDefaultGroup()) { throw new HttpSecurityConfigurationException("Group [" + groupName + "] for URI [" + configuration .getUri() + "] is not defined."); } } if (configuration.isSecured() && ((configuration == null) || ((configuration != null && configuration.getAuthenticationConfiguration() == null) && (configuration == null && configuration.getAuthorizationConfiguration() == null) && (configuration == null && configuration.getLogoutConfiguration() == null) && (configuration == null && configuration.getMethods() == null || configuration.getMethods().isEmpty()) && (configuration.getRedirects().isEmpty())))) { throw new HttpSecurityConfigurationException("You must provide an authentication, authorization or logout configuration for URI [" + configuration.getUri() + "]."); } } } }
private void validate() { if (this.uriConfiguration.isEmpty()) { throw new HttpSecurityConfigurationException("No URI configuration is defined. You must provide at least one URI to protect."); } for (List<PathConfiguration> configurations : this.uriConfiguration.values()) { for (PathConfiguration configuration : configurations) { if (!configuration.isGroup()) { String groupName = configuration.getGroupName(); if (!this.groupConfiguration.containsKey(groupName) && !configuration.isDefaultGroup()) { throw new HttpSecurityConfigurationException("Group [" + groupName + "] for URI [" + configuration .getUri() + "] is not defined."); } } if (configuration.isSecured() && ((configuration == null) || ((configuration != null && configuration.getAuthenticationConfiguration() == null) && (configuration == null && configuration.getAuthorizationConfiguration() == null) && (configuration == null && configuration.getLogoutConfiguration() == null) && (configuration == null && configuration.getMethods() == null || configuration.getMethods().isEmpty()) && (configuration.getRedirects().isEmpty())))) { throw new HttpSecurityConfigurationException("You must provide an authentication, authorization or logout configuration for URI [" + configuration.getUri() + "]."); } } } }
@Override public boolean doAuthorize(PathConfiguration pathConfiguration, HttpServletRequest request, HttpServletResponse response) { AuthorizationConfiguration authorizationConfiguration = pathConfiguration.getAuthorizationConfiguration(); String[] allowedRealms = authorizationConfiguration.getAllowedRealms(); if (allowedRealms == null) { return true; } Identity identity = getIdentity(); for (String realmName : allowedRealms) { if (hasPartition(identity, Partition.class, realmName)) { return true; } try { Class<Object> partitionType = Reflections.classForName(realmName); if (hasPartition(identity, partitionType, null)) { return true; } } catch (Exception ignore) { } } return false; } }
@Override public boolean doAuthorize(PathConfiguration pathConfiguration, HttpServletRequest request, HttpServletResponse response) { AuthorizationConfiguration authorizationConfiguration = pathConfiguration.getAuthorizationConfiguration(); String[] allowedRealms = authorizationConfiguration.getAllowedRealms(); if (allowedRealms == null) { return true; } Identity identity = getIdentity(); for (String realmName : allowedRealms) { if (hasPartition(identity, Partition.class, realmName)) { return true; } try { Class<Object> partitionType = Reflections.classForName(realmName); if (hasPartition(identity, partitionType, null)) { return true; } } catch (Exception ignore) { } } return false; } }
@Override public boolean doAuthorize(PathConfiguration pathConfiguration, HttpServletRequest request, HttpServletResponse response) { AuthorizationConfiguration authorizationConfiguration = pathConfiguration.getAuthorizationConfiguration(); String[] allowedRealms = authorizationConfiguration.getAllowedRealms(); if (allowedRealms == null) { return true; } Identity identity = getIdentity(); for (String realmName : allowedRealms) { if (hasPartition(identity, Partition.class, realmName)) { return true; } try { Class<Object> partitionType = Reflections.classForName(realmName); if (hasPartition(identity, partitionType, null)) { return true; } } catch (Exception ignore) { } } return false; } }
Map<String, PathConfiguration> groups = pathConfiguration.getSecurityConfiguration().getGroups(); PathConfiguration groupConfiguration = groups.get(pathConfiguration.getGroupName()); AuthorizationConfiguration groupAuthz = groupConfiguration.getAuthorizationConfiguration(); authorizers); } else if (groupAuthz != null) { return groupConfiguration.getAuthorizationConfiguration();
if (pathConfiguration != null && pathConfiguration.getAuthorizationConfiguration() != null) { throw new AuthenticationRequiredException("The given path [" + pathConfiguration.getUri() + "] requires authentication.");