@Override
public void configure(HttpSecurity http) throws Exception {
PreAuthenticatedAuthenticationProvider casAuthenticationProvider = new PreAuthenticatedAuthenticationProvider();
casAuthenticationProvider.setPreAuthenticatedUserDetailsService(
new UserDetailsByNameServiceWrapper<>(peticionamentoUserDetailService.orElseThrow(() ->
SingularServerException.rethrow(
String.format("Bean %s do tipo %s não pode ser nulo. Para utilizar a configuração de segurança %s é preciso declarar um bean do tipo %s identificado pelo nome %s .",
UserDetailsService.class.getName(),
"peticionamentoUserDetailService",
SingularCASSpringSecurityConfig.class.getName(),
UserDetailsService.class.getName(),
"peticionamentoUserDetailService"
))
)
)
);
ProviderManager authenticationManager = new ProviderManager(Arrays.asList(new AuthenticationProvider[]{casAuthenticationProvider}));
J2eePreAuthenticatedProcessingFilter j2eeFilter = new J2eePreAuthenticatedProcessingFilter();
j2eeFilter.setAuthenticationManager(authenticationManager);
http
.regexMatcher(getContext().getPathRegex())
.httpBasic().authenticationEntryPoint(new Http403ForbiddenEntryPoint())
.and()
.csrf().disable()
.headers().frameOptions().sameOrigin()
.and()
.jee().j2eePreAuthenticatedProcessingFilter(j2eeFilter)
.and()
.authorizeRequests()
.antMatchers(getContext().getContextPath()).authenticated();
}
SingularCASSpringSecurityConfig.java 文件源码
java
阅读 25
收藏 0
点赞 0
评论 0
项目:singular-server
作者:
评论列表
文章目录
