@SuppressWarnings("PMD.SignatureDeclareThrowsException")
private RequestHeaderAuthenticationFilter requestHeaderAuthenticationFilter() throws Exception {
RequestHeaderAuthenticationFilter f = new RequestHeaderAuthenticationFilter();
f.setPrincipalRequestHeader("X-Forwarded-User");
f.setCredentialsRequestHeader("X-Forwarded-Access-Token");
f.setAuthenticationManager(authenticationManager());
f.setAuthenticationDetailsSource(
(AuthenticationDetailsSource<HttpServletRequest, PreAuthenticatedGrantedAuthoritiesWebAuthenticationDetails>)
(request) ->new PreAuthenticatedGrantedAuthoritiesWebAuthenticationDetails(
request,
AuthorityUtils.createAuthorityList("ROLE_AUTHENTICATED")
)
);
f.setAuthenticationFailureHandler(new SimpleUrlAuthenticationFailureHandler());
f.setExceptionIfHeaderMissing(false);
return f;
}
java类org.springframework.security.authentication.AuthenticationDetailsSource的实例源码
SecurityConfiguration.java 文件源码
项目:syndesis
阅读 30
收藏 0
点赞 0
评论 0
SecurityConfiguration.java 文件源码
项目:syndesis-rest
阅读 27
收藏 0
点赞 0
评论 0
@SuppressWarnings("PMD.SignatureDeclareThrowsException")
private RequestHeaderAuthenticationFilter requestHeaderAuthenticationFilter() throws Exception {
RequestHeaderAuthenticationFilter f = new RequestHeaderAuthenticationFilter();
f.setPrincipalRequestHeader("X-Forwarded-User");
f.setCredentialsRequestHeader("X-Forwarded-Access-Token");
f.setAuthenticationManager(authenticationManager());
f.setAuthenticationDetailsSource(
(AuthenticationDetailsSource<HttpServletRequest, PreAuthenticatedGrantedAuthoritiesWebAuthenticationDetails>)
(request) ->new PreAuthenticatedGrantedAuthoritiesWebAuthenticationDetails(
request,
AuthorityUtils.createAuthorityList("ROLE_AUTHENTICATED")
)
);
f.setAuthenticationFailureHandler(new SimpleUrlAuthenticationFailureHandler());
f.setExceptionIfHeaderMissing(false);
return f;
}
DashboardAuthenticationProcessingFilterTest.java 文件源码
项目:cf-sample-service
阅读 34
收藏 0
点赞 0
评论 0
@Test
public void attemptAuthenticationWithDetailSource() throws IOException, ServletException {
final OAuth2Authentication oAuth2Authentication = createAuthentication();
final Object details = "details";
final Authentication resultAuthentication = createResultAuthentication(oAuth2Authentication);
final HttpServletRequest request = createRequest();
final AuthenticationDetailsSource<HttpServletRequest, ?> detailsSource = createDetailsSource(request, details);
final DashboardAuthenticationProcessingFilter filter =
createFilter(oAuth2Authentication, resultAuthentication, detailsSource);
final Authentication actualResultAuthentication = filter.attemptAuthentication(request, createResponse());
assertSame(resultAuthentication, actualResultAuthentication);
assertEquals(details, oAuth2Authentication.getDetails());
}
AuthenticationHelper.java 文件源码
项目:communote-server
阅读 31
收藏 0
点赞 0
评论 0
/**
* Set the public user as authenticated user to the current SecurityContext. If the
* SecurityContext is shared between all threads of the current session.
*
* @param request
* the servlet request
*/
public static void setPublicUserToSecurityContext(ServletRequest request) {
org.springframework.security.core.userdetails.User user = new PublicUserDetails();
UsernamePasswordAuthenticationToken authentication = new UsernamePasswordAuthenticationToken(
user, user.getPassword(), user.getAuthorities());
AuthenticationDetailsSource<Object, Object> authenticationDetailsSource = new AuthenticationDetailsSourceImpl();
authentication.setDetails(authenticationDetailsSource.buildDetails(request));
SecurityContextHolder.getContext().setAuthentication(authentication);
}
AccessFilter.java 文件源码
项目:artifactory
阅读 41
收藏 0
点赞 0
评论 0
@SuppressWarnings({"ThrowableInstanceNeverThrown"})
private void useAnonymousIfPossible(HttpServletRequest request, HttpServletResponse response,
FilterChain chain, SecurityContext securityContext) throws IOException, ServletException {
boolean anonAccessEnabled = context.getAuthorizationService().isAnonAccessEnabled();
if (anonAccessEnabled || authInterceptors.accept(request)) {
log.debug("Using anonymous");
Authentication authentication = getNonUiCachedAuthentication(request);
if (authentication == null) {
log.debug("Creating the Anonymous token");
final UsernamePasswordAuthenticationToken authRequest =
new UsernamePasswordAuthenticationToken(UserInfo.ANONYMOUS, "");
AuthenticationDetailsSource ads = new HttpAuthenticationDetailsSource();
//noinspection unchecked
authRequest.setDetails(ads.buildDetails(request));
// explicitly ask for the default spring authentication manager by name (we have another one which
// is only used by the basic authentication filter)
AuthenticationManager authenticationManager =
context.beanForType("authenticationManager", AuthenticationManager.class);
authentication = authenticationManager.authenticate(authRequest);
if (authentication != null && authentication.isAuthenticated() && !RequestUtils.isUiRequest(request)) {
AuthCacheKey authCacheKey = new AuthCacheKey(authFilter.getCacheKey(request),
request.getRemoteAddr());
nonUiAuthCache.put(authCacheKey, authentication);
log.debug("Added anonymous authentication {} to cache", authentication);
}
} else {
log.debug("Using cached anonymous authentication");
}
useAuthentication(request, response, chain, authentication, securityContext);
} else {
if (authFilter.acceptEntry(request)) {
log.debug("Sending request requiring authentication");
authFilter.commence(request, response,
new InsufficientAuthenticationException("Authentication is required"));
} else {
log.debug("No filter or entry just chain");
chain.doFilter(request, response);
}
}
}
AuthenticationFilter.java 文件源码
项目:jeffaschenk-commons
阅读 39
收藏 0
点赞 0
评论 0
@Override
public void setAuthenticationDetailsSource
(AuthenticationDetailsSource
authenticationDetailsSource) {
log.debug("Invoking setAuthenticationDetailsSource");
super.setAuthenticationDetailsSource(authenticationDetailsSource);
}
DashboardAuthenticationProcessingFilterTest.java 文件源码
项目:cf-sample-service
阅读 32
收藏 0
点赞 0
评论 0
private DashboardAuthenticationProcessingFilter createFilter(OAuth2Authentication oAuth2Authentication,
Authentication resultAuthentication,
AuthenticationDetailsSource<HttpServletRequest, ?> source) {
final String token = "TOKEN";
final DashboardAuthenticationProcessingFilter filter = new DashboardAuthenticationProcessingFilter();
filter.setAuthenticationManager(createAuthenticationManagerForUserAuth(oAuth2Authentication, resultAuthentication));
filter.setRestTemplate(createRestTemplate(token));
filter.setTokenServices(createResourceTokenServices(oAuth2Authentication, token));
filter.setDetailsSource(source);
return filter;
}
DashboardAuthenticationProcessingFilterTest.java 文件源码
项目:cf-sample-service
阅读 31
收藏 0
点赞 0
评论 0
@SuppressWarnings("unchecked")
private AuthenticationDetailsSource<HttpServletRequest, ?> createDetailsSource(HttpServletRequest request,
Object details) {
final AuthenticationDetailsSource<HttpServletRequest, ?> source = mock(AuthenticationDetailsSource.class);
when(source.buildDetails(request))
.thenReturn(details);
return source;
}
TokenAuthFilterConfigurer.java 文件源码
项目:haven-platform
阅读 35
收藏 0
点赞 0
评论 0
public AuthenticationDetailsSource<HttpServletRequest, ?> getAuthenticationDetailsSource() {
return authenticationDetailsSource;
}
TokenAuthFilterConfigurer.java 文件源码
项目:haven-platform
阅读 33
收藏 0
点赞 0
评论 0
public void setAuthenticationDetailsSource(AuthenticationDetailsSource<HttpServletRequest, ?> authenticationDetailsSource) {
this.authenticationDetailsSource = authenticationDetailsSource;
}
RequestParameterAuthenticationProcessingFilter.java 文件源码
项目:communote-server
阅读 30
收藏 0
点赞 0
评论 0
/**
* @param authenticationDetailsSource
* the {@link AuthenticationDetailsSource} to use, cannot be null
*/
public void setAuthenticationDetailsSource(
AuthenticationDetailsSource<Object, Object> authenticationDetailsSource) {
Assert.notNull(authenticationDetailsSource, "AuthenticationDetailsSource required");
this.authenticationDetailsSource = authenticationDetailsSource;
}
AccessTokenAuthenticationFilter.java 文件源码
项目:putput
阅读 32
收藏 0
点赞 0
评论 0
private AuthenticationDetailsSource<HttpServletRequest, ?> detailsSource() {
return (request) -> {
Collection<? extends GrantedAuthority> authorities = Collections.singleton(new SimpleGrantedAuthority("ROLE_USER"));
return new PreAuthenticatedGrantedAuthoritiesWebAuthenticationDetails(request, authorities);
};
}
CustomOAuth2RequestFilter.java 文件源码
项目:cloudstreetmarket.com
阅读 40
收藏 0
点赞 0
评论 0
public void setAuthenticationDetailsSource(
AuthenticationDetailsSource<HttpServletRequest, ?> authenticationDetailsSource) {
Assert.notNull(authenticationDetailsSource,
"AuthenticationDetailsSource required");
this.authenticationDetailsSource = authenticationDetailsSource;
}
BasicAuthenticationFilter.java 文件源码
项目:aggregate
阅读 40
收藏 0
点赞 0
评论 0
public void setAuthenticationDetailsSource(AuthenticationDetailsSource<javax.servlet.http.HttpServletRequest,?> authenticationDetailsSource) {
impl.setAuthenticationDetailsSource(authenticationDetailsSource);
}
RestLoginFilter.java 文件源码
项目:summerb
阅读 36
收藏 0
点赞 0
评论 0
public AuthenticationDetailsSource<HttpServletRequest, ?> getAuthenticationDetailsSource() {
return authenticationDetailsSource;
}
RestLoginFilter.java 文件源码
项目:summerb
阅读 36
收藏 0
点赞 0
评论 0
public void setAuthenticationDetailsSource(
AuthenticationDetailsSource<HttpServletRequest, ?> authenticationDetailsSource) {
this.authenticationDetailsSource = authenticationDetailsSource;
}
VistaBasicAuthenticationFilter.java 文件源码
项目:eHMP
阅读 32
收藏 0
点赞 0
评论 0
public void setAuthenticationDetailsSource(AuthenticationDetailsSource authenticationDetailsSource) {
Assert.notNull(authenticationDetailsSource, "AuthenticationDetailsSource required");
this.authenticationDetailsSource = authenticationDetailsSource;
}
CustomUserNamePasswordAuthenticationFilter.java 文件源码
项目:appverse-server
阅读 30
收藏 0
点赞 0
评论 0
public void setAuthenticationDetailsSource(
AuthenticationDetailsSource<HttpServletRequest, ?> authenticationDetailsSource) {
Assert.notNull(authenticationDetailsSource,
"AuthenticationDetailsSource required");
this.authenticationDetailsSource = authenticationDetailsSource;
}
AuthenticationFilter.java 文件源码
项目:jeffaschenk-commons
阅读 40
收藏 0
点赞 0
评论 0
@Override
public AuthenticationDetailsSource getAuthenticationDetailsSource
() {
log.debug("Invoking getAuthenticationDetailsSource");
return super.getAuthenticationDetailsSource();
}
DashboardAuthenticationProcessingFilter.java 文件源码
项目:cf-sample-service
阅读 31
收藏 0
点赞 0
评论 0
/**
* Sets the optional source providing {@link Authentication#getDetails() authentication details}.
*/
public void setDetailsSource(AuthenticationDetailsSource<HttpServletRequest, ?> detailsSource) {
this.detailsSource = detailsSource;
}
DashboardSecurityConfiguration.java 文件源码
项目:cf-sample-service
阅读 31
收藏 0
点赞 0
评论 0
@Bean(name = "dashboardAuthenticationDetailsSource")
@Autowired
public AuthenticationDetailsSource<HttpServletRequest, ?> dashboardAuthenticationDetailsSource() {
return new DashboardAuthenticationDetailsSource(dashboardRestOperations(), suidFile, oauthInfoUrl, apiUrl);
}
OAuth2AuthenticationProcessingFilter.java 文件源码
项目:oauth-client-master
阅读 38
收藏 0
点赞 0
评论 0
/**
* @param authenticationDetailsSource
* The AuthenticationDetailsSource to use
*/
public void setAuthenticationDetailsSource(AuthenticationDetailsSource<HttpServletRequest,?> authenticationDetailsSource) {
Assert.notNull(authenticationDetailsSource, "AuthenticationDetailsSource required");
this.authenticationDetailsSource = authenticationDetailsSource;
}
MolgenisAnonymousAuthenticationFilter.java 文件源码
项目:molgenis
阅读 30
收藏 0
点赞 0
评论 0
public void setAuthenticationDetailsSource(
AuthenticationDetailsSource<HttpServletRequest, ?> authenticationDetailsSource)
{
Assert.notNull(authenticationDetailsSource, "AuthenticationDetailsSource required");
this.authenticationDetailsSource = authenticationDetailsSource;
}
TokenBasedAuthenticationFilter.java 文件源码
项目:termitaria
阅读 33
收藏 0
点赞 0
评论 0
public void setAuthenticationDetailsSource(
AuthenticationDetailsSource authenticationDetailsSource) {
Assert.notNull(authenticationDetailsSource,
"AuthenticationDetailsSource required");
this.authenticationDetailsSource = authenticationDetailsSource;
}
TokenBasedAuthenticationFilter.java 文件源码
项目:termitaria
阅读 36
收藏 0
点赞 0
评论 0
public void setAuthenticationDetailsSource(
AuthenticationDetailsSource authenticationDetailsSource) {
Assert.notNull(authenticationDetailsSource,
"AuthenticationDetailsSource required");
this.authenticationDetailsSource = authenticationDetailsSource;
}
TokenBasedAuthenticationFilter.java 文件源码
项目:termitaria
阅读 34
收藏 0
点赞 0
评论 0
public void setAuthenticationDetailsSource(
AuthenticationDetailsSource authenticationDetailsSource) {
Assert.notNull(authenticationDetailsSource,
"AuthenticationDetailsSource required");
this.authenticationDetailsSource = authenticationDetailsSource;
}
XMPPAuthenticationProcessingFilter.java 文件源码
项目:communote-server
阅读 29
收藏 0
点赞 0
评论 0
/**
* Sets the authentication details source.
*
* @param authenticationDetailsSource
* the auth details source.
*/
public final void setAuthenticationDetailsSource(
AuthenticationDetailsSource<Object, Object> authenticationDetailsSource) {
Assert.notNull(authenticationDetailsSource, "AuthenticationDetailsSource required");
this.authenticationDetailsSource = authenticationDetailsSource;
}
TokenEndpointAuthenticationFilter.java 文件源码
项目:oauth-client-master
阅读 34
收藏 0
点赞 0
评论 0
/**
* A source of authentication details for requests that result in authentication.
*
* @param authenticationDetailsSource the authenticationDetailsSource to set
*/
public void setAuthenticationDetailsSource(
AuthenticationDetailsSource<HttpServletRequest, ?> authenticationDetailsSource) {
this.authenticationDetailsSource = authenticationDetailsSource;
}
