securityConstraint.addWebResourceCollection(new WebResourceCollection() .addHttpMethods(resourceCollection.getHttpMethods()) .addHttpMethodOmissions(resourceCollection.getHttpMethodOmissions()) .addUrlPatterns(resourceCollection.getUrlPatterns()));
builder.addSecurityConstraint(constraint); for (WebResourceCollection webResources : constraint.getWebResourceCollections()) { urlPatterns.addAll(webResources.getUrlPatterns()); .addRolesAllowed(method.getRolesAllowed()) .setTransportGuaranteeType(method.getTransportGuaranteeType()) .addWebResourceCollection(new WebResourceCollection().addUrlPatterns(mappings) .addHttpMethod(method.getMethod())); builder.addSecurityConstraint(newConstraint); .addRolesAllowed(securityInfo.getRolesAllowed()) .setTransportGuaranteeType(securityInfo.getTransportGuaranteeType()) .addWebResourceCollection(new WebResourceCollection().addUrlPatterns(mappings) .addHttpMethodOmissions(methods)); builder.addSecurityConstraint(newConstraint);
final SecurityConstraint endpointSecurityConstraint = new SecurityConstraint(); for (WebResourceCollection mainResourceCollection : mainSecurityConstraint.getWebResourceCollections()) { final WebResourceCollection endpointResourceCollection = new WebResourceCollection(); for (String mainUrlPattern : mainResourceCollection.getUrlPatterns()) { if (MATCH_ALL_ENDPOINT_URI_PREFIX.equals(mainUrlPattern)) { endpointResourceCollection.addUrlPattern(MATCH_ALL_PREFIX); } else { final UrlPattern pattern = new UrlPattern(mainUrlPattern); if (isRelativeUri) { if ((relativePattern = pattern.relativize(relativeUriPath)) != null) { endpointResourceCollection.addUrlPattern(relativePattern); endpointResourceCollection.addUrlPattern(relativePattern); if (!endpointResourceCollection.getUrlPatterns().isEmpty()) { endpointResourceCollection.addHttpMethods(mainResourceCollection.getHttpMethods()); endpointResourceCollection.addHttpMethodOmissions(mainResourceCollection.getHttpMethodOmissions()); endpointSecurityConstraint.addWebResourceCollection(endpointResourceCollection); final WebResourceCollection webResourceCollection = new WebResourceCollection(); webResourceCollection.addUrlPattern("/*");
final WebResourceCollection uiCollection = new WebResourceCollection(); uiCollection.addUrlPatterns( UIServlet.PATHS ); uiCollection.addHttpMethods( UIServlet.METHODS ); ui.addWebResourceCollection( uiCollection ); di.addSecurityConstraint( ui ); final WebResourceCollection collection = new WebResourceCollection(); collection.addUrlPattern( constraint.getUrlPattern() ); logger.debug( "new constraint>>> URL pattern: {}", constraint.getUrlPattern() ); if ( constraint.getMethods() != null ) collection.addHttpMethods( constraint.getMethods() );
private void configureDeploymentSecurity(DeploymentInfo deploymentInfo) { deploymentInfo.setIdentityManager(identityManager); deploymentInfo.setLoginConfig(new LoginConfig(HttpServletRequest.BASIC_AUTH, "lightblueRealm")); deploymentInfo.addSecurityConstraint(new SecurityConstraint() .addWebResourceCollection(new WebResourceCollection().addUrlPattern("/*")) .addRoleAllowed(SECURITY_ROLE_AUTHENTICATED)); deploymentInfo.addSecurityRole(SECURITY_ROLE_AUTHENTICATED); }
public static WebResourceCollection webResourceCollection() { return new WebResourceCollection(); }
public Builder registerSecurePaths(final Collection<String> securePaths) { context.addSecurityConstraint(Servlets.securityConstraint() .setEmptyRoleSemantic(SecurityInfo.EmptyRoleSemantic.AUTHENTICATE) .addWebResourceCollection(Servlets.webResourceCollection().addUrlPatterns(securePaths))); return this; }
final SecurityInformation securityInformation = new SecurityInformation(roles, securityConstraint.getTransportGuaranteeType(), securityConstraint.getEmptyRoleSemantic()); for (final WebResourceCollection webResources : securityConstraint.getWebResourceCollections()) { if (webResources.getUrlPatterns().isEmpty()) { for (String pattern : webResources.getUrlPatterns()) { if (pattern.endsWith("/*")) { String part = pattern.substring(0, pattern.length() - 2);
builder.addSecurityConstraint(constraint); for (WebResourceCollection webResources : constraint.getWebResourceCollections()) { urlPatterns.addAll(webResources.getUrlPatterns()); .addRolesAllowed(method.getRolesAllowed()) .setTransportGuaranteeType(method.getTransportGuaranteeType()) .addWebResourceCollection(new WebResourceCollection().addUrlPatterns(mappings) .addHttpMethod(method.getMethod())); builder.addSecurityConstraint(newConstraint); .addRolesAllowed(securityInfo.getRolesAllowed()) .setTransportGuaranteeType(securityInfo.getTransportGuaranteeType()) .addWebResourceCollection(new WebResourceCollection().addUrlPatterns(mappings) .addHttpMethodOmissions(methods)); builder.addSecurityConstraint(newConstraint);
final SecurityConstraint endpointSecurityConstraint = new SecurityConstraint(); for (WebResourceCollection mainResourceCollection : mainSecurityConstraint.getWebResourceCollections()) { final WebResourceCollection endpointResourceCollection = new WebResourceCollection(); for (String mainUrlPattern : mainResourceCollection.getUrlPatterns()) { if (MATCH_ALL_ENDPOINT_URI_PREFIX.equals(mainUrlPattern)) { endpointResourceCollection.addUrlPattern(MATCH_ALL_PREFIX); } else { final UrlPattern pattern = new UrlPattern(mainUrlPattern); if (isRelativeUri) { if ((relativePattern = pattern.relativize(relativeUriPath)) != null) { endpointResourceCollection.addUrlPattern(relativePattern); endpointResourceCollection.addUrlPattern(relativePattern); if (!endpointResourceCollection.getUrlPatterns().isEmpty()) { endpointResourceCollection.addHttpMethods(mainResourceCollection.getHttpMethods()); endpointResourceCollection.addHttpMethodOmissions(mainResourceCollection.getHttpMethodOmissions()); endpointSecurityConstraint.addWebResourceCollection(endpointResourceCollection); final WebResourceCollection webResourceCollection = new WebResourceCollection(); webResourceCollection.addUrlPattern("/*");
private DeploymentInfo deploymentInfo() throws InterruptedException { final ResteasyDeployment resteasyDeployment = new ResteasyDeployment(); Utils.waitForCDIProvider(context); resteasyDeployment.setResourceFactories(resourceFactories()); final DeploymentInfo deploymentInfo = this.server.undertowDeployment(resteasyDeployment, String.valueOf(this.context.getProperties().get(HTTP_SERVER_REST_SERVLET_MAPPING_PREFIX))) .setContextPath(String.valueOf(this.context.getProperties().get(HTTP_SERVER_REST_CONTEXT_PATH))) .setClassLoader(this.getClass().getClassLoader()) .setDeploymentName("Silverware rest deployment"); if (this.sslEnabled) { deploymentInfo .addSecurityConstraint(new SecurityConstraint().addWebResourceCollection(new WebResourceCollection() .addUrlPattern("/*")) .setTransportGuaranteeType(TransportGuaranteeType.CONFIDENTIAL) .setEmptyRoleSemantic(SecurityInfo.EmptyRoleSemantic.PERMIT)) .setConfidentialPortManager(exchange -> sslPort()); } return deploymentInfo; }
private UndertowDeploymentInfoCustomizer enableAuthUDICustomizer() { return (DeploymentInfo di) -> { if(StringUtils.isEmpty(encodedPass)) { return; } SecurityConstraint sc = new SecurityConstraint(); sc.setEmptyRoleSemantic(SecurityInfo.EmptyRoleSemantic.AUTHENTICATE); // empty web resource interpret as default sc.addWebResourceCollection(new WebResourceCollection()); di.addSecurityConstraints(sc); di.setSecurityDisabled(false); di.setAuthenticationMode(AuthenticationMode.PRO_ACTIVE); di.setLoginConfig(new LoginConfig(HttpServletRequest.BASIC_AUTH, "Haven Agent")); di.setIdentityManager(new IdentityManagerImpl(encodedPass)); }; }
for (SecurityConstraint sc : deploymentInfo.getSecurityConstraints()) { for (WebResourceCollection webResources : sc.getWebResourceCollections()) { urlPatterns.addAll(webResources.getUrlPatterns());
@Override protected WebResourceCollection clone() { return new WebResourceCollection() .addHttpMethodOmissions(httpMethodOmissions) .addHttpMethods(httpMethods) .addUrlPatterns(urlPatterns); } }
builder.addSecurityConstraint(constraint); for (WebResourceCollection webResources : constraint.getWebResourceCollections()) { urlPatterns.addAll(webResources.getUrlPatterns()); .addRolesAllowed(method.getRolesAllowed()) .setTransportGuaranteeType(method.getTransportGuaranteeType()) .addWebResourceCollection(new WebResourceCollection().addUrlPatterns(mappings) .addHttpMethod(method.getMethod())); builder.addSecurityConstraint(newConstraint); .addRolesAllowed(securityInfo.getRolesAllowed()) .setTransportGuaranteeType(securityInfo.getTransportGuaranteeType()) .addWebResourceCollection(new WebResourceCollection().addUrlPatterns(mappings) .addHttpMethodOmissions(methods)); builder.addSecurityConstraint(newConstraint);
private List<io.undertow.servlet.api.SecurityConstraint> getSecurityConstraints() { List<io.undertow.servlet.api.SecurityConstraint> undertowSecurityConstraints = new ArrayList<io.undertow.servlet.api.SecurityConstraint>(); for (KeycloakSpringBootProperties.SecurityConstraint constraintDefinition : keycloakProperties.getSecurityConstraints()) { io.undertow.servlet.api.SecurityConstraint undertowSecurityConstraint = new io.undertow.servlet.api.SecurityConstraint(); undertowSecurityConstraint.addRolesAllowed(constraintDefinition.getAuthRoles()); for (KeycloakSpringBootProperties.SecurityCollection collectionDefinition : constraintDefinition.getSecurityCollections()) { WebResourceCollection webResourceCollection = new WebResourceCollection(); webResourceCollection.addHttpMethods(collectionDefinition.getMethods()); webResourceCollection.addHttpMethodOmissions(collectionDefinition.getOmittedMethods()); webResourceCollection.addUrlPatterns(collectionDefinition.getPatterns()); undertowSecurityConstraint.addWebResourceCollections(webResourceCollection); } undertowSecurityConstraints.add(undertowSecurityConstraint); } return undertowSecurityConstraints; } }
securityConstraint.addWebResourceCollection(new WebResourceCollection() .addHttpMethods(resourceCollection.getHttpMethods()) .addHttpMethodOmissions(resourceCollection.getHttpMethodOmissions()) .addUrlPatterns(resourceCollection.getUrlPatterns()));
securityConstraint.addWebResourceCollection(new WebResourceCollection() .addHttpMethods(resourceCollection.getHttpMethods()) .addHttpMethodOmissions(resourceCollection.getHttpMethodOmissions()) .addUrlPatterns(resourceCollection.getUrlPatterns()));