if (mergedMetaData.getSecurityConstraints() != null) { for (SecurityConstraintMetaData constraint : mergedMetaData.getSecurityConstraints()) { SecurityConstraint securityConstraint = new SecurityConstraint() .setTransportGuaranteeType(transportGuaranteeType(constraint.getTransportGuarantee()));
public static SecurityConstraint securityConstraint() { return new SecurityConstraint(); }
@Override protected SecurityConstraint createInstance() { return new SecurityConstraint(); }
private DeploymentInfo deploymentInfo() throws InterruptedException { final ResteasyDeployment resteasyDeployment = new ResteasyDeployment(); Utils.waitForCDIProvider(context); resteasyDeployment.setResourceFactories(resourceFactories()); final DeploymentInfo deploymentInfo = this.server.undertowDeployment(resteasyDeployment, String.valueOf(this.context.getProperties().get(HTTP_SERVER_REST_SERVLET_MAPPING_PREFIX))) .setContextPath(String.valueOf(this.context.getProperties().get(HTTP_SERVER_REST_CONTEXT_PATH))) .setClassLoader(this.getClass().getClassLoader()) .setDeploymentName("Silverware rest deployment"); if (this.sslEnabled) { deploymentInfo .addSecurityConstraint(new SecurityConstraint().addWebResourceCollection(new WebResourceCollection() .addUrlPattern("/*")) .setTransportGuaranteeType(TransportGuaranteeType.CONFIDENTIAL) .setEmptyRoleSemantic(SecurityInfo.EmptyRoleSemantic.PERMIT)) .setConfidentialPortManager(exchange -> sslPort()); } return deploymentInfo; }
private List<io.undertow.servlet.api.SecurityConstraint> getSecurityConstraints() { List<io.undertow.servlet.api.SecurityConstraint> undertowSecurityConstraints = new ArrayList<io.undertow.servlet.api.SecurityConstraint>(); for (KeycloakSpringBootProperties.SecurityConstraint constraintDefinition : keycloakProperties.getSecurityConstraints()) { io.undertow.servlet.api.SecurityConstraint undertowSecurityConstraint = new io.undertow.servlet.api.SecurityConstraint(); undertowSecurityConstraint.addRolesAllowed(constraintDefinition.getAuthRoles()); for (KeycloakSpringBootProperties.SecurityCollection collectionDefinition : constraintDefinition.getSecurityCollections()) { WebResourceCollection webResourceCollection = new WebResourceCollection(); webResourceCollection.addHttpMethods(collectionDefinition.getMethods()); webResourceCollection.addHttpMethodOmissions(collectionDefinition.getOmittedMethods()); webResourceCollection.addUrlPatterns(collectionDefinition.getPatterns()); undertowSecurityConstraint.addWebResourceCollections(webResourceCollection); } undertowSecurityConstraints.add(undertowSecurityConstraint); } return undertowSecurityConstraints; } }
final String relativeUriPath = isRelativeUri ? uriPath.substring(mainContextPath.length()) : null; for (SecurityConstraint mainSecurityConstraint : mainDeploymentInfo.getSecurityConstraints()) { final SecurityConstraint endpointSecurityConstraint = new SecurityConstraint(); for (WebResourceCollection mainResourceCollection : mainSecurityConstraint.getWebResourceCollections()) { final WebResourceCollection endpointResourceCollection = new WebResourceCollection(); webResourceCollection.addUrlPattern("/*"); final SecurityConstraint endpointSecurityConstraint = new SecurityConstraint(); endpointSecurityConstraint.addWebResourceCollection(webResourceCollection); endpointSecurityConstraint.setTransportGuaranteeType(TransportGuaranteeType.CONFIDENTIAL);
private UndertowDeploymentInfoCustomizer enableAuthUDICustomizer() { return (DeploymentInfo di) -> { if(StringUtils.isEmpty(encodedPass)) { return; } SecurityConstraint sc = new SecurityConstraint(); sc.setEmptyRoleSemantic(SecurityInfo.EmptyRoleSemantic.AUTHENTICATE); // empty web resource interpret as default sc.addWebResourceCollection(new WebResourceCollection()); di.addSecurityConstraints(sc); di.setSecurityDisabled(false); di.setAuthenticationMode(AuthenticationMode.PRO_ACTIVE); di.setLoginConfig(new LoginConfig(HttpServletRequest.BASIC_AUTH, "Haven Agent")); di.setIdentityManager(new IdentityManagerImpl(encodedPass)); }; }
final String relativeUriPath = isRelativeUri ? uriPath.substring(mainContextPath.length()) : null; for (SecurityConstraint mainSecurityConstraint : mainDeploymentInfo.getSecurityConstraints()) { final SecurityConstraint endpointSecurityConstraint = new SecurityConstraint(); for (WebResourceCollection mainResourceCollection : mainSecurityConstraint.getWebResourceCollections()) { final WebResourceCollection endpointResourceCollection = new WebResourceCollection(); webResourceCollection.addUrlPattern("/*"); final SecurityConstraint endpointSecurityConstraint = new SecurityConstraint(); endpointSecurityConstraint.addWebResourceCollection(webResourceCollection); endpointSecurityConstraint.setTransportGuaranteeType(TransportGuaranteeType.CONFIDENTIAL);
private void configureDeploymentSecurity(DeploymentInfo deploymentInfo) { deploymentInfo.setIdentityManager(identityManager); deploymentInfo.setLoginConfig(new LoginConfig(HttpServletRequest.BASIC_AUTH, "lightblueRealm")); deploymentInfo.addSecurityConstraint(new SecurityConstraint() .addWebResourceCollection(new WebResourceCollection().addUrlPattern("/*")) .addRoleAllowed(SECURITY_ROLE_AUTHENTICATED)); deploymentInfo.addSecurityRole(SECURITY_ROLE_AUTHENTICATED); }
SecurityConstraint newConstraint = new SecurityConstraint() .addRolesAllowed(method.getRolesAllowed()) .setTransportGuaranteeType(method.getTransportGuaranteeType()) || securityInfo.getEmptyRoleSemantic() != EmptyRoleSemantic.PERMIT || methods.isEmpty()) { SecurityConstraint newConstraint = new SecurityConstraint() .setEmptyRoleSemantic(securityInfo.getEmptyRoleSemantic()) .addRolesAllowed(securityInfo.getRolesAllowed())
final SecurityConstraint ui = new SecurityConstraint(); ui.setEmptyRoleSemantic( EmptyRoleSemantic.PERMIT ); final WebResourceCollection uiCollection = new WebResourceCollection(); final SecurityConstraint sc = new SecurityConstraint(); sc.setEmptyRoleSemantic( EmptyRoleSemantic.PERMIT ); final WebResourceCollection collection = new WebResourceCollection();
SecurityConstraint newConstraint = new SecurityConstraint() .addRolesAllowed(method.getRolesAllowed()) .setTransportGuaranteeType(method.getTransportGuaranteeType()) || securityInfo.getEmptyRoleSemantic() != EmptyRoleSemantic.PERMIT || methods.isEmpty()) { SecurityConstraint newConstraint = new SecurityConstraint() .setEmptyRoleSemantic(securityInfo.getEmptyRoleSemantic()) .addRolesAllowed(securityInfo.getRolesAllowed())
SecurityConstraint newConstraint = new SecurityConstraint() .addRolesAllowed(method.getRolesAllowed()) .setTransportGuaranteeType(method.getTransportGuaranteeType()) || securityInfo.getEmptyRoleSemantic() != EmptyRoleSemantic.PERMIT || methods.isEmpty()) { SecurityConstraint newConstraint = new SecurityConstraint() .setEmptyRoleSemantic(securityInfo.getEmptyRoleSemantic()) .addRolesAllowed(securityInfo.getRolesAllowed())
if (mergedMetaData.getSecurityConstraints() != null) { for (SecurityConstraintMetaData constraint : mergedMetaData.getSecurityConstraints()) { SecurityConstraint securityConstraint = new SecurityConstraint() .setTransportGuaranteeType(transportGuaranteeType(constraint.getTransportGuarantee()));
if (mergedMetaData.getSecurityConstraints() != null) { for (SecurityConstraintMetaData constraint : mergedMetaData.getSecurityConstraints()) { SecurityConstraint securityConstraint = new SecurityConstraint() .setTransportGuaranteeType(transportGuaranteeType(constraint.getTransportGuarantee()));