/** * Gets pac 4 j profile manager. * * @param request the request * @param response the response * @param sessionStore the session store * @return the pac 4 j profile manager */ public static ProfileManager getPac4jProfileManager(final HttpServletRequest request, final HttpServletResponse response, final SessionStore sessionStore) { val context = getPac4jJ2EContext(request, response, sessionStore); return getPac4jProfileManager(context); }
/** * Gets authenticated profile. * * @param request the request * @param response the response * @return the authenticated profile */ protected CommonProfile getAuthenticatedProfile(final HttpServletRequest request, final HttpServletResponse response) { val manager = Pac4jUtils.getPac4jProfileManager(request, response); val profile = (Optional<CommonProfile>) manager.get(true); if (profile.isEmpty()) { throw new IllegalArgumentException("Unable to determine the user profile from the context"); } return profile.get(); }
/** * Gets pac 4 j profile manager. * * @param request the request * @param response the response * @return the pac 4 j profile manager */ public static ProfileManager getPac4jProfileManager(final HttpServletRequest request, final HttpServletResponse response) { val context = getPac4jJ2EContext(request, response, new J2ESessionStore()); return getPac4jProfileManager(context); }
/** * Return the username of the authenticated user (based on pac4j security). * * @return the authenticated username. */ public static String getPac4jAuthenticatedUsername() { val request = HttpRequestUtils.getHttpServletRequestFromRequestAttributes(); val response = HttpRequestUtils.getHttpServletResponseFromRequestAttributes(); if (request != null && response != null) { val manager = getPac4jProfileManager(request, response); val profile = (Optional<CommonProfile>) manager.get(true); if (profile != null && profile.isPresent()) { val id = profile.get().getId(); if (id != null) { return id; } } } return PrincipalResolver.UNKNOWN_USER; }
/** * Gets authenticated profile. * * @param request the request * @param response the response * @param requiredPermission the required permission * @return the authenticated profile */ protected CommonProfile getAuthenticatedProfile(final HttpServletRequest request, final HttpServletResponse response, final String requiredPermission) { val manager = Pac4jUtils.getPac4jProfileManager(request, response); val profile = (Optional<CommonProfile>) manager.get(true); if (profile == null || profile.isEmpty()) { throw new AuthenticationException("Unable to locate authenticated profile"); } val p = profile.get(); if (!p.getPermissions().contains(requiredPermission)) { throw new AuthenticationException("Authenticated profile does not carry the UMA protection scope"); } return p; }
@Override public boolean validate(final J2EContext context) { val request = context.getRequest(); val response = context.getResponse(); val grantType = request.getParameter(OAuth20Constants.GRANT_TYPE); if (!isGrantTypeSupported(grantType, OAuth20GrantTypes.values())) { LOGGER.warn("Grant type is not supported: [{}]", grantType); return false; } val manager = Pac4jUtils.getPac4jProfileManager(request, response); val profile = (Optional<CommonProfile>) manager.get(true); if (profile.isEmpty()) { LOGGER.warn("Could not locate authenticated profile for this request. Request is not authenticated"); return false; } val uProfile = profile.get(); return validateInternal(context, grantType, manager, uProfile); }
/** * Handle request. * * @param request the request * @param response the response * @return the model and view */ @GetMapping(path = OAuth20Constants.BASE_OAUTH20_URL + '/' + OAuth20Constants.CALLBACK_AUTHORIZE_URL) public ModelAndView handleRequest(final HttpServletRequest request, final HttpServletResponse response) { val context = new J2EContext(request, response, this.oauthConfig.getSessionStore()); val callback = new DefaultCallbackLogic(); callback.perform(context, oauthConfig, J2ENopHttpActionAdapter.INSTANCE, null, Boolean.TRUE, Boolean.FALSE, Boolean.FALSE, Authenticators.CAS_OAUTH_CLIENT); val url = StringUtils.remove(response.getHeader("Location"), "redirect:"); val manager = Pac4jUtils.getPac4jProfileManager(request, response); return oAuth20CallbackAuthorizeViewResolver.resolve(context, manager, url); } }
public ModelAndView handleRequest(final HttpServletRequest request, final HttpServletResponse response) throws Exception { val context = Pac4jUtils.getPac4jJ2EContext(request, response); val manager = Pac4jUtils.getPac4jProfileManager(request, response);
val manager = Pac4jUtils.getPac4jProfileManager(request, response); val profile = (Optional<CommonProfile>) manager.get(true); if (profile.isEmpty()) {