mapping.setConstraint(constraint); securityHandler.addConstraintMapping(mapping);
csh.setAuthenticator(new BasicAuthenticator()); csh.setRealmName("myrealm"); csh.addConstraintMapping(healthcheckConstraintMapping); csh.addConstraintMapping(cm); csh.setLoginService(l);
mapping.setConstraint(constraint); securityHandler.addConstraintMapping(mapping);
securityHandler.addConstraintMapping(constraintMapping); HashLoginService loginService = new HashLoginService(); loginService.putUser("username", new Password("password"), new String[] {"user"});
@Override public void customize(Server server) { LOG.debug("Customizing server to allow requests for {}", USER_AUTHORIZED); HashLoginService login = new HashLoginService(); login.putUser(USER_AUTHORIZED, Credential.getCredential(USER_PW), new String[] {"users"}); login.setName("users"); Constraint constraint = new Constraint(); constraint.setName(Constraint.__BASIC_AUTH); constraint.setRoles(new String[]{"users"}); constraint.setAuthenticate(true); ConstraintMapping cm = new ConstraintMapping(); cm.setConstraint(constraint); cm.setPathSpec("/*"); ConstraintSecurityHandler security = new ConstraintSecurityHandler(); security.setAuthenticator(new BasicAuthenticator()); security.setRealmName("users"); security.addConstraintMapping(cm); security.setLoginService(login); // chain the PQS handler to security security.setHandler(server.getHandlers()[0]); server.setHandler(security); } }
@Override protected SecurityHandler buildSecurityHandler() { if( constraintServices != null ) { ConstraintSecurityHandler securityHandler = new ConstraintSecurityHandler(); for( ConstraintService eachConstraintService : constraintServices ) { ConstraintMapping csMapping = eachConstraintService.buildConstraintMapping(); if( csMapping != null ) { securityHandler.addConstraintMapping( csMapping ); } } if( !securityHandler.getConstraintMappings().isEmpty() ) { return securityHandler; } } return super.buildSecurityHandler(); }
/** * Construct new security handler for basic authentication. */ public SecurityHandler getObject() throws Exception { ConstraintSecurityHandler securityHandler = new ConstraintSecurityHandler(); securityHandler.setAuthenticator(authenticator); securityHandler.setRealmName(realm); for (Entry<String, Constraint> constraint : constraints.entrySet()) { ConstraintMapping constraintMapping = new ConstraintMapping(); constraintMapping.setConstraint(constraint.getValue()); constraintMapping.setPathSpec(constraint.getKey()); securityHandler.addConstraintMapping(constraintMapping); } securityHandler.setLoginService(loginService); return securityHandler; }
public static void addPathConstraint(ConstraintSecurityHandler securityHandler, String pathSpec, String role) { Objects.requireNonNull(securityHandler); Objects.requireNonNull(pathSpec); ConstraintMapping mapping = new ConstraintMapping(); Constraint constraint = new Constraint(); String[] roles = new String[]{role}; constraint.setRoles(roles); constraint.setName(securityHandler.getAuthenticator().getAuthMethod()); constraint.setAuthenticate(true); mapping.setConstraint(constraint); mapping.setPathSpec(pathSpec); securityHandler.addConstraintMapping(mapping); }
public static void addPathConstraint(ConstraintSecurityHandler securityHandler, String pathSpec, String role) { Objects.requireNonNull(securityHandler); Objects.requireNonNull(pathSpec); ConstraintMapping mapping = new ConstraintMapping(); Constraint constraint = new Constraint(); String[] roles = new String[]{role}; constraint.setRoles(roles); constraint.setName(securityHandler.getAuthenticator().getAuthMethod()); constraint.setAuthenticate(true); mapping.setConstraint(constraint); mapping.setPathSpec(pathSpec); securityHandler.addConstraintMapping(mapping); }
@Produces @Named("securityHandler") public static ConstraintSecurityHandler createSecurityHandler() { Constraint constraint = new Constraint("BASIC", "customer"); constraint.setAuthenticate(true); ConstraintMapping mapping = new ConstraintMapping(); mapping.setConstraint(constraint); mapping.setPathSpec("/*"); ConstraintSecurityHandler handler = new ConstraintSecurityHandler(); handler.addConstraintMapping(mapping); handler.setAuthenticator(new BasicAuthenticator()); handler.setLoginService(new HashLoginService("RiderAutoParts", "src/main/resources/users.properties")); return handler; }
protected void configureTraceMethod(ConstraintSecurityHandler securityHandler, boolean enableTrace) { Constraint constraint = new Constraint(); constraint.setName("trace-security"); //If enableTrace is true, then we want to set authenticate to false to allow it constraint.setAuthenticate(!enableTrace); ConstraintMapping mapping = new ConstraintMapping(); mapping.setConstraint(constraint); mapping.setMethod("TRACE"); mapping.setPathSpec("/"); securityHandler.addConstraintMapping(mapping); }
@Override protected HandlerWrapper createHandler() { ConstraintSecurityHandler handler = new ConstraintSecurityHandler(); handler.setLoginService(loginServiceConfig.getLoginService()); handler.setRealmName(realmName); handler.setAuthenticator(authenticatorConfig.getAuthenticator()); for (ConstraintMappingConfig constraintMappingConfig : constraintMappings) { handler.addConstraintMapping(constraintMappingConfig.getConstraintMapping()); } return handler; }
static void setUnsecurePathConstraints( ServletContextHandler context, List<String> unsecurePaths ) { //we need to set unsecure path only if there is an existing security handler. Otherwise all // paths are by default unsecure if (context.getSecurityHandler() != null && !unsecurePaths.isEmpty()) { for (String path : unsecurePaths) { Constraint constraint = new Constraint(); constraint.setAuthenticate(false); ConstraintMapping constraintMapping = new ConstraintMapping(); constraintMapping.setConstraint(constraint); constraintMapping.setMethod("*"); constraintMapping.setPathSpec(path); ((ConstraintSecurityHandler) context.getSecurityHandler()) .addConstraintMapping(constraintMapping); } } }
protected void configureTraceMethod(ConstraintSecurityHandler securityHandler, boolean enableTrace) { Constraint constraint = new Constraint(); constraint.setName("trace-security"); //If enableTrace is true, then we want to set authenticate to false to allow it constraint.setAuthenticate(!enableTrace); ConstraintMapping mapping = new ConstraintMapping(); mapping.setConstraint(constraint); mapping.setMethod("TRACE"); mapping.setPathSpec("/"); securityHandler.addConstraintMapping(mapping); }
protected void configureTraceMethod(ConstraintSecurityHandler securityHandler, boolean enableTrace) { Constraint constraint = new Constraint(); constraint.setName("trace-security"); //If enableTrace is true, then we want to set authenticate to false to allow it constraint.setAuthenticate(!enableTrace); ConstraintMapping mapping = new ConstraintMapping(); mapping.setConstraint(constraint); mapping.setMethod("TRACE"); mapping.setPathSpec("/"); securityHandler.addConstraintMapping(mapping); }
private void disableTrace(String where) { Constraint constraint = new Constraint(); constraint.setName("Disable TRACE"); constraint.setAuthenticate(true); // require auth, but no roles defined, so it'll never match ConstraintMapping mapping = new ConstraintMapping(); mapping.setConstraint(constraint); mapping.setMethod("TRACE"); mapping.setPathSpec(where); ConstraintSecurityHandler security = (ConstraintSecurityHandler) handler.getSecurityHandler(); security.addConstraintMapping(mapping); }
public static ConstraintSecurityHandler createSecurityHandler() { Constraint constraint = new Constraint("BASIC", "customer"); constraint.setAuthenticate(true); ConstraintMapping mapping = new ConstraintMapping(); mapping.setConstraint(constraint); mapping.setPathSpec("/*"); ConstraintSecurityHandler handler = new ConstraintSecurityHandler(); handler.addConstraintMapping(mapping); handler.setAuthenticator(new BasicAuthenticator()); handler.setLoginService(new HashLoginService("RiderAutoParts", "etc/rest-users.properties")); return handler; }
public static ConstraintSecurityHandler createSecurityHandler() { Constraint constraint = new Constraint("BASIC", "customer"); constraint.setAuthenticate(true); ConstraintMapping mapping = new ConstraintMapping(); mapping.setConstraint(constraint); mapping.setPathSpec("/*"); ConstraintSecurityHandler handler = new ConstraintSecurityHandler(); handler.addConstraintMapping(mapping); handler.setAuthenticator(new BasicAuthenticator()); handler.setLoginService(new HashLoginService("RiderAutoParts", "src/main/resources/users.properties")); return handler; }
static ConstraintSecurityHandler createSecurityHandler(String realm, List<String> roles) { final ConstraintSecurityHandler securityHandler = new ConstraintSecurityHandler(); Constraint constraint = new Constraint(); constraint.setAuthenticate(true); constraint.setRoles(roles.toArray(new String[0])); ConstraintMapping constraintMapping = new ConstraintMapping(); constraintMapping.setConstraint(constraint); constraintMapping.setMethod("*"); constraintMapping.setPathSpec("/*"); securityHandler.addConstraintMapping(constraintMapping); securityHandler.setAuthenticator(new BasicAuthenticator()); securityHandler.setLoginService(new JAASLoginService(realm)); securityHandler.setIdentityService(new DefaultIdentityService()); securityHandler.setRealmName(realm); return securityHandler; }
static ConstraintSecurityHandler createSecurityHandler(String realm, List<String> roles) { final ConstraintSecurityHandler securityHandler = new ConstraintSecurityHandler(); Constraint constraint = new Constraint(); constraint.setAuthenticate(true); constraint.setRoles(roles.toArray(new String[0])); ConstraintMapping constraintMapping = new ConstraintMapping(); constraintMapping.setConstraint(constraint); constraintMapping.setMethod("*"); constraintMapping.setPathSpec("/*"); securityHandler.addConstraintMapping(constraintMapping); securityHandler.setAuthenticator(new BasicAuthenticator()); securityHandler.setLoginService(new JAASLoginService(realm)); securityHandler.setIdentityService(new DefaultIdentityService()); securityHandler.setRealmName(realm); return securityHandler; }