Java Code Examples for org.eclipse.jetty.security.HashLoginService#setUserStore()
The following examples show how to use
org.eclipse.jetty.security.HashLoginService#setUserStore() .
You can vote up the ones you like or vote down the ones you don't like,
and go to the original project or source file by following the links above each example. You may check out the related API usage on the sidebar.
Example 1
| Source File: HttpProtocolServer.java From gitflow-incremental-builder with MIT License | 6 votes |
|
private void addBasicAuth(Server server) {
ConstraintSecurityHandler security = new ConstraintSecurityHandler();
security.setAuthenticator(new BasicAuthenticator());
Constraint constraint = new Constraint();
constraint.setAuthenticate(true);
constraint.setRoles(ROLES);
ConstraintMapping mapping = new ConstraintMapping();
mapping.setPathSpec("/*");
mapping.setConstraint(constraint);
security.setConstraintMappings(Collections.singletonList(mapping));
HashLoginService loginService = new HashLoginService();
loginService.setUserStore(buildUserStore());
server.addBean(loginService);
security.setLoginService(loginService);
security.setHandler(server.getHandler());
server.setHandler(security);
}
Example 2
| Source File: ManagerApiMicroService.java From apiman with Apache License 2.0 | 6 votes |
|
/**
* Creates a basic auth security handler.
* @throws Exception
*/
protected SecurityHandler createSecurityHandler() throws Exception {
HashLoginService l = new HashLoginService();
// UserStore is now separate store entity and must be added to HashLoginService
UserStore userStore = new UserStore();
l.setUserStore(userStore);
for (User user : Users.getUsers()) {
userStore.addUser(user.getId(), Credential.getCredential(user.getPassword()), user.getRolesAsArray());
}
l.setName("apimanrealm");
ConstraintSecurityHandler csh = new ConstraintSecurityHandler();
csh.setAuthenticator(new BasicAuthenticator());
csh.setRealmName("apimanrealm");
csh.setLoginService(l);
return csh;
}
Example 3
| Source File: ManagerApiTestServer.java From apiman with Apache License 2.0 | 6 votes |
|
/**
* Creates a basic auth security handler.
*/
private SecurityHandler createSecurityHandler() {
HashLoginService l = new HashLoginService();
UserStore userStore = new UserStore();
l.setUserStore(userStore);
for (String [] userInfo : TestUsers.USERS) {
String user = userInfo[0];
String pwd = userInfo[1];
String[] roles = new String[] { "apiuser" };
if (user.startsWith("admin")) {
roles = new String[] { "apiuser", "apiadmin"};
}
userStore.addUser(user, Credential.getCredential(pwd), roles);
}
l.setName("apimanrealm");
ConstraintSecurityHandler csh = new ConstraintSecurityHandler();
csh.setAuthenticator(new BasicAuthenticator());
csh.setRealmName("apimanrealm");
csh.setLoginService(l);
return csh;
}
Example 4
| Source File: BasicAuthTest.java From apiman with Apache License 2.0 | 6 votes |
|
/**
* Creates a basic auth security handler.
*/
private static SecurityHandler createSecurityHandler() {
UserStore userStore = new UserStore();
String user = "user";
String pwd = "user123!";
String[] roles = new String[] { "user" };
userStore.addUser(user, Credential.getCredential(pwd), roles);
HashLoginService l = new HashLoginService();
l.setName("apimanrealm");
l.setUserStore(userStore);
ConstraintSecurityHandler csh = new ConstraintSecurityHandler();
csh.setAuthenticator(new BasicAuthenticator());
csh.setRealmName("apimanrealm");
csh.setLoginService(l);
return csh;
}
Example 5
| Source File: GatewayMicroService.java From apiman with Apache License 2.0 | 6 votes |
|
/**
* Creates a basic auth security handler.
*/
protected SecurityHandler createSecurityHandler() throws Exception {
HashLoginService l = new HashLoginService();
UserStore userStore = new UserStore();
l.setUserStore(userStore);
for (User user : Users.getUsers()) {
userStore.addUser(user.getId(), Credential.getCredential(user.getPassword()), user.getRolesAsArray());
}
l.setName("apimanrealm");
ConstraintSecurityHandler csh = new ConstraintSecurityHandler();
csh.setAuthenticator(new BasicAuthenticator());
csh.setRealmName("apimanrealm");
csh.setLoginService(l);
return csh;
}
Example 6
| Source File: JenkinsRule.java From jenkins-test-harness with MIT License | 5 votes |
|
/**
* Creates a {@link HashLoginService} with three users: alice, bob and charlie
*
* The password is same as the username
* @return a new login service
* @since 2.50
*/
public static LoginService _configureUserRealm() {
HashLoginService realm = new HashLoginService();
realm.setName("default"); // this is the magic realm name to make it effective on everywhere
UserStore userStore = new UserStore();
realm.setUserStore( userStore );
userStore.addUser("alice", new Password("alice"), new String[]{"user","female"});
userStore.addUser("bob", new Password("bob"), new String[]{"user","male"});
userStore.addUser("charlie", new Password("charlie"), new String[]{"user","male"});
return realm;
}
Example 7
| Source File: HudsonTestCase.java From jenkins-test-harness with MIT License | 5 votes |
|
/**
* Configures a security realm for a test.
*/
protected LoginService configureUserRealm() {
HashLoginService realm = new HashLoginService();
realm.setName("default"); // this is the magic realm name to make it effective on everywhere
UserStore userStore = new UserStore();
realm.setUserStore( userStore );
userStore.addUser("alice", new Password("alice"), new String[]{"user","female"});
userStore.addUser("bob", new Password("bob"), new String[]{"user","male"});
userStore.addUser("charlie", new Password("charlie"), new String[]{"user","male"});
return realm;
}
Example 8
| Source File: BaleenWebApi.java From baleen with Apache License 2.0 | 5 votes |
|
private void configureServer(Server server, WebAuthConfig authConfig, Handler servletHandler)
throws BaleenException {
Handler serverHandler;
if (authConfig == null || authConfig.getType() == AuthType.NONE) {
LOGGER.warn("No security applied to API");
// No security
serverHandler = servletHandler;
} else if (authConfig.getType() == AuthType.BASIC) {
// Basic authentication
LOGGER.info("Using Basic HTTP authentication for API");
HashLoginService loginService = new HashLoginService(authConfig.getName());
UserStore userStore = new UserStore();
for (WebUser user : authConfig.getUsers()) {
Credential credential = Credential.getCredential(user.getPassword());
userStore.addUser(user.getUsername(), credential, user.getRolesAsArray());
}
loginService.setUserStore(userStore);
server.addBean(loginService);
ConstraintSecurityHandler securityHandler = new ConstraintSecurityHandler();
securityHandler.setHandler(servletHandler);
securityHandler.setConstraintMappings(constraintMappings);
securityHandler.setAuthenticator(new BasicAuthenticator());
securityHandler.setLoginService(loginService);
serverHandler = securityHandler;
} else {
throw new InvalidParameterException("Configuration of authentication failed");
}
server.setHandler(serverHandler);
}
Example 9
| Source File: HttpReceiverServerPush.java From datacollector with Apache License 2.0 | 5 votes |
|
public static SecurityHandler getBasicAuthHandler(HttpSourceConfigs httpCourceConf) {
List<CredentialValueUserPassBean> basicAuthUsers = httpCourceConf.getBasicAuthUsers();
HashLoginService loginService = new HashLoginService();
UserStore userStore = new UserStore();
boolean empty = true;
for (CredentialValueUserPassBean userPassBean : basicAuthUsers) {
String username = userPassBean.getUsername();
String password = userPassBean.get();
if(StringUtils.isNotEmpty(username) && StringUtils.isNotEmpty(password)) {
userStore.addUser(username, new Password(password), new String[]{"sdc"});
empty = false;
}
}
if(empty) {
return null;
}
loginService.setUserStore(userStore);
Constraint constraint = new Constraint(Constraint.__BASIC_AUTH,"sdc");
constraint.setAuthenticate(true);
ConstraintMapping mapping = new ConstraintMapping();
mapping.setConstraint(constraint);
mapping.setPathSpec("/*");
ConstraintSecurityHandler handler = new ConstraintSecurityHandler();
handler.setAuthenticator(new BasicAuthenticator());
handler.addConstraintMapping(mapping);
handler.setLoginService(loginService);
return handler;
}
Example 10
| Source File: DigestAuthSupplierJettyTest.java From cxf with Apache License 2.0 | 5 votes |
|
@Override
protected void run() {
server = new Server(PORT);
HashLoginService loginService = new HashLoginService();
loginService.setName("My Realm");
UserStore userStore = new UserStore();
String[] roles = new String[] {"user"};
userStore.addUser(USER, Credential.getCredential(PWD), roles);
loginService.setUserStore(userStore);
Constraint constraint = new Constraint();
constraint.setName(Constraint.__DIGEST_AUTH);
constraint.setRoles(roles);
constraint.setAuthenticate(true);
ConstraintMapping cm = new ConstraintMapping();
cm.setConstraint(constraint);
cm.setPathSpec("/*");
ConstraintSecurityHandler csh = new ConstraintSecurityHandler();
csh.setAuthenticator(new DigestAuthenticator());
csh.addConstraintMapping(cm);
csh.setLoginService(loginService);
ServletContextHandler context = new ServletContextHandler(ServletContextHandler.SESSIONS);
context.setSecurityHandler(csh);
context.setContextPath("/");
server.setHandler(context);
context.addServlet(new ServletHolder(new TestServlet()), "/*");
try {
server.start();
} catch (Exception e) {
throw new RuntimeException(e);
}
}
Example 11
| Source File: JettyHttpServer.java From everrest with Eclipse Public License 2.0 | 4 votes |
|
public void start() throws Exception {
RequestLogHandler handler = new RequestLogHandler();
if (context == null) {
context = new ServletContextHandler(handler, "/", ServletContextHandler.SESSIONS);
}
context.setEventListeners(new EventListener[]{new EverrestInitializedListener()});
ServletHolder servletHolder = new ServletHolder(new EverrestServlet());
context.addServlet(servletHolder, UNSECURE_PATH_SPEC);
context.addServlet(servletHolder, SECURE_PATH_SPEC);
//set up security
Constraint constraint = new Constraint();
constraint.setName(Constraint.__BASIC_AUTH);
constraint.setRoles(new String[]{"cloud-admin", "users", "user", "temp_user"});
constraint.setAuthenticate(true);
ConstraintMapping constraintMapping = new ConstraintMapping();
constraintMapping.setConstraint(constraint);
constraintMapping.setPathSpec(SECURE_PATH_SPEC);
ConstraintSecurityHandler securityHandler = new ConstraintSecurityHandler();
securityHandler.addConstraintMapping(constraintMapping);
HashLoginService loginService = new HashLoginService();
UserStore userStore = new UserStore();
userStore.addUser(ADMIN_USER_NAME, new Password(ADMIN_USER_PASSWORD),
new String[]{"cloud-admin",
"users",
"user",
"temp_user",
"developer",
"admin",
"workspace/developer",
"workspace/admin",
"account/owner",
"account/member",
"system/admin",
"system/manager"
});
userStore.addUser(MANAGER_USER_NAME, new Password(MANAGER_USER_PASSWORD), new String[]{"cloud-admin",
"user",
"temp_user",
"users"});
loginService.setUserStore(userStore);
securityHandler.setLoginService(loginService);
securityHandler.setAuthenticator(new BasicAuthenticator());
context.setSecurityHandler(securityHandler);
server.setHandler(handler);
server.start();
ResourceBinder binder =
(ResourceBinder)context.getServletContext().getAttribute(ResourceBinder.class.getName());
DependencySupplier dependencies =
(DependencySupplier)context.getServletContext().getAttribute(DependencySupplier.class.getName());
GroovyResourcePublisher groovyPublisher = new GroovyResourcePublisher(binder, dependencies);
context.getServletContext().setAttribute(GroovyResourcePublisher.class.getName(), groovyPublisher);
}
