java source code of SpringletsSecurityInMemoryAuthenticationConfigurer

springlets-master
- springlets-framework
  - springlets-context
    - src
      - main
        java
        io
        springlets
        format
        EntityMessagePrinter.java
        EntityExpressionSupport.java
        EntityResolver.java
        EntityFormatAnnotationFormatterFactory.java
        EntityPrinter.java
        config
        EnableSpringletsEntityFormatWebSupport.java
        SpringletsEntityFormatWebConfiguration.java
        EntityParser.java
        EntityToStringConverter.java
        AbstractEntityPrinter.java
        EnumToMessageConverter.java
        EntityFormat.java
        validation
        CollectionValidator.java
      - test
        java
        io
        springlets
        format
        EntityPrinterTest.java
        EntityMessagePrinterTest.java
        EntityToStringConverterTest.java
        EntityFormatAnnotationFormatterFactoryTest.java
        EnumToMessageConverterTest.java
    - pom.xml
  - springlets-mail
    - src
      - main
        java
        io
        springlets
        mail
        MailReceiverService.java
        MailReceiverServiceImpl.java
        config
        EnableSpringletsMail.java
        SpringletsMailConfigurerDelegate.java
        SpringletsMailConfiguration.java
        SpringletsMailSettings.java
        SpringletsMailConfigurer.java
    - pom.xml
  - pom.xml
  - springlets-web
    - .factorypath
    - src
      - main
        java
        io
        springlets
        web
        mvc
        support
        SimpleMethodLinkBuilderFactory.java
        SimpleControllerMethodLinkBuilderFactory.java
        SimpleMethodLinkBuilder.java
        MethodLinkFactorySupport.java
        util
        SpringletsMvcUriComponentsBuilder.java
        MethodLinkFactoryRegistry.java
        MethodLinkBuilder.java
        MethodLinkFactory.java
        concurrency
        ConcurrencyTemplate.java
        ConcurrencyCallback.java
        ConcurrencyManager.java
        ConcurrencyException.java
        MethodLinkBuilderFactory.java
        ControllerMethodLinkBuilderFactory.java
        config
        EnableSpringletsWebMvcAdvices.java
        SpringletsWebMvcProperties.java
        SpringletsWebMvcConfiguration.java
        converters
        SpringletsImageFileConverter.java
        advice
        StringTrimmerAdvice.java
        ValidatorAdvice.java
        JsonpAdvice.java
        config
        EnableSpringletsWebJacksonSupport.java
        SpringletsWebJacksonConfiguration.java
        NotFoundException.java
        http
        converter
        json
        BindingResultSerializer.java
        FieldErrorSerializer.java
        BindingResultModule.java
      - test
        java
        io
        springlets
        web
        mvc
        support
        MethodLinkFactorySupportTest.java
        SimpleMethodLinkBuilderFactoryTest.java
        SimpleMethodLinkBuilderTest.java
        SimpleControllerMethodLinkBuilderFactoryTest.java
        autoconfigure
        SpringletsWebMvcConfigurationTest.java
    - pom.xml
  - springlets-jms
    - src
      - main
        java
        io
        springlets
        jms
        JmsMessageSenderService.java
        config
        EnableSpringletsJms.java
        SpringletsJmsConfiguration.java
    - pom.xml
- pom.xml
- springlets-docs
  - src
    - main
      - xslt
        dependencyVersions.xsl
      - asciidoc
        documentation-overview.adoc
        springlets-features.adoc
        Guardfile
        appendix-test-auto-configuration.adoc
        appendix-application-properties.adoc
        appendix-auto-configuration-classes.adoc
        springlets-framework-features.adoc
        getting-started.adoc
        appendix.adoc
        springlets-security-features.adoc
        springlets-webflow-features.adoc
        springlets-boot-features.adoc
        .gitignore
        index-docinfo.xml
        index.adoc
        springlets-data-features.adoc
    - site
      - site.xml
  - pom.xml
- mvnw
- LICENSE
- springlets-webflow
  - src
    - main
      - java
        io
        springlets
        webflow
        config
        SpringletsWebFlowConfiguration.java
        EnableSpringletsWebFlow.java
        binding
        convert
        StringToNullConverter.java
  - pom.xml
- springlets-autoconfigure
  - .factorypath
  - src
    - main
      - resources
        META-INF
        spring.factories
      - java
        io
        springlets
        boot
        autoconfigure
        security
        jpa
        SpringletsSecurityJpaAuthenticationAutoConfiguration.java
        mail
        SpringletsMailProperties.java
        SpringletsMailConfigurerImpl.java
        SpringletsMailAutoConfiguration.java
        web
        mvc
        SpringletsWebMvcAutoConfiguration.java
        SpringletsWebAuthenticationAutoConfiguration.java
        context
        web
        SpringletsEntityFormatWebAutoConfiguration.java
        webflow
        SpringletsWebFlowAutoConfiguration.java
        jms
        SpringletsJmsAutoConfiguration.java
        data
        web
        SpringletsDataArgumentResolversAutoConfiguration.java
        jpa
        SpringletsDataJpaAuthenticationAuditorAutoConfiguration.java
        http
        converter
        json
        SpringletsWebJacksonAutoConfiguration.java
    - test
      - java
        io
        springlets
        boot
        autoconfigure
        web
        mvc
        SpringletsImageFileConverterAutoConfigurationTest.java
        SpringletsJsonpAdviceAutoConfigurationTest.java
        SpringletsStringTrimmerAdviceAutoConfigurationTest.java
        data
        web
        SpringletsDataArgumentResolversAutoConfigurationTest.java
        http
        converter
        json
        SpringletsWebJacksonAutoConfigurationTest.java
  - pom.xml
- README.adoc
- .mvn
  - wrapper
    - maven-wrapper.properties
- .travis.yml
- coding-templates
  - eclipse-code-templates.xml
  - eclipse-java-imports.importorder
  - eclipse-java-format.xml
- springlets-test-autoconfigure
  - src
    - main
      - resources
        META-INF
        spring.factories
      - java
        io
        springlets
        boot
        test
        autoconfigure
        web
        servlet
        SpringletsWebMvcTest.java
        AutoConfigureSpringletsWebMvc.java
        SpringletsWebMvcExcludeFilter.java
  - pom.xml
- .gitignore
- Jenkinsfile
- mvnw.cmd
- springlets-data
  - pom.xml
  - springlets-data-commons
    - src
      - main
        java
        io
        springlets
        data
        web
        config
        SpringletsDataWebConfiguration.java
        EnableSpringletsDataWebSupport.java
        GlobalSearchHandlerMethodArgumentResolver.java
        datatables
        DatatablesColumns.java
        DatatablesPageable.java
        DatatablesColumnsHandlerMethodArgumentResolver.java
        Datatables.java
        DatatablesPageableHandlerMethodArgumentResolver.java
        ConvertedDatatablesData.java
        DatatablesSort.java
        DatatablesData.java
        DatatablesSortHandlerMethodArgumentResolver.java
        validation
        GenericValidator.java
        ValidatorService.java
        MessageI18n.java
        select2
        Select2Data.java
        Select2DataWithConversion.java
        Select2DataByMethods.java
        Select2DataSupport.java
        domain
        jaxb
        IterableAdapter.java
        PageableAdapter.java
        SpringletsDataJaxb.java
        PageAdapter.java
        GlobalSearchAdapter.java
        OrderAdapter.java
        AuthenticationAuditorAware.java
        GlobalSearch.java
      - test
        java
        io
        springlets
        data
        web
        datatables
        DatatablesPageableTest.java
        ColumnsParametersParserTest.java
        DatatablesColumnsTest.java
        SortParametersParserTest.java
        DatatablesSortHandlerMethodArgumentResolverTest.java
        DatatablesTest.java
        GlobalSearchHandlerMethodArgumentResolverTest.java
        domain
        GlobalSearchTest.java
    - pom.xml
  - springlets-data-jpa
    - src
      - main
        java
        io
        springlets
        data
        jpa
        config
        EnableSpringletsDataJpaAuthenticationAuditorSupport.java
        SpringletsDataJpaAuthenticationAuditorConfiguration.java
        domain
        QEmbeddableImage.java
        EmbeddableImageException.java
        EmbeddableImage.java
        repository
        support
        DetachableJpaRepositoryImpl.java
        QueryDslRepositorySupportExt.java
        DetachableJpaRepository.java
      - test
        java
        io
        springlets
        data
        jpa
        config
        SpringletsDataJpaAuthenticationAuditorConfigurationTest.java
        repository
        support
        QueryDslRepositorySupportExtTest.java
    - pom.xml
- springlets-boot-starters
  - springlets-boot-starter-authentication
    - pom.xml
  - springlets-boot-starter-jms
    - pom.xml
  - pom.xml
  - springlets-boot-starter-web
    - pom.xml
  - springlets-boot-starter-test
    - pom.xml
  - springlets-boot-starter-mail
    - pom.xml
  - springlets-boot-starter-webflow
    - pom.xml
  - springlets-boot-starter-data-jpa
    - pom.xml
- springlets-security
  - springlets-authentication
    - src
      - main
        java
        io
        springlets
        security
        web
        config
        SpringletsWebSecurityConfiguration.java
        EnableSpringletsWebSecurity.java
        SpringletsSecurityWebMvcConfiguration.java
        SpringletsSecurityMDCUserNameFilter.java
        SpringletsWebSecurityConfigurer.java
        SpringletsSecurityWebMvcConfigurer.java
        SpringletsSecurityWebAccessDeniedHandlerImpl.java
        SpringletsSecurityWebAuthenticationEntryPoint.java
        config
        EnableSpringletsSecurityAuthentication.java
        SpringletsSecurityInMemoryAuthenticationConfigurer.java
        SpringletsSecurityProperties.java
        SpringletsSecurityConfiguration.java
        jpa
        JpaUserDetails.java
        config
        SpringletsSecurityJpaAuthenticationConfiguration.java
        SpringletsSecurityJpaAuthenticationConfigurer.java
        service
        impl
        LoginRoleServiceImpl.java
        UserLoginServiceImpl.java
        UserLoginRoleServiceImpl.java
        api
        LoginRoleService.java
        UserLoginRoleService.java
        UserLoginService.java
        JpaUserDetailsService.java
        domain
        UserLoginRole.java
        UserLoginInfo.java
        LoginRole.java
        UserLogin.java
        repository
        UserLoginRoleRepository.java
        UserLoginRepository.java
        UserLoginRepositoryCustom.java
        LoginRoleRepository.java
        UserLoginRepositoryImpl.java
    - pom.xml
  - pom.xml

/*
 * Copyright 2012-2016 the original author or authors.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package io.springlets.security.config;

import java.util.HashMap;
import java.util.Map;
import java.util.UUID;

import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.beans.BeansException;
import org.springframework.context.ApplicationContext;
import org.springframework.context.ApplicationContextAware;
import org.springframework.context.ConfigurableApplicationContext;
import org.springframework.core.env.MapPropertySource;
import org.springframework.core.env.MutablePropertySources;
import org.springframework.security.config.annotation.SecurityConfigurer;
import org.springframework.security.config.annotation.SecurityConfigurerAdapter;
import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
import org.springframework.security.config.annotation.authentication.configurers.GlobalAuthenticationConfigurerAdapter;
import org.springframework.security.config.annotation.authentication.configurers.provisioning.InMemoryUserDetailsManagerConfigurer;

/**
 * A {@link SecurityConfigurer} that registers a InMemoryUserDetailsManager to have
 * in memory authentication for easier development.
 * 
 * @author Enrique Ruiz at http://www.disid.com[DISID Corporation S.L.]
 */
class SpringletsSecurityInMemoryAuthenticationConfigurer
    extends GlobalAuthenticationConfigurerAdapter implements ApplicationContextAware {

  private static final Logger LOG =
      LoggerFactory.getLogger(SpringletsSecurityInMemoryAuthenticationConfigurer.class);

  private ConfigurableApplicationContext applicationContext;

  private SpringletsSecurityProperties securityProperties;

  public SpringletsSecurityInMemoryAuthenticationConfigurer(SpringletsSecurityProperties properties) {
    this.securityProperties = properties;
  }

  @Override
  public void setApplicationContext(ApplicationContext ctx) throws BeansException {
    this.applicationContext = (ConfigurableApplicationContext) ctx;
  }

  /**
   * {@inheritDoc}
   * 
   * Initializes the InMemoryUserDetailsManager with the following users:
   * 
   * * user/password, role USER
   * * admin/password, role ADMIN
   * 
   * Neither the method {@link AuthenticationManagerBuilder#inMemoryAuthentication()} 
   * nor {@link AuthenticationManagerBuilder#apply(SecurityConfigurerAdapter)} 
   * are used to avoid to override the default UserDetailsService. Note that Springlets 
   * configure the JpaUserDetailsService as the default one.
   * 
   * Use the passwords as given, they aren't encrypted.
   */
  @Override
  public void init(AuthenticationManagerBuilder auth) throws Exception {

    // clear credentials after success authentication
    auth.eraseCredentials(securityProperties.getAuth().getInMemory().isEraseCredentials());

    // Configure a in memory AuthenticationProvider with two users
    InMemoryUserDetailsManagerConfigurer<AuthenticationManagerBuilder> inMemAuthProvConfigurer =
        new InMemoryUserDetailsManagerConfigurer<AuthenticationManagerBuilder>();

    String userPassw = UUID.randomUUID().toString();
    inMemAuthProvConfigurer.withUser("user").password(userPassw).roles("USER");

    String adminPassw = UUID.randomUUID().toString();
    inMemAuthProvConfigurer.withUser("admin").password(adminPassw).roles("USER",
        "ADMIN");

    LOG.info("\n\nDefault security users [USERNAME : PASSWORD : ROLES]:\n" +
             "\n  [user  : {} : ROLE_USER]\n" +
             "\n  [admin : {} : ROLE_USER, ROLE_ADMIN]\n", userPassw , adminPassw);

    // Add users credentials to Environment for dev purposes

    Map<String, Object> map = new HashMap<String, Object>();
    map.put("springlets.security.auth.in-memory.enabled", true);
    map.put("springlets.security.auth.in-memory.user.name", "user");
    map.put("springlets.security.auth.in-memory.user.password", userPassw);

    MutablePropertySources sources = this.applicationContext.getEnvironment().getPropertySources();
    sources.addLast(new MapPropertySource("springlets", map));

    inMemAuthProvConfigurer.configure(auth);
  }
}