java source code of SecurityUtils

flair-engine-master
- .github
  - ISSUE_TEMPLATE
    - feature_request.md
    - bug_report.md
- src
  - main
    - resources
      - i18n
        messages.properties
      - templates
        placeholder.txt
      - config
        application.yml
        create_test_table.sql
        bootstrap-grpc.yml
        bootstrap-http.yml
        bootstrap.yml
        ssl
        ssl-prod.properties
        ssl-dev.properties
        liquibase
        users.csv
        users_authorities.csv
        authorities.csv
        changelog
        00000000000000_initial_schema.xml
        20170825142500_added_entity_seed.xml
        20170825123850_added_entity_Connection.xml
        20170825123850_added_entity_constraints_Connection.xml
        20170825123851_added_entity_ConnectionType.xml
        20190316212100_connection_parameters.xml
        20190505212100_connection_status.xml
        master.xml
        seed
        connection.csv
        connectionType.csv
      - mails
        passwordResetEmail.html
        creationEmail.html
        activationEmail.html
      - ssl
        keystore
        flairbi-keystore.p12
        fbiengine-keystore.p12
        flairbi-truststore.p12
        fbiengine-truststore.p12
        cert
        ca
        ca.pem
        ca.key
        fbiengine-psql
        fbiengine-psql.csr
        fbiengine-psql.key
        fbiengine-psql.pem
        flairbi-psql
        flairbi-psql.pem
        flairbi-psql.csr
        flairbi-psql.key
        flairbi-couchdb
        flairbi-couchdb.pem
        flairbi-couchdb.csr
        flairbi-couchdb.key
        flairbi
        flairbi.key
        flairbi.pem
        flairbi.csr
        fbiengine
        fbiengine.csr
        fbiengine.key
        fbiengine.pem
        fbiengine-pkcs8.key
        grpc
        ca.crt
        server.key
        server.pem
        cloud
        ca.crt
        server.key
        server.pem
        server.csr
        server.crt
        certs.sh
        ca.key
        server.csr
        server.crt
        certs.sh
        ca.key
        certsgen
        client.pem
        ca.crt
        client.key
        client.crt
        server.key
        server.pem
        client.csr
        server.csr
        server.crt
        ca.key
        generate.sh
        cachecertsgen
        client.pem
        ca.crt
        client.key
        client.crt
        server.key
        server.pem
        client.csr
        server.csr
        server.crt
        ca.key
        generate.sh
        ext.conf
      - logback-spring.xml
      - banner.txt
    - docker
      - deploy.stag.yml
      - test.yml
      - app.yml
      - flair-engine-pgsql
        ca.pem
        fbiengine-psql.key
        fbiengine-psql.pem
        Dockerfile
      - build.yml
      - storage.yml
      - .maven-dockerignore
      - deploy.dev.yml
      - jenkins-test.yml
      - Dockerfile
      - deploy.yml
      - run-all-dependencies.yml
    - java
      - com
        fbi
        engine
        security
        AuthoritiesConstants.java
        jwt
        JWTConfigurer.java
        JWTFilter.java
        TokenProvider.java
        UserNotActivatedException.java
        SecurityUtils.java
        SpringSecurityAuditorAware.java
        DomainUserDetailsService.java
        Http401UnauthorizedEntryPoint.java
        ApplicationProperties.java
        crypto
        CryptoAbstractFactory.java
        SymmetricEncryptionFactory.java
        abstractfactory
        CryptoAbstractFactoryImpl.java
        KeyManager.java
        symmetric
        SymmetricCipherType.java
        Base64EncodingTextEncryptor.java
        AESGCMBytesEncryptor.java
        AESGCMSymmetricEncryptionFactory.java
        kdf
        SCryptKeyDerivationFunctionFactory.java
        KdfType.java
        KeyDerivationFunction.java
        SCryptKeyDerivationFunction.java
        converter
        StringCryptoConverter.java
        ConnectionDetailsCryptoConverter.java
        AbstractCryptoConverter.java
        exceptions
        IllegalCipherTextSizeException.java
        KeyDerivationFunctionFactory.java
        keymanager
        SimpleKeyManager.java
        web
        rest
        ConnectionTypeResource.java
        ProfileInfoResource.java
        vm
        ManagedUserVM.java
        TestConnectionVM.java
        KeyAndPasswordVM.java
        LoginVM.java
        LoggerVM.java
        ConnectionResource.java
        CryptoResource.java
        util
        PaginationUtil.java
        HeaderUtil.java
        QueryResource.java
        UserJWTController.java
        UserResource.java
        AuditResource.java
        LogsResource.java
        AccountResource.java
        errors
        ParameterizedErrorVM.java
        FieldErrorVM.java
        ExceptionTranslator.java
        ErrorConstants.java
        ErrorVM.java
        CustomParameterizedException.java
        util
        AutowireHelperConfiguration.java
        AutowireHelper.java
        query
        dto
        KafkaKsqlDescribeResponse.java
        KafkaShowTablesResponse.java
        KafkaQueryResponse.java
        executor
        SnowflakeSqlQueryExecutor.java
        CockroachdbQueryExecutor.java
        RedshiftQueryExecutor.java
        OracleSqlQueryExecutor.java
        MongoDBQueryExecutor.java
        MySqlQueryExecutor.java
        KafkaSqlQueryExecutor.java
        SparkSqlQueryExecutor.java
        SqlQueryExecutor.java
        PostgresSqlQueryExecutor.java
        LoginResponseSpark.java
        AthenaQueryExecutor.java
        abstractfactory
        QueryAbstractFactory.java
        FlyweightQueryAbstractFactory.java
        QueryServiceImpl.java
        convert
        impl
        ResultSetConverter.java
        factory
        impl
        SnowflakeFlairFactory.java
        KafkaFlairFactory.java
        AthenaFlairFactory.java
        SparkFlairFactory.java
        MongoDBFlairFactory.java
        OracleFlairFactory.java
        MySqlFlairFactory.java
        RedshiftFlairFactory.java
        CockroachdbFlairFactory.java
        PostgresFlairFactory.java
        FlairFactory.java
        FlairFactoryConst.java
        QueryService.java
        QueryExecutor.java
        config
        security
        JwtSecurityConfiguration.java
        PkiSecurityConfiguration.java
        StatelessBasicAuthenticationSecurityConfiguration.java
        GlobalSecurityConfiguration.java
        LoggingAspectConfiguration.java
        DatabaseConfiguration.java
        jackson
        ResultSetSerializer.java
        JacksonUtil.java
        audit
        AuditEventConverter.java
        MetricsConfiguration.java
        JacksonConfiguration.java
        DefaultProfileUtil.java
        GrpcProperties.java
        Constants.java
        CacheConfiguration.java
        GrpcConfig.java
        LocaleConfiguration.java
        ThymeleafConfiguration.java
        WebConfigurer.java
        types
        JsonTypeDescriptor.java
        JsonBinaryType.java
        JsonStringType.java
        JsonStringSqlTypeDescriptor.java
        JsonBinarySqlTypeDescriptor.java
        AbstractJsonSqlTypeDescriptor.java
        LoggingConfiguration.java
        FlairCachingConfig.java
        ClientGrpcConfig.java
        AsyncConfiguration.java
        DateTimeFormatConfiguration.java
        CloudDatabaseConfiguration.java
        service
        impl
        ConnectionTypeServiceImpl.java
        ConnectionServiceImpl.java
        ListTablesService.java
        UserService.java
        ConnectionHelperService.java
        dto
        RunQueryResultDTO.java
        CompileQueryResultDTO.java
        ConnectionTypeDTO.java
        ConnectionParameters.java
        UserDTO.java
        ConnectionDTO.java
        UpdateConnectionDTO.java
        AbstractHealthGrpcService.java
        MailService.java
        TestConnectionService.java
        QueryGrpcService.java
        AbstractConnectionGrpcService.java
        ConnectionService.java
        grpc
        ManagedChannelFactory.java
        constant
        GrpcErrors.java
        GrpcConstants.java
        util
        RandomUtil.java
        QueryGrpcUtils.java
        AbstractQueryGrpcService.java
        ConnectionParameterService.java
        HealthGrpcServiceImpl.java
        AuditEventService.java
        cache
        CacheMetadata.java
        CacheParams.java
        FlairCachingService.java
        ConnectionTypeService.java
        mapper
        ConnectionDTOTest.java
        ConnectionTypeMapper.java
        ConnectionDetailsMapper.java
        ConnectionMapper.java
        EntityMapper.java
        QueryRunnerService.java
        ConnectionGrpcService.java
        ApplicationWebXml.java
        aop
        logging
        LoggingAspect.java
        domain
        PersistentAuditEvent.java
        AbstractAuditingEntity.java
        ConnectionParameter.java
        query
        GenericQuery.java
        Query.java
        KafkaQuery.java
        ConnectionType.java
        Connection.java
        Authority.java
        User.java
        schema
        ConnectionPropertiesSchema.java
        ConnectionProperty.java
        ConnectionStatus.java
        BaseEntity.java
        details
        PostgresConnectionDetails.java
        MySqlConnectionDetails.java
        SparkConnectionDetails.java
        AthenaConnectionDetails.java
        RedshiftConnectionDetails.java
        OracleConnectionDetails.java
        KafkaConnectionDetails.java
        MongoDBConnectionDetails.java
        CockroachdbConnectionDetails.java
        SnowflakeConnectionDetails.java
        ConnectionDetails.java
        ssl
        FBIEnginePgSQLSSLSocketFactory.java
        repository
        AuthorityRepository.java
        PersistenceAuditEventRepository.java
        ConnectionTypeRepository.java
        ConnectionRepository.java
        ConnectionParameterRepository.java
        UserRepository.java
        FbiengineApp.java
    - webapp
      - placeholder.txt
  - test
    - resources
      - logback.xml
      - i18n
        messages_en.properties
      - config
        application.yml
        application-dev.yml
      - mails
        testEmail.html
    - gatling
      - user-files
        simulations
        ConnectionTypeGatlingTest.scala
        UniaryQueryTest.scala
        QueryGatlingTest.scala
        SourcesGatlingTest.scala
        ConnectionGatlingTest.scala
      - conf
        logback.xml
        gatling.conf
    - java
      - com
        fbi
        engine
        security
        jwt
        JWTFilterTest.java
        TokenProviderTest.java
        SecurityUtilsUnitTest.java
        crypto
        StringCryptoConverterTest.java
        ConnectionDetailsCryptoConverterTest.java
        web
        rest
        CockroachdbQueryTest.java
        ConnectionResourceIntTest.java
        MongoDBQueryTest.java
        TestUtil.java
        AthenaQueryTest.java
        MySqlQueryTest.java
        util
        PaginationUtilUnitTest.java
        PostgresQueryTest.java
        RedshiftQueryTest.java
        OracleQueryTest.java
        errors
        ExceptionTranslatorTestController.java
        query
        executor
        KafkaSqlQueryExecutorTest.java
        QueryServiceImplTest.java
        convert
        impl
        MockResultSet.java
        ResultSetConverterTest.java
        config
        jackson
        ResultSetSerializerTest.java
        WebConfigurerTestController.java
        WebConfigurerTest.java
        service
        QueryRunnerServiceTest.java
        MockQueryGrpcService.java
        MockConnectionGrpcService.java
        QueryGrpcServiceTest.java
        MockHealthGrpcService.java
        ListTablesServiceTest.java
        cache
        FlairCachingServiceIntTest.java
        mapper
        ConnectionDetailsMapperTest.java
        TestConnectionServiceTest.java
        ConnectionParameterServiceTest.java
        ConnectionGrpcServiceTest.java
        domain
        query
        KafkaQueryTest.java
        details
        RedshiftConnectionDetailsTest.java
        AthenaConnectionDetailsTest.java
        KafkaConnectionDetailsTest.java
        PostgresConnectionDetailsTest.java
        CockroachdbConnectionDetailsTest.java
        AbstractGrpcTest.java
- libs
  - local
    - AthenaJDBC42
      - 2.0.9
        AthenaJDBC42-2.0.9.pom
      - maven-metadata-local.xml
- pom.xml.releaseBackup
- pom.xml
- mvnw
- LICENSE
- azure-pipelines.yml
- release.properties
- .mvn
  - wrapper
    - maven-wrapper.properties
- README.md
- scripts
  - cert-gen.sh
  - .gitignore
- .gitignore
- mvnw.cmd

package com.fbi.engine.security;

import org.springframework.security.core.Authentication;
import org.springframework.security.core.context.SecurityContext;
import org.springframework.security.core.context.SecurityContextHolder;
import org.springframework.security.core.userdetails.UserDetails;

/**
 * Utility class for Spring Security.
 */
public final class SecurityUtils {

    /**
     * Get the login of the current user.
     *
     * @return the login of the current user
     */
    public static String getCurrentUserLogin() {
        SecurityContext securityContext = SecurityContextHolder.getContext();
        Authentication authentication = securityContext.getAuthentication();
        String userName = null;
        if (authentication != null) {
            if (authentication.getPrincipal() instanceof UserDetails) {
                UserDetails springSecurityUser = (UserDetails) authentication.getPrincipal();
                userName = springSecurityUser.getUsername();
            } else if (authentication.getPrincipal() instanceof String) {
                userName = (String) authentication.getPrincipal();
            }
        }
        return userName;
    }

    /**
     * Get the JWT of the current user.
     *
     * @return the JWT of the current user
     */
    public static String getCurrentUserJWT() {
        SecurityContext securityContext = SecurityContextHolder.getContext();
        Authentication authentication = securityContext.getAuthentication();
        if (authentication != null && authentication.getCredentials() instanceof String) {
            return (String) authentication.getCredentials();
        }
        return null;
    }

    /**
     * Check if a user is authenticated.
     *
     * @return true if the user is authenticated, false otherwise
     */
    public static boolean isAuthenticated() {
        SecurityContext securityContext = SecurityContextHolder.getContext();
        Authentication authentication = securityContext.getAuthentication();
        if (authentication != null) {
            return authentication.getAuthorities().stream()
                .noneMatch(grantedAuthority -> grantedAuthority.getAuthority().equals(AuthoritiesConstants.ANONYMOUS));
        }
        return false;
    }

    /**
     * If the current user has a specific authority (security role).
     * <p>
     * The name of this method comes from the isUserInRole() method in the Servlet API
     *
     * @param authority the authority to check
     * @return true if the current user has the authority, false otherwise
     */
    public static boolean isCurrentUserInRole(String authority) {
        SecurityContext securityContext = SecurityContextHolder.getContext();
        Authentication authentication = securityContext.getAuthentication();
        if (authentication != null) {
            return authentication.getAuthorities().stream()
                .anyMatch(grantedAuthority -> grantedAuthority.getAuthority().equals(authority));
        }
        return false;
    }
}