SecurityConfiguration.java example

Explorer

flipper-reverse-image-search-master
- src
  - main
    - java
      - gal
        udc
        fic
        muei
        tfm
        dap
        flipper
        Application.java
        ApplicationWebXml.java
        aop
        logging
        LoggingAspect.java
        async
        ExceptionHandlingAsyncTaskExecutor.java
        package-info.java
        config
        AsyncConfiguration.java
        CacheConfiguration.java
        Constants.java
        JacksonConfiguration.java
        LireConfiguration.java
        LocaleConfiguration.java
        LoggingAspectConfiguration.java
        MailConfiguration.java
        MetricsConfiguration.java
        SecurityConfiguration.java
        ThymeleafConfiguration.java
        WebConfigurer.java
        XAuthConfiguration.java
        apidoc
        SwaggerConfiguration.java
        package-info.java
        cassandra
        CassandraAutoConfiguration.java
        CassandraDataAutoConfiguration.java
        CassandraProperties.java
        locale
        AngularCookieLocaleResolver.java
        package-info.java
        metrics
        CassandraHealthIndicator.java
        JHipsterHealthIndicatorConfiguration.java
        JavaMailHealthIndicator.java
        package-info.java
        package-info.java
        domain
        Metadata.java
        Picture.java
        PictureFound.java
        PictureSearch.java
        User.java
        enumeration
        FeatureEnumerate.java
        package-info.java
        util
        CustomDateTimeDeserializer.java
        CustomDateTimeSerializer.java
        CustomLocalDateSerializer.java
        ISO8601LocalDateDeserializer.java
        repository
        GeneralCounterAccessor.java
        GeneralCounterRepository.java
        MetadataAccessor.java
        MetadataRepository.java
        PictureAccessor.java
        PictureFoundAccessor.java
        PictureFoundRepository.java
        PictureRepository.java
        PictureSearchAccesor.java
        PictureSearchCounterAccessor.java
        PictureSearchCounterRepository.java
        PictureSearchRepository.java
        UserCounterAccessor.java
        UserCounterRepository.java
        UserRepository.java
        package-info.java
        security
        AuthenticationProvider.java
        AuthoritiesConstants.java
        Http401UnauthorizedEntryPoint.java
        SecurityUtils.java
        UserDetailsService.java
        UserNotActivatedException.java
        package-info.java
        xauth
        Token.java
        TokenProvider.java
        XAuthTokenConfigurer.java
        XAuthTokenFilter.java
        service
        MailService.java
        MetadataService.java
        PictureSearchService.java
        PictureService.java
        UserService.java
        package-info.java
        util
        DataFormatUtil.java
        MetadataExtactorUtils.java
        PictureScaleUtil.java
        RandomUtil.java
        cbir
        Feature.java
        FeatureDescriptor.java
        FeatureExtractorBuilder.java
        LireBuilder.java
        LireException.java
        LirePictureSortable.java
        web
        filter
        CachingHttpHeadersFilter.java
        StaticResourcesProductionFilter.java
        gzip
        GZipResponseUtil.java
        GZipServletFilter.java
        GZipServletOutputStream.java
        GZipServletResponseWrapper.java
        GzipResponseHeadersNotModifiableException.java
        package-info.java
        package-info.java
        propertyeditors
        LocaleDateTimeEditor.java
        package-info.java
        rest
        AccountResource.java
        LogsResource.java
        MetadataResource.java
        MyPictureResource.java
        PictureFoundResource.java
        PictureResource.java
        PictureSearchResource.java
        UserResource.java
        UserXAuthTokenController.java
        admin
        MetadataAdminResource.java
        PictureAdminResource.java
        PictureFoundAdminResource.java
        PictureSearchAdminResource.java
        dto
        KeyAndPasswordDTO.java
        LoggerDTO.java
        ManagedUserDTO.java
        MetadataDTO.java
        PictureCreateDTO.java
        PictureDTO.java
        PictureFoundDTO.java
        PictureListDTO.java
        PictureSearchCreateDTO.java
        PictureSearchDTO.java
        PictureSearchListDTO.java
        PictureUpdateDTO.java
        UserDTO.java
        package-info.java
        errors
        CustomParameterizedException.java
        ErrorConstants.java
        ErrorDTO.java
        ExceptionTranslator.java
        FieldErrorDTO.java
        ParameterizedErrorDTO.java
        mapper
        ByteMapper.java
        DateMapper.java
        MetadataMapper.java
        PictureFoundMapper.java
        PictureMapper.java
        PictureSearchMapper.java
        package-info.java
        util
        HeaderUtil.java
        PaginationUtil.java
  - test
    - java
      - gal
        udc
        fic
        muei
        tfm
        dap
        flipper
        AbstractCassandraTest.java
        CassandraKeyspaceTest.java
        model
        MetadataTest.java
        PictureTest.java
        UserTest.java
        security
        SecurityUtilsTest.java
        web
        rest
        AccountResourceTest.java
        MetadataResourceTest.java
        PictureFoundResourceTest.java
        PictureResourceTest.java
        PictureSearchResourceTest.java
        TestUtil.java
        UserResourceTest.java

package gal.udc.fic.muei.tfm.dap.flipper.config;

import gal.udc.fic.muei.tfm.dap.flipper.security.*;
import gal.udc.fic.muei.tfm.dap.flipper.security.xauth.*;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;

import org.springframework.data.repository.query.spi.EvaluationContextExtension;
import org.springframework.data.repository.query.spi.EvaluationContextExtensionSupport;
import org.springframework.security.access.expression.SecurityExpressionRoot;
import org.springframework.security.authentication.AuthenticationManager;
import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity;
import org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.builders.WebSecurity;
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
import org.springframework.security.config.http.SessionCreationPolicy;
import org.springframework.security.core.context.SecurityContextHolder;
import org.springframework.security.core.userdetails.UserDetailsService;
import org.springframework.security.crypto.password.PasswordEncoder;
import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
import org.springframework.security.data.repository.query.SecurityEvaluationContextExtension;


import javax.inject.Inject;

@Configuration
@EnableWebSecurity
@EnableGlobalMethodSecurity(prePostEnabled = true, securedEnabled = true)
public class SecurityConfiguration extends WebSecurityConfigurerAdapter {

    @Inject
    private Http401UnauthorizedEntryPoint authenticationEntryPoint;

    @Inject
    private UserDetailsService userDetailsService;

    @Inject
    private TokenProvider tokenProvider;

    @Bean
    public PasswordEncoder passwordEncoder() {
        return new BCryptPasswordEncoder();
    }

    @Inject
    public void configureGlobal(AuthenticationManagerBuilder auth) throws Exception {
        auth
            .userDetailsService(userDetailsService)
                .passwordEncoder(passwordEncoder());
    }

    @Override
    public void configure(WebSecurity web) throws Exception {
        web.ignoring()
            .antMatchers("/scripts/**/*.{js,html}")
            .antMatchers("/bower_components/**")
            .antMatchers("/i18n/**")
            .antMatchers("/assets/**")
            .antMatchers("/swagger-ui/index.html")
            .antMatchers("/test/**");
    }

    @Override
    protected void configure(HttpSecurity http) throws Exception {
        http
            .exceptionHandling()
            .authenticationEntryPoint(authenticationEntryPoint)
        .and()
            .csrf()
            .disable()
            .headers()
            .frameOptions()
            .disable()
        .and()
            .sessionManagement()
            .sessionCreationPolicy(SessionCreationPolicy.STATELESS)
        .and()
            .authorizeRequests()
            .antMatchers("/api/register").permitAll()
            .antMatchers("/api/activate").permitAll()
            .antMatchers("/api/authenticate").permitAll()
            .antMatchers("/api/account/reset_password/init").permitAll()
            .antMatchers("/api/account/reset_password/finish").permitAll()
            .antMatchers("/api/logs/**").hasAuthority(AuthoritiesConstants.ADMIN)
            .antMatchers("/api/audits/**").hasAuthority(AuthoritiesConstants.ADMIN)
            .antMatchers("/api/**").authenticated()
            .antMatchers("/metrics/**").hasAuthority(AuthoritiesConstants.ADMIN)
            .antMatchers("/health/**").hasAuthority(AuthoritiesConstants.ADMIN)
            .antMatchers("/trace/**").hasAuthority(AuthoritiesConstants.ADMIN)
            .antMatchers("/dump/**").hasAuthority(AuthoritiesConstants.ADMIN)
            .antMatchers("/shutdown/**").hasAuthority(AuthoritiesConstants.ADMIN)
            .antMatchers("/beans/**").hasAuthority(AuthoritiesConstants.ADMIN)
            .antMatchers("/configprops/**").hasAuthority(AuthoritiesConstants.ADMIN)
            .antMatchers("/info/**").hasAuthority(AuthoritiesConstants.ADMIN)
            .antMatchers("/autoconfig/**").hasAuthority(AuthoritiesConstants.ADMIN)
            .antMatchers("/env/**").hasAuthority(AuthoritiesConstants.ADMIN)
            .antMatchers("/trace/**").hasAuthority(AuthoritiesConstants.ADMIN)
            .antMatchers("/mappings/**").hasAuthority(AuthoritiesConstants.ADMIN)
            .antMatchers("/v2/api-docs/**").permitAll()
            .antMatchers("/configuration/security").permitAll()
            .antMatchers("/configuration/ui").permitAll()
            .antMatchers("/swagger-ui/index.html").hasAuthority(AuthoritiesConstants.ADMIN)
            .antMatchers("/protected/**").authenticated() 
        .and()
            .apply(securityConfigurerAdapter());

    }

    private XAuthTokenConfigurer securityConfigurerAdapter() {
      return new XAuthTokenConfigurer(userDetailsService, tokenProvider);
    }

    @Bean
    public SecurityEvaluationContextExtension securityEvaluationContextExtension() {
        return new SecurityEvaluationContextExtension();
    }
}