Package org.apache.syncope.core.spring.security

Class WebSecurityContext

java.lang.Object

org.apache.syncope.core.spring.security.WebSecurityContext

@EnableWebSecurity
@EnableGlobalMethodSecurity(prePostEnabled=true)
@Configuration(proxyBeanMethods=false)
public class WebSecurityContext
extends Object

Constructor Summary

Constructors

Constructor	Description
WebSecurityContext()

Method Summary

Modifier and Type	Method	Description
AccessDeniedHandler	accessDeniedHandler()
HttpFirewall	allowUrlEncodedSlashHttpFirewall()
AuthDataAccessor	authDataAccessor(SecurityProperties securityProperties, RealmDAO realmDAO, UserDAO userDAO, GroupDAO groupDAO, AnySearchDAO anySearchDAO, AccessTokenDAO accessTokenDAO, ConfParamOps confParamOps, RoleDAO roleDAO, DelegationDAO delegationDAO, ConnectorManager connectorManager, AuditManager auditManager, MappingManager mappingManager, List<JWTSSOProvider> jwtSSOProviders)
SecurityFilterChain	filterChain(HttpSecurity http, UsernamePasswordAuthenticationProvider usernamePasswordAuthenticationProvider, JWTAuthenticationProvider jwtAuthenticationProvider, SecurityProperties securityProperties, AuthDataAccessor authDataAccessor, DefaultCredentialChecker defaultCredentialChecker)
JWTAuthenticationProvider	jwtAuthenticationProvider(AuthDataAccessor authDataAccessor)
UsernamePasswordAuthenticationProvider	usernamePasswordAuthenticationProvider(SecurityProperties securityProperties, DomainOps domainOps, AuthDataAccessor dataAccessor, UserProvisioningManager provisioningManager, DefaultCredentialChecker credentialChecker)
WebSecurityCustomizer	webSecurityCustomizer(HttpFirewall allowUrlEncodedSlashHttpFirewall)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

WebSecurityContext

public WebSecurityContext()

Method Detail

allowUrlEncodedSlashHttpFirewall

@Bean
public HttpFirewall allowUrlEncodedSlashHttpFirewall()

webSecurityCustomizer

@Bean
public WebSecurityCustomizer webSecurityCustomizer(HttpFirewall allowUrlEncodedSlashHttpFirewall)

filterChain

@Bean
public SecurityFilterChain filterChain(HttpSecurity http,
                                       UsernamePasswordAuthenticationProvider usernamePasswordAuthenticationProvider,
                                       JWTAuthenticationProvider jwtAuthenticationProvider,
                                       SecurityProperties securityProperties,
                                       AuthDataAccessor authDataAccessor,
                                       DefaultCredentialChecker defaultCredentialChecker)
                                throws Exception

Throws:

Exception

usernamePasswordAuthenticationProvider

@ConditionalOnMissingBean
@Bean
public UsernamePasswordAuthenticationProvider usernamePasswordAuthenticationProvider(SecurityProperties securityProperties,
                                                                                     DomainOps domainOps,
                                                                                     AuthDataAccessor dataAccessor,
                                                                                     UserProvisioningManager provisioningManager,
                                                                                     DefaultCredentialChecker credentialChecker)

jwtAuthenticationProvider

@ConditionalOnMissingBean
@Bean
public JWTAuthenticationProvider jwtAuthenticationProvider(AuthDataAccessor authDataAccessor)

accessDeniedHandler

@Bean
public AccessDeniedHandler accessDeniedHandler()

authDataAccessor

@ConditionalOnMissingBean
@Bean
public AuthDataAccessor authDataAccessor(SecurityProperties securityProperties,
                                         RealmDAO realmDAO,
                                         UserDAO userDAO,
                                         GroupDAO groupDAO,
                                         AnySearchDAO anySearchDAO,
                                         AccessTokenDAO accessTokenDAO,
                                         ConfParamOps confParamOps,
                                         RoleDAO roleDAO,
                                         DelegationDAO delegationDAO,
                                         ConnectorManager connectorManager,
                                         AuditManager auditManager,
                                         MappingManager mappingManager,
                                         List<JWTSSOProvider> jwtSSOProviders)