java - Digest auth with Spring Security using javaconfig -

-

so i'm trying create digest authentication spring following documentation trying translate xml "requirements" in java requirements.

let's have xml in docs:

<bean id="digestfilter" class=     "org.springframework.security.web.authentication.www.digestauthenticationfilter">   <property name="userdetailsservice" ref="jdbcdaoimpl"/>   <property name="authenticationentrypoint" ref="digestentrypoint"/>   <property name="usercache" ref="usercache"/> </bean>  <bean id="digestentrypoint" class=     "org.springframework.security.web.authentication.www.digestauthenticationentrypoint">   <property name="realmname" value="contacts realm via digest authentication"/>   <property name="key" value="acegi"/>   <property name="noncevalidityseconds" value="10"/> </bean>

this current javaconfig:

@configuration @profile({"integration", "release"}) @enablewebsecurity public class securityconfiguration extends websecurityconfigureradapter {    @resource(authenticationtype = resource.authenticationtype.container, mappedname = "jdbc/db")   private datasource datasource;    @override   protected void registerauthentication (authenticationmanagerbuilder auth) throws exception   {     auth.jdbcauthentication().datasource(datasource)         .usersbyusernamequery("select id_user, password, active users id_user = ?;")         .authoritiesbyusernamequery("select id_user, id_role user_roles id_user = ?");   }    @bean   public basicauthenticationentrypoint entrypoint ()   {      basicauthenticationentrypoint basicauthenticationentrypoint = new basicauthenticationentrypoint();     basicauthenticationentrypoint.setrealmname("basic wf realm");     return basicauthenticationentrypoint;   }    @bean   public digestauthenticationentrypoint digestentrypoint ()   {     digestauthenticationentrypoint digestauthenticationentrypoint = new digestauthenticationentrypoint();     digestauthenticationentrypoint.setkey("mykey");     digestauthenticationentrypoint.setrealmname("digest wf realm");     return digestauthenticationentrypoint;   }    public digestauthenticationfilter digestauthenticationfilter (       digestauthenticationentrypoint digestauthenticationentrypoint)   {     digestauthenticationfilter digestauthenticationfilter = new digestauthenticationfilter();     digestauthenticationfilter.setauthenticationentrypoint(digestentrypoint()); //    digestauthenticationfilter.setauthenticationdetailssource(authenticationdetailssource);     return digestauthenticationfilter;   }    @override   protected void configure (httpsecurity http) throws exception   {         // basic auth - works!         // http.exceptionhandling().authenticationentrypoint(entrypoint()).and()     http                 .authorizeurls().antmatchers("/firstres/*").permitall()         .antmatchers("/secondres/*").permitall()         .antmatchers("/resources/*").permitall()         .antmatchers("/**").hasanyauthority("first_role", "second_role").and()//.httpbasic();     .addfilter(digestauthenticationfilter(digestentrypoint()));   }  }

i 403 - access denied. httpbasic working. can tell i'm missing?

i'm not sure when getting 403 access denied, if happening when request protected resource before have authenticated need this:

@override protected void configure (httpsecurity http) throws exception {   http       .exceptionhandling()           // entry point handles when request protected page ,           // not yet authenticated           .authenticationentrypoint(digestentrypoint())           .and()       .authorizeurls()           .antmatchers("/firstres/*").permitall()           .antmatchers("/secondres/*").permitall()           .antmatchers("/resources/*").permitall()           .antmatchers("/**").hasanyauthority("first_role", "second_role").and()       // entry point on digest filter used failed authentication attempts       .addfilter(digestauthenticationfilter(digestentrypoint())); }  @override @bean public userdetailsservice userdetailsservicebean() {     return super.userdetailsservicebean(); }  public digestauthenticationfilter digestauthenticationfilter (     digestauthenticationentrypoint digestauthenticationentrypoint) {   digestauthenticationfilter digestauthenticationfilter = new digestauthenticationfilter();   digestauthenticationfilter.setauthenticationentrypoint(digestentrypoint());   digestauthenticationfilter.setuserdetailsservice(userdetailsservicebean());   return digestauthenticationfilter; }

Comments

Post a Comment

Popular posts from this blog

ios - RestKit 0.20 — CoreData: error: Failed to call designated initializer on NSManagedObject class (again) -

-
this error has shown on many times, seems. prominent answer issue seems restkit 0.20 — coredata: error: failed call designated initializer on nsmanagedobject class however, solution posted doesn't work me. let's start beginning: i want upload file server. want parse response make sure uploaded. if not, try again later. model has boolean variable called nsnumber *senttoserver purpose (in coredata, bool saved nsnumber ) . because don't know whether sending going successful, save entity coredata model first before sending via restkit. when post request successful, server returns json string this: {"id":14,"created":true} notice that, of course, id not set on coredata model yet, both id , created new informations model. here's model: @interface recording : nsmanagedobject @property (nonatomic, retain) nsstring * audiofilepath; @property (nonatomic, retain) nsdate * createdat; @property (nonatomic, retain) nsstring * deviceid; @
Read more

laravel - PDOException in Connector.php line 55: SQLSTATE[HY000] [1045] Access denied for user 'root'@'localhost' (using password: YES) -

-
my .env: app_env=local app_debug=true app_key=myappkey app_url=http://localhost db_connection=mysql db_host=localhost db_port=3306 db_database=gestiontaller db_username=root db_password='root' cache_driver=file session_driver=file queue_driver=sync redis_host=127.0.0.1 redis_password=null redis_port=6379 mail_driver=smtp mail_host=mailtrap.io mail_port=2525 mail_username=null mail_password=null mail_encryption=null i've tried password ", ' , without, restarting server every time. i've tried changing localhost 172.0.0.1. yes, password correct, running mysql -u root -p introducing password root in prompt can go mysql. users table: +------------------+-----------+ | user | host | +------------------+-----------+ | debian-sys-maint | localhost | | mysql.sys | localhost | | root | localhost | | root1 | localhost | +------------------+-----------+ i've added homestead.yaml this: database_port: 3306
Read more