public static final SecurityHandler basicAuth(AuthConfig config) {
ConstraintSecurityHandler securityHandler = new ConstraintSecurityHandler();
securityHandler.setAuthenticator(new BasicAuthenticator());
securityHandler.setRealmName(config.getRealm());
ConstraintMapping constraintMapping = new ConstraintMapping();
Constraint constraint = new Constraint(Constraint.__BASIC_AUTH, USER_ROLE);
constraint.setAuthenticate(true);
constraintMapping.setConstraint(constraint);
constraintMapping.setPathSpec("/*");
securityHandler.addConstraintMapping(constraintMapping);
HashLoginService loginService = new HashLoginService();
loginService.putUser(
config.getUsername(),
Credential.getCredential(config.getPassword()),
new String[] {USER_ROLE});
loginService.setName(config.getRealm());
securityHandler.setLoginService(loginService);
return securityHandler;
}
public Approval toApproval(CRApproval crApproval) {
if (crApproval == null) return Approval.automaticApproval();
Approval approval;
if (crApproval.getType() == CRApprovalCondition.manual) approval = Approval.manualApproval();
else approval = Approval.automaticApproval();
AuthConfig authConfig = approval.getAuthConfig();
for (String user : crApproval.getAuthorizedUsers()) {
authConfig.add(new AdminUser(new CaseInsensitiveString(user)));
}
for (String user : crApproval.getAuthorizedRoles()) {
authConfig.add(new AdminRole(new CaseInsensitiveString(user)));
}
return approval;
}
@Inject
public AuthFilter(AuthConfig config, SignatureVerifier verifier) {
this.verifier = verifier;
this.enabled = config.isEnabled();
}
