public AdminAndRoleSelections getAdminAndRoleSelections(List<String> users) { final SecurityConfig securityConfig = goConfigService.security(); Set<Role> roles = allRoles(securityConfig); final List<TriStateSelection> roleSelections = TriStateSelection.forRoles(roles, users); final TriStateSelection adminSelection = TriStateSelection.forSystemAdmin( securityConfig.adminsConfig(), roles, new SecurityService.UserRoleMatcherImpl(securityConfig), users); return new AdminAndRoleSelections(adminSelection, roleSelections); }
@Test public void testSecurityInterceptorConfig() { String xml = HAZELCAST_START_TAG + "<security enabled=\"true\">" + "<security-interceptors>" + "<interceptor class-name=\"foo\"/>" + "<interceptor class-name=\"bar\"/>" + "</security-interceptors>" + "</security>" + "</hazelcast>"; final Config config = buildConfig(xml); final SecurityConfig securityConfig = config.getSecurityConfig(); final List<SecurityInterceptorConfig> interceptorConfigs = securityConfig.getSecurityInterceptorConfigs(); assertEquals(2, interceptorConfigs.size()); assertEquals("foo", interceptorConfigs.get(0).className); assertEquals("bar", interceptorConfigs.get(1).className); }
@Test public void testSecurityInterceptorConfig() { String xml = "<hazelcast xmlns=\"http://www.hazelcast.com/schema/config\">" + "<security enabled=\"true\">" + "<security-interceptors>" + "<interceptor class-name=\"foo\"/>" + "<interceptor class-name=\"bar\"/>" + "</security-interceptors>" + "</security>" + "</hazelcast>"; ByteArrayInputStream bis = new ByteArrayInputStream(xml.getBytes()); XmlConfigBuilder configBuilder = new XmlConfigBuilder(bis); final Config config = configBuilder.build(); final SecurityConfig securityConfig = config.getSecurityConfig(); final List<SecurityInterceptorConfig> interceptorConfigs = securityConfig.getSecurityInterceptorConfigs(); assertEquals(2, interceptorConfigs.size()); assertEquals("foo", interceptorConfigs.get(0).className); assertEquals("bar", interceptorConfigs.get(1).className); }
@Override protected void configure(HttpSecurity http) throws Exception { super.configure(http); http.csrf().disable(); }
private HashSet<Role> allRoles(SecurityConfig security) { return new HashSet<Role>(security.getRoles()); }