當前位置: 首頁>>代碼示例>>Java>>正文


Java AuthenticationEntryPoint類代碼示例

本文整理匯總了Java中org.springframework.security.web.AuthenticationEntryPoint的典型用法代碼示例。如果您正苦於以下問題:Java AuthenticationEntryPoint類的具體用法?Java AuthenticationEntryPoint怎麽用?Java AuthenticationEntryPoint使用的例子?那麽, 這裏精選的類代碼示例或許可以為您提供幫助。


AuthenticationEntryPoint類屬於org.springframework.security.web包,在下文中一共展示了AuthenticationEntryPoint類的15個代碼示例,這些例子默認根據受歡迎程度排序。您可以為喜歡或者感覺有用的代碼點讚,您的評價將有助於係統推薦出更棒的Java代碼示例。

示例1: configure

import org.springframework.security.web.AuthenticationEntryPoint; //導入依賴的package包/類
@Override
protected void configure(HttpSecurity http) throws Exception {
	// secure endpoints
	RequestMatcher matcher = getRequestMatcher();
	if (matcher != null) {
		// Always protect them if present
		if (this.security.isRequireSsl()) {
			http.requiresChannel().anyRequest().requiresSecure();
		}
		AuthenticationEntryPoint entryPoint = entryPoint();
		http.exceptionHandling().authenticationEntryPoint(entryPoint);
		// Match all the requests for actuator endpoints ...
		http.requestMatcher(matcher);
		// ... but permitAll() for the non-sensitive ones
		configurePermittedRequests(http.authorizeRequests());
		http.httpBasic().authenticationEntryPoint(entryPoint);
		// No cookies for management endpoints by default
		http.csrf().disable();
		http.sessionManagement().sessionCreationPolicy(
				this.management.getSecurity().getSessions());
		SpringBootWebSecurityConfiguration.configureHeaders(http.headers(),
				this.security.getHeaders());
	}
}
 
開發者ID:vikrammane23,項目名稱:https-github.com-g0t4-jenkins2-course-spring-boot,代碼行數:25,代碼來源:ManagementWebSecurityAutoConfiguration.java

示例2: configure

import org.springframework.security.web.AuthenticationEntryPoint; //導入依賴的package包/類
@SuppressWarnings("ProhibitedExceptionDeclared")
@Override
protected void configure(final HttpSecurity http) throws Exception {
    final AuthenticationEntryPoint ssoEntryPoint = new SsoAuthenticationEntryPoint(SsoController.SSO_PAGE);

    final SsoAuthenticationFilter<?> ssoAuthenticationFilter = new SsoAuthenticationFilter<>(SsoController.SSO_AUTHENTICATION_URI, EntityType.CombinedSso.INSTANCE);
    ssoAuthenticationFilter.setAuthenticationManager(authenticationManager());

    final LogoutSuccessHandler logoutSuccessHandler = new HodTokenLogoutSuccessHandler(SsoController.SSO_LOGOUT_PAGE, tokenRepository);

    http.regexMatcher("/public(/.*)?|/sso|/authenticate-sso|/api/authentication/.*|/logout")
        .csrf()
            .disable()
        .exceptionHandling()
            .authenticationEntryPoint(ssoEntryPoint)
            .accessDeniedPage(DispatcherServletConfiguration.AUTHENTICATION_ERROR_PATH)
            .and()
        .authorizeRequests()
            .antMatchers(FindController.APP_PATH + "/**").hasRole(FindRole.USER.name())
            .and()
        .logout()
            .logoutSuccessHandler(logoutSuccessHandler)
            .and()
        .addFilterAfter(ssoAuthenticationFilter, AbstractPreAuthenticatedProcessingFilter.class);
}
 
開發者ID:hpe-idol,項目名稱:find,代碼行數:26,代碼來源:HodSecurity.java

示例3: configure

import org.springframework.security.web.AuthenticationEntryPoint; //導入依賴的package包/類
@Override
protected void configure(HttpSecurity http) throws Exception {
	final Filter corsFilter = context.getBean(ICorsFilterConfig.class).corsFilter();
	final AuthenticationEntryPoint basicAuthenticationEntryPoint = context.getBean(
			BASIC_AUTH_BEAN_NAME,
			AuthenticationEntryPoint.class);
	http
			.antMatcher(JwtRestServiceConfig.REST_API_URL_PREFIX + "/**")
			// As of Spring Security 4.0, CSRF protection is enabled by default.
			.csrf().disable()
			// Configure CORS
			.addFilterBefore(corsFilter, SecurityContextPersistenceFilter.class)
			.authorizeRequests()
			.antMatchers(HttpMethod.OPTIONS, "/**").permitAll()
			.antMatchers("/**").hasAnyAuthority(ROLE_USER)
			.and()
			.httpBasic().authenticationEntryPoint(basicAuthenticationEntryPoint);
}
 
開發者ID:activeviam,項目名稱:autopivot,代碼行數:19,代碼來源:SecurityConfig.java

示例4: configure

import org.springframework.security.web.AuthenticationEntryPoint; //導入依賴的package包/類
@Override
protected void configure(HttpSecurity http) throws Exception {
  AuthenticationEntryPoint authenticationEntryPoint = lookup("authenticationEntryPoint");

  http.csrf().disable()
      .exceptionHandling().authenticationEntryPoint(authenticationEntryPoint)
      .and()
      .sessionManagement().sessionCreationPolicy(STATELESS);

  customizeRequestAuthorization(http.authorizeRequests()
      .antMatchers("/").permitAll()
      .antMatchers(POST, LOGIN_ENDPOINT).permitAll()
      .and());

  http.authorizeRequests().anyRequest().authenticated();

  JwtTokenService jwtTokenService = lookup("jwtTokenService");

  // JwtAuthenticationFilter must precede LogoutFilter, otherwise LogoutHandler wouldn't know who
  // logs out.
  customizeFilters(
      http.addFilterBefore(new JwtAuthenticationFilter(jwtTokenService), LogoutFilter.class));

  customizeRememberMe(http);
}
 
開發者ID:springuni,項目名稱:springuni-particles,代碼行數:26,代碼來源:SecurityConfigurationSupport.java

示例5: authenticationEntryPoint

import org.springframework.security.web.AuthenticationEntryPoint; //導入依賴的package包/類
protected AuthenticationEntryPoint authenticationEntryPoint() {
	return new AuthenticationEntryPoint() {
		@Override
		public void commence(HttpServletRequest httpServletRequest, HttpServletResponse httpServletResponse, AuthenticationException e) throws IOException, ServletException {
			httpServletResponse.getWriter().append("Not authenticated");
			httpServletResponse.setStatus(401);
		}
	};
}
 
開發者ID:vishal1997,項目名稱:DiscussionPortal,代碼行數:10,代碼來源:AuthenticationHandler.java

示例6: http401AuthenticationEntryPoint

import org.springframework.security.web.AuthenticationEntryPoint; //導入依賴的package包/類
private AuthenticationEntryPoint http401AuthenticationEntryPoint() {
    // This gets used for both secured and unsecured configurations. It will be called by Spring Security if a request makes it through the filter chain without being authenticated.
    // For unsecured, this should never be reached because the custom AnonymousAuthenticationFilter should always populate a fully-authenticated anonymous user
    // For secured, this will cause attempt to access any API endpoint (except those explicitly ignored) without providing credentials to return a 401 Unauthorized challenge
    return new AuthenticationEntryPoint() {
        @Override
        public void commence(HttpServletRequest request,
                             HttpServletResponse response,
                             AuthenticationException e) throws IOException, ServletException {
            logger.info("AuthenticationEntryPoint invoked as no user identity credentials were found in the request.");
            response.setStatus(HttpServletResponse.SC_UNAUTHORIZED);
        }
    };
}
 
開發者ID:apache,項目名稱:nifi-registry,代碼行數:15,代碼來源:NiFiRegistrySecurityConfig.java

示例7: restAuthenticationEntryPoint

import org.springframework.security.web.AuthenticationEntryPoint; //導入依賴的package包/類
@Bean
public AuthenticationEntryPoint restAuthenticationEntryPoint() {
    return new AuthenticationEntryPoint() {
        @Override
        public void commence(HttpServletRequest request, HttpServletResponse response, AuthenticationException authException) throws IOException {
            response.sendError(HttpServletResponse.SC_UNAUTHORIZED, ApplicationContext.language("error.msgUnauthorized"));
        }
    };
}
 
開發者ID:bndynet,項目名稱:web-framework-for-java,代碼行數:10,代碼來源:WebSecurityConfig.java

示例8: OneTimePasswordFilterConfigurer

import org.springframework.security.web.AuthenticationEntryPoint; //導入依賴的package包/類
public OneTimePasswordFilterConfigurer(final String loginProcessingUrl,
                                       AuthenticationSuccessHandler successHandler,
                                       AuthenticationFailureHandler failureHandler,
                                       AuthenticationEntryPoint entryPoint) {
    this.authFilter = new OneTimePasswordAuthenticationFilter(loginProcessingUrl);
    this.authFilter.setRequiresAuthenticationRequestMatcher(new AntPathRequestMatcher(loginProcessingUrl, "POST"));
    this.authFilter.setAuthenticationSuccessHandler(successHandler);
    this.authFilter.setAuthenticationFailureHandler(failureHandler);
    this.authFilter.setAllowSessionCreation(true);
    this.authenticationEntryPoint = entryPoint;
}
 
開發者ID:suomenriistakeskus,項目名稱:oma-riista-web,代碼行數:12,代碼來源:OneTimePasswordFilterConfigurer.java

示例9: getAuthEntryPoint

import org.springframework.security.web.AuthenticationEntryPoint; //導入依賴的package包/類
private static AuthenticationEntryPoint getAuthEntryPoint() {
    return new AuthenticationEntryPoint() {
        @Override
        public void commence(HttpServletRequest request, HttpServletResponse response, AuthenticationException authException) throws IOException, ServletException {
            response.sendError(HttpServletResponse.SC_UNAUTHORIZED, "Access Denied");
        }
    };
}
 
開發者ID:lhartikk,項目名稱:spring-tsers-auth,代碼行數:9,代碼來源:WebSecurityConfig.java

示例10: configure

import org.springframework.security.web.AuthenticationEntryPoint; //導入依賴的package包/類
@Override
protected void configure(HttpSecurity http) throws Exception {
	if (this.security.isRequireSsl()) {
		http.requiresChannel().anyRequest().requiresSecure();
	}
	if (!this.security.isEnableCsrf()) {
		http.csrf().disable();
	}
	// No cookies for application endpoints by default
	http.sessionManagement().sessionCreationPolicy(this.security.getSessions());
	SpringBootWebSecurityConfiguration.configureHeaders(http.headers(),
			this.security.getHeaders());
	String[] paths = getSecureApplicationPaths();
	if (paths.length > 0) {
		AuthenticationEntryPoint entryPoint = entryPoint();
		http.exceptionHandling().authenticationEntryPoint(entryPoint);
		http.httpBasic().authenticationEntryPoint(entryPoint);
		http.requestMatchers().antMatchers(paths);
		String[] roles = this.security.getUser().getRole().toArray(new String[0]);
		SecurityAuthorizeMode mode = this.security.getBasic().getAuthorizeMode();
		if (mode == null || mode == SecurityAuthorizeMode.ROLE) {
			http.authorizeRequests().anyRequest().hasAnyRole(roles);
		}
		else if (mode == SecurityAuthorizeMode.AUTHENTICATED) {
			http.authorizeRequests().anyRequest().authenticated();
		}
	}
}
 
開發者ID:vikrammane23,項目名稱:https-github.com-g0t4-jenkins2-course-spring-boot,代碼行數:29,代碼來源:SpringBootWebSecurityConfiguration.java

示例11: authenticationEntryPoint

import org.springframework.security.web.AuthenticationEntryPoint; //導入依賴的package包/類
/**
 * For a REST backend there's no login page, so security must return a 401
 * code
 *
 * @return
 */
@Bean
public AuthenticationEntryPoint authenticationEntryPoint() {
	return (HttpServletRequest request, HttpServletResponse response, AuthenticationException authException) -> {
		LOG.info("ENTRY >>> rejecting entry: " + authException.getMessage());
		response.sendError(HttpServletResponse.SC_UNAUTHORIZED, authException.getMessage());
	};
}
 
開發者ID:alextremp,項目名稱:stateless-rest-jwtcookie-demo,代碼行數:14,代碼來源:SecurityInternalConfig.java

示例12: configure

import org.springframework.security.web.AuthenticationEntryPoint; //導入依賴的package包/類
@Override
protected void configure(HttpSecurity http) throws Exception {
	AuthenticationEntryPoint entryPoint = entryPoint();
	AdminRequestedAccessDeniedHandler accessDeniedHandler = new AdminRequestedAccessDeniedHandler(entryPoint);
	http
		.requiresChannel()
			.requestMatchers(request -> request.getHeader("x-forwarded-port") != null).requiresSecure()
			.and()
		.exceptionHandling()
			.authenticationEntryPoint(entryPoint)
			.accessDeniedHandler(accessDeniedHandler)
			.and()
		.csrf()
			.ignoringAntMatchers("/github/hooks/**").and()
		.authorizeRequests()
			.requestMatchers(CorsUtils::isPreFlightRequest).permitAll()
			.mvcMatchers("/login/**", "/", "/about", "/faq").permitAll()
			.mvcMatchers("/view/**").permitAll()
			.mvcMatchers("/webjars/**", "/assets/**").permitAll()
			.mvcMatchers("/github/hooks/**").permitAll()
			.mvcMatchers("/admin","/admin/cla/link/**","/admin/help/**").hasRole("ADMIN")
			.mvcMatchers("/admin/**","/manage/**").hasRole("CLA_AUTHOR")
			.anyRequest().authenticated()
			.and()
		.logout()
			.logoutSuccessUrl("/?logout");
}
 
開發者ID:pivotalsoftware,項目名稱:pivotal-cla,代碼行數:28,代碼來源:SecurityConfig.java

示例13: getDelegatingAuthenticationEntryPoint

import org.springframework.security.web.AuthenticationEntryPoint; //導入依賴的package包/類
public DelegatingAuthenticationEntryPoint getDelegatingAuthenticationEntryPoint() {
    LinkedHashMap<RequestMatcher, AuthenticationEntryPoint> entryPointMap = new LinkedHashMap<>();
    entryPointMap.put(new RequestHeaderRequestMatcher("User-Agent", "Mozilla"), atlasAuthenticationEntryPoint);
    DelegatingAuthenticationEntryPoint entryPoint = new DelegatingAuthenticationEntryPoint(entryPointMap);
    entryPoint.setDefaultEntryPoint(getAuthenticationEntryPoint());
    return entryPoint;
}
 
開發者ID:apache,項目名稱:incubator-atlas,代碼行數:8,代碼來源:AtlasSecurityConfig.java

示例14: delegatingAuthenticationEntryPoint

import org.springframework.security.web.AuthenticationEntryPoint; //導入依賴的package包/類
@Bean
@Autowired
public DelegatingAuthenticationEntryPoint delegatingAuthenticationEntryPoint(BasicAuthenticationEntryPoint basic,
    LoginUrlAuthenticationEntryPoint login) {

    LinkedHashMap<RequestMatcher, AuthenticationEntryPoint> entryPoints = new LinkedHashMap<>();
    entryPoints.put(new RequestHeaderRequestMatcher("Content-Type", "application/json"), basic);
    entryPoints.put(new NegatedRequestMatcher(new RequestContainingAcceptTextHeaderRequestMatcher()), basic);

    DelegatingAuthenticationEntryPoint delegate = new DelegatingAuthenticationEntryPoint(entryPoints);
    delegate.setDefaultEntryPoint(login);

    return delegate;
}
 
開發者ID:Contargo,項目名稱:iris,代碼行數:15,代碼來源:SecurityConfig.java

示例15: configure

import org.springframework.security.web.AuthenticationEntryPoint; //導入依賴的package包/類
@SuppressWarnings("ProhibitedExceptionDeclared")
@Override
protected void configure(final HttpSecurity http) throws Exception {
    final LinkedHashMap<RequestMatcher, AuthenticationEntryPoint> entryPoints = new LinkedHashMap<>();
    entryPoints.put(new AntPathRequestMatcher("/api/**"), new Http403ForbiddenEntryPoint());
    entryPoints.put(AnyRequestMatcher.INSTANCE, new LoginUrlAuthenticationEntryPoint(FindController.DEFAULT_LOGIN_PAGE));
    final AuthenticationEntryPoint authenticationEntryPoint = new DelegatingAuthenticationEntryPoint(entryPoints);

    http
        .csrf()
            .disable()
        .exceptionHandling()
            .authenticationEntryPoint(authenticationEntryPoint)
            .accessDeniedPage("/authentication-error")
            .and()
        .logout()
            .logoutUrl("/logout")
            .logoutSuccessUrl(FindController.DEFAULT_LOGIN_PAGE)
            .and()
        .authorizeRequests()
            .antMatchers(FindController.APP_PATH + "/**").hasAnyRole(FindRole.USER.name())
            .antMatchers(FindController.CONFIG_PATH).hasRole(FindRole.CONFIG.name())
            .antMatchers("/api/public/**").hasRole(FindRole.USER.name())
            .antMatchers("/api/bi/**").hasRole(FindRole.BI.name())
            .antMatchers("/api/config/**").hasRole(FindRole.CONFIG.name())
            .antMatchers("/api/admin/**").hasRole(FindRole.ADMIN.name())
            .antMatchers(FindController.DEFAULT_LOGIN_PAGE).permitAll()
            .antMatchers(FindController.LOGIN_PATH).permitAll()
            .antMatchers("/").permitAll()
            .anyRequest().denyAll()
            .and()
        .headers()
            .defaultsDisabled()
            .frameOptions()
            .sameOrigin();

    idolSecurityCustomizer.customize(http, authenticationManager());
}
 
開發者ID:hpe-idol,項目名稱:find,代碼行數:39,代碼來源:IdolSecurity.java


注:本文中的org.springframework.security.web.AuthenticationEntryPoint類示例由純淨天空整理自Github/MSDocs等開源代碼及文檔管理平台,相關代碼片段篩選自各路編程大神貢獻的開源項目,源碼版權歸原作者所有,傳播和使用請參考對應項目的License;未經允許,請勿轉載。