Class CommonSecurityAutoConfiguration
java.lang.Object
org.activiti.cloud.services.common.security.config.CommonSecurityAutoConfiguration
@AutoConfiguration
@ConditionalOnWebApplication
@ConditionalOnMissingBean({org.springframework.security.web.authentication.session.SessionAuthenticationStrategy.class,org.springframework.security.web.authentication.session.SessionAuthenticationStrategy.class})
@Import(CommonJwtAuthenticationConverterConfiguration.class)
@PropertySource("classpath:config/activiti-cloud-services-common-security.properties")
public class CommonSecurityAutoConfiguration
extends Object
-
Constructor Summary
ConstructorsConstructorDescriptionCommonSecurityAutoConfiguration(AuthorizationConfigurer authorizationConfigurer, org.springframework.core.convert.converter.Converter<org.springframework.security.oauth2.jwt.Jwt, org.springframework.security.authentication.AbstractAuthenticationToken> jwtAuthenticationConverter) -
Method Summary
Modifier and TypeMethodDescriptionorg.activiti.api.runtime.shared.security.SecurityContextPrincipalProviderorg.springframework.security.web.SecurityFilterChainfilterChain(org.springframework.security.config.annotation.web.builders.HttpSecurity http) jtwAccessTokenPrincipalRolesProvider(JwtAccessTokenProvider jwtAccessTokenProvider, JwtAccessTokenValidator jwtAccessTokenValidator) jwtAccessTokenPrincipalGroupsProvider(JwtAccessTokenProvider jwtAccessTokenProvider, JwtAccessTokenValidator jwtAccessTokenValidator) jwtAccessTokenValidator(List<ValidationCheck> validationChecks) principalGroupsProviderChain(List<org.activiti.api.runtime.shared.security.PrincipalGroupsProvider> principalGroupsProviders) org.activiti.api.runtime.shared.security.PrincipalIdentityProviderprincipalIdentityProvider(JwtAccessTokenProvider jwtAccessTokenProvider, JwtAccessTokenValidator jwtAccessTokenValidator) principalRolesProviderChain(List<org.activiti.api.runtime.shared.security.PrincipalRolesProvider> principalRolesProviders) org.activiti.api.runtime.shared.security.SecurityContextTokenProviderorg.activiti.api.runtime.shared.security.SecurityManagersecurityManager(org.activiti.api.runtime.shared.security.SecurityContextPrincipalProvider authenticatedPrincipalProvider, org.activiti.api.runtime.shared.security.PrincipalIdentityProvider principalIdentityProvider, JwtPrincipalGroupsProviderChain principalGroupsProvider, JwtPrincipalRolesProviderChain principalRolesProviderChain) protected org.springframework.security.web.authentication.session.SessionAuthenticationStrategyDefines the session authentication strategy.feign.RequestInterceptortokenRelayRequestInterceptor(org.activiti.api.runtime.shared.security.SecurityContextTokenProvider securityContextTokenProvider)
-
Constructor Details
-
CommonSecurityAutoConfiguration
@Autowired public CommonSecurityAutoConfiguration(AuthorizationConfigurer authorizationConfigurer, org.springframework.core.convert.converter.Converter<org.springframework.security.oauth2.jwt.Jwt, org.springframework.security.authentication.AbstractAuthenticationToken> jwtAuthenticationConverter)
-
-
Method Details
-
authenticatedPrincipalProvider
@Bean @ConditionalOnMissingBean public org.activiti.api.runtime.shared.security.SecurityContextPrincipalProvider authenticatedPrincipalProvider() -
jwtAccessTokenValidator
@Bean @ConditionalOnMissingBean public JwtAccessTokenValidator jwtAccessTokenValidator(List<ValidationCheck> validationChecks) -
expiredValidationCheck
-
isNotBeforeValidationCheck
-
principalIdentityProvider
@Bean @ConditionalOnMissingBean public org.activiti.api.runtime.shared.security.PrincipalIdentityProvider principalIdentityProvider(JwtAccessTokenProvider jwtAccessTokenProvider, JwtAccessTokenValidator jwtAccessTokenValidator) -
jwtAccessTokenPrincipalGroupsProvider
@Bean @Order(-2147483648) @ConditionalOnMissingBean public JwtAccessTokenPrincipalGroupsProvider jwtAccessTokenPrincipalGroupsProvider(JwtAccessTokenProvider jwtAccessTokenProvider, JwtAccessTokenValidator jwtAccessTokenValidator) -
jtwAccessTokenPrincipalRolesProvider
@Bean @Order(-2147483648) @ConditionalOnMissingBean public JtwAccessTokenPrincipalRolesProvider jtwAccessTokenPrincipalRolesProvider(JwtAccessTokenProvider jwtAccessTokenProvider, JwtAccessTokenValidator jwtAccessTokenValidator) -
principalGroupsProviderChain
@Bean @ConditionalOnMissingBean public JwtPrincipalGroupsProviderChain principalGroupsProviderChain(List<org.activiti.api.runtime.shared.security.PrincipalGroupsProvider> principalGroupsProviders) -
principalRolesProviderChain
@Bean @ConditionalOnMissingBean public JwtPrincipalRolesProviderChain principalRolesProviderChain(List<org.activiti.api.runtime.shared.security.PrincipalRolesProvider> principalRolesProviders) -
securityContextTokenProvider
@Bean @ConditionalOnMissingBean public org.activiti.api.runtime.shared.security.SecurityContextTokenProvider securityContextTokenProvider() -
sessionAuthenticationStrategy
@Bean @ConditionalOnMissingBean protected org.springframework.security.web.authentication.session.SessionAuthenticationStrategy sessionAuthenticationStrategy()Defines the session authentication strategy. -
filterChain
@Bean public org.springframework.security.web.SecurityFilterChain filterChain(org.springframework.security.config.annotation.web.builders.HttpSecurity http) throws Exception - Throws:
Exception
-