Class CommonSecurityAutoConfiguration
- java.lang.Object
-
- org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
-
- org.keycloak.adapters.springsecurity.config.KeycloakWebSecurityConfigurerAdapter
-
- org.activiti.cloud.services.common.security.keycloak.config.CommonSecurityAutoConfiguration
-
- All Implemented Interfaces:
org.springframework.security.config.annotation.SecurityConfigurer<javax.servlet.Filter,org.springframework.security.config.annotation.web.builders.WebSecurity>,org.springframework.security.config.annotation.web.WebSecurityConfigurer<org.springframework.security.config.annotation.web.builders.WebSecurity>
@Configuration @ConditionalOnWebApplication @Import(org.keycloak.adapters.springboot.KeycloakSpringBootConfigResolver.class) @ConditionalOnMissingBean({org.keycloak.adapters.KeycloakConfigResolver.class,org.springframework.security.web.authentication.session.SessionAuthenticationStrategy.class,org.springframework.security.web.authentication.session.SessionAuthenticationStrategy.class}) @DependsOn("keycloakConfigResolver") @PropertySource("classpath:keycloak-configuration.properties") public class CommonSecurityAutoConfiguration extends org.keycloak.adapters.springsecurity.config.KeycloakWebSecurityConfigurerAdapter
-
-
Constructor Summary
Constructors Constructor Description CommonSecurityAutoConfiguration(AuthorizationConfigurer authorizationConfigurer)
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description org.activiti.api.runtime.shared.security.SecurityContextPrincipalProviderauthenticatedPrincipalProvider()protected voidconfigure(org.springframework.security.config.annotation.web.builders.HttpSecurity http)org.springframework.beans.factory.InitializingBeanconfigureGlobalAuthenticationManager(org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder auth, org.keycloak.adapters.springsecurity.authentication.KeycloakAuthenticationProvider keycloakAuthenticationProvider)Registers the KeycloakAuthenticationProvider with the authentication manager.protected org.keycloak.adapters.springsecurity.management.HttpSessionManagerhttpSessionManager()KeycloakAccessTokenPrincipalGroupsProviderkeycloakAccessTokenPrincipalGroupsProvider(KeycloakAccessTokenProvider keycloakAccessTokenProvider, KeycloakAccessTokenValidator keycloakAccessTokenValidator)KeycloakAccessTokenPrincipalRolesProviderkeycloakAccessTokenPrincipalRolesProvider(KeycloakAccessTokenProvider keycloakAccessTokenProvider, KeycloakAccessTokenValidator keycloakAccessTokenValidator)KeycloakAccessTokenProviderkeycloakAccessTokenProvider()KeycloakAccessTokenValidatorkeycloakAccessTokenValidator()org.keycloak.adapters.springsecurity.authentication.KeycloakAuthenticationProviderkeycloakAuthenticationProvider()KeycloakPrincipalGroupsProviderChainprincipalGroupsProviderChain(List<org.activiti.api.runtime.shared.security.PrincipalGroupsProvider> principalGroupsProviders)org.activiti.api.runtime.shared.security.PrincipalIdentityProviderprincipalIdentityProvider(KeycloakAccessTokenProvider keycloakAccessTokenProvider, KeycloakAccessTokenValidator keycloakAccessTokenValidator)KeycloakPrincipalRolesProviderChainprincipalRolesProviderChain(List<org.activiti.api.runtime.shared.security.PrincipalRolesProvider> principalRolesProviders)org.activiti.api.runtime.shared.security.SecurityContextTokenProvidersecurityContextTokenProvider()org.activiti.api.runtime.shared.security.SecurityManagersecurityManager(org.activiti.api.runtime.shared.security.SecurityContextPrincipalProvider authenticatedPrincipalProvider, org.activiti.api.runtime.shared.security.PrincipalIdentityProvider principalIdentityProvider, KeycloakPrincipalGroupsProviderChain principalGroupsProvider, KeycloakPrincipalRolesProviderChain principalRolesProviderChain)protected org.springframework.security.web.authentication.session.SessionAuthenticationStrategysessionAuthenticationStrategy()Defines the session authentication strategy.-
Methods inherited from class org.keycloak.adapters.springsecurity.config.KeycloakWebSecurityConfigurerAdapter
adapterDeploymentContext, authenticationEntryPoint, keycloakAuthenticatedActionsRequestFilter, keycloakAuthenticationProcessingFilter, keycloakCsrfRequestMatcher, keycloakLogoutHandler, keycloakPreAuthActionsFilter, keycloakSecurityContextRequestFilter
-
Methods inherited from class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
authenticationManager, authenticationManagerBean, configure, configure, getApplicationContext, getHttp, init, setApplicationContext, setAuthenticationConfiguration, setContentNegotationStrategy, setObjectPostProcessor, setTrustResolver, userDetailsService, userDetailsServiceBean
-
-
-
-
Constructor Detail
-
CommonSecurityAutoConfiguration
@Autowired public CommonSecurityAutoConfiguration(AuthorizationConfigurer authorizationConfigurer)
-
-
Method Detail
-
configureGlobalAuthenticationManager
@Bean public org.springframework.beans.factory.InitializingBean configureGlobalAuthenticationManager(org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder auth, org.keycloak.adapters.springsecurity.authentication.KeycloakAuthenticationProvider keycloakAuthenticationProvider)Registers the KeycloakAuthenticationProvider with the authentication manager.
-
keycloakAuthenticationProvider
@Bean @ConditionalOnMissingBean public org.keycloak.adapters.springsecurity.authentication.KeycloakAuthenticationProvider keycloakAuthenticationProvider()
- Overrides:
keycloakAuthenticationProviderin classorg.keycloak.adapters.springsecurity.config.KeycloakWebSecurityConfigurerAdapter
-
authenticatedPrincipalProvider
@Bean @ConditionalOnMissingBean public org.activiti.api.runtime.shared.security.SecurityContextPrincipalProvider authenticatedPrincipalProvider()
-
keycloakAccessTokenProvider
@Bean @ConditionalOnMissingBean public KeycloakAccessTokenProvider keycloakAccessTokenProvider()
-
keycloakAccessTokenValidator
@Bean @ConditionalOnMissingBean public KeycloakAccessTokenValidator keycloakAccessTokenValidator()
-
principalIdentityProvider
@Bean @ConditionalOnMissingBean public org.activiti.api.runtime.shared.security.PrincipalIdentityProvider principalIdentityProvider(KeycloakAccessTokenProvider keycloakAccessTokenProvider, KeycloakAccessTokenValidator keycloakAccessTokenValidator)
-
keycloakAccessTokenPrincipalGroupsProvider
@Bean @Order(-2147483648) @ConditionalOnMissingBean public KeycloakAccessTokenPrincipalGroupsProvider keycloakAccessTokenPrincipalGroupsProvider(KeycloakAccessTokenProvider keycloakAccessTokenProvider, KeycloakAccessTokenValidator keycloakAccessTokenValidator)
-
keycloakAccessTokenPrincipalRolesProvider
@Bean @Order(-2147483648) @ConditionalOnMissingBean public KeycloakAccessTokenPrincipalRolesProvider keycloakAccessTokenPrincipalRolesProvider(KeycloakAccessTokenProvider keycloakAccessTokenProvider, KeycloakAccessTokenValidator keycloakAccessTokenValidator)
-
principalGroupsProviderChain
@Bean @ConditionalOnMissingBean public KeycloakPrincipalGroupsProviderChain principalGroupsProviderChain(List<org.activiti.api.runtime.shared.security.PrincipalGroupsProvider> principalGroupsProviders)
-
principalRolesProviderChain
@Bean @ConditionalOnMissingBean public KeycloakPrincipalRolesProviderChain principalRolesProviderChain(List<org.activiti.api.runtime.shared.security.PrincipalRolesProvider> principalRolesProviders)
-
securityManager
@Bean @ConditionalOnMissingBean public org.activiti.api.runtime.shared.security.SecurityManager securityManager(org.activiti.api.runtime.shared.security.SecurityContextPrincipalProvider authenticatedPrincipalProvider, org.activiti.api.runtime.shared.security.PrincipalIdentityProvider principalIdentityProvider, KeycloakPrincipalGroupsProviderChain principalGroupsProvider, KeycloakPrincipalRolesProviderChain principalRolesProviderChain)
-
securityContextTokenProvider
@Bean @ConditionalOnMissingBean public org.activiti.api.runtime.shared.security.SecurityContextTokenProvider securityContextTokenProvider()
-
httpSessionManager
@Bean @ConditionalOnMissingBean(org.keycloak.adapters.springsecurity.management.HttpSessionManager.class) protected org.keycloak.adapters.springsecurity.management.HttpSessionManager httpSessionManager()
- Overrides:
httpSessionManagerin classorg.keycloak.adapters.springsecurity.config.KeycloakWebSecurityConfigurerAdapter
-
sessionAuthenticationStrategy
@Bean @ConditionalOnMissingBean protected org.springframework.security.web.authentication.session.SessionAuthenticationStrategy sessionAuthenticationStrategy()
Defines the session authentication strategy.- Specified by:
sessionAuthenticationStrategyin classorg.keycloak.adapters.springsecurity.config.KeycloakWebSecurityConfigurerAdapter
-
-