How to secure Apache Camel rest endpoint with Spring Security and OAuth2 -

-

i'm working on spring boot application configured sso/oauth2 security. authentication works fine rest controllers , need secure apache camel route rest endpoint.

as understand there several ways how it:

  1. by adding auth processor route
  2. by adding policy (springsecurityauthorizationpolicy) route
  3. by handlers option jetty endpoint

i'm trying adding new auth processor rest endpoint stuck on exception:

org.springframework.security.oauth2.common.exceptions.oauth2exception: no authenticationprovider found org.springframework.security.web.authentication.preauth.preauthenticatedauthenticationtoken

during debugging see org.springframework.security.authentication.providermanager.getproviders() contains 1 provider anonymousauthenticationprovider have register appropriate provider...

can me find right way solve problem please?

@configuration public class securityconfig extends websecurityconfigureradapter {    protected void configure(httpsecurity http) throws exception {     http.csrf().disable().authorizerequests().anyrequest().permitall();   }    @configuration   @enableresourceserver   protected static class resourceserverconfiguration extends resourceserverconfigureradapter {      @value("${oauth2.token.endpoint}")     private string tokenendpoint;      @bean     public resourceservertokenservices tokenservice() {       remotetokenservices tokenservices = new remotetokenservices();       tokenservices.setclientid("clientid");       tokenservices.setclientsecret("clientsecret");       tokenservices.setchecktokenendpointurl(tokenendpoint);       return tokenservices;     }      @override     public void configure(httpsecurity http) throws exception {       http.authorizerequests().anyrequest().authenticated();     }   }  }  @configuration public class embeddedserverroute {   @bean   public routesbuilder embeddedserver() {     return new routebuilder() {       @override       public void configure() throws exception {         restconfiguration().component("jetty").port("8081").bindingmode(restbindingmode.json);       }     };   } }   @component public class resttestroute extends routebuilder {    @autowired   private authprocessor authprocessor;    @override   public void configure() throws exception {     from("rest:get:/test").process(authprocessor).to("mock:end").end();   } }   @component public class authprocessor implements processor {    @autowired   private authenticationmanager authenticationmanager;    private tokenextractor tokenextractor = new bearertokenextractor();    private authenticationdetailssource<httpservletrequest, ?> authenticationdetailssource = new oauth2authenticationdetailssource();    @override   public void process(exchange exchange) throws exception {     httpservletrequest request = exchange.getin().getbody(httpservletrequest.class);     subject subject = new subject();     authentication auth = getauth(request);     subject.getprincipals().add(auth);     exchange.getin().setheader(exchange.authentication, subject);   }    private authentication getauth(httpservletrequest request) throws oauth2exception {     authentication authentication = null;     try {       authentication = tokenextractor.extract(request);       if (authentication != null) {         request.setattribute(oauth2authenticationdetails.access_token_value, authentication.getprincipal());          if (authentication instanceof abstractauthenticationtoken) {           abstractauthenticationtoken needsdetails = (abstractauthenticationtoken) authentication;           needsdetails.setdetails(authenticationdetailssource.builddetails(request));         }         return authenticationmanager.authenticate(authentication);       }     } catch (exception e) {       throw new oauth2exception(e.getmessage());     }     throw new oauth2exception("not authorized view resource");   }  }

as final solution decided use spring boot embedded servlet container instead of apache camel rest component. secured spring security. done creating additional beans:

  @bean   public servletregistrationbean servletregistrationbean() {     springserverservlet serverservlet = new springserverservlet();     servletregistrationbean regbean = new servletregistrationbean(serverservlet, "/camel/*");     map<string, string> params = new hashmap<>();     params.put("org.restlet.component", "restletcomponent");     regbean.setinitparameters(params);     return regbean;   }    @bean   public component restletcomponent() {     return new component();   }    @bean   public restletcomponent restletcomponentservice() {     return new restletcomponent(restletcomponent());   }

Comments

Post a Comment

Popular posts from this blog

magento2 - Magento 2 admin grid add filter to collection -

-
i created grid in admin xml ui components. need filter collection via url parameter , dont know how achieve that. tried inject requestinterface collection, filter didnt work. di.xml <virtualtype name="slidelistingdataprovider" type="magento\framework\view\element\uicomponent\dataprovider\dataprovider"> <arguments> <argument name="collection" xsi:type="object" shared="false">xxx\xxx\model\resourcemodel\grid\slide\collection</argument> <argument name="filterpool" xsi:type="object" shared="false">slidelistingfilterpool</argument> <!-- define new object filters --> </arguments> </virtualtype> <virtualtype name="slidelistingfilterpool" type="magento\framework\view\element\uicomponent\dataprovider\filterpool"> <arguments> <argument name="applier...
Read more

Android volley - avoid multiple requests of the same kind to the server? -

-
i using volley upload list of images server. happens within service. once image uploaded remove list. problem arises when internet connection breaks. when internet connection breaks , comes again thinking of adding images yet uploaded request queue. this can result in more 1 copy of same image saved on server request same image might have gone through before getting rseponse. how can address scenario? i'm not quite sure why you're using service schedule requests volley automatically runs it's request in seperate thread. nevertheless can listen both request results, successful , unsuccessful adding listeners. you can remove image list schedule request using volley. if succeeds can carry on desired, if fails can add again list. public static request getimageuploadrequest(final string image) { response.listener<t> responselistener = new response.listener<t>() { @override public void onresponse(t response...
Read more

Combining PHP Registration and Login into one class with multiple functions in one PHP file -

-
i'm trying combine registration, activation , login scripts php website backend script front end developer can pass variables different forms to. my question whether appropriate approach this. don't want have lot of php files different pieces of application developing. far have written following 2 functions login, register , activate user front end developer can call: <?php /** * created phpstorm. * user: karl * date: 26/07/2016 * time: 02:25 */ class users { function register_user($email, $password, $user_name) { $server_name = "localhost"; $u_name = "root"; $db_password = "root"; $db_name = "betamath_graspe"; //email notification variable $from_address="info@slack.com"; //registration form $msg_reg_user='username taken. please choose different username'; $msg_reg_email='email registered'; $msg_reg_active=...
Read more