java - Not being able to provide custom authentication provider for the spring security -

-

i want have custom authentication provider spring security , have implemented 

@component public class apicustomauthenticationprovider implements authenticationprovider { @override public authentication authenticate(authentication authentication) throws authenticationexception {  system.out.println("ahsgdvjasdhgjasjdh"); return new usernamepasswordauthenticationtoken("aman", "12345"); } @override public boolean supports(class<?> authentication) {     return (usernamepasswordauthenticationtoken.class.isassignablefrom(authentication));      } }

right don't have logic want see if spring security using authentication provider .

i have security config file as

@configuration @enablewebsecurity //@importresource("classpath:/security/spring_saml_sso_security.xml")  public class securityconfig extends websecurityconfigureradapter { /*@autowired metadatageneratorfilter metadatageneratorfilter;  @autowired filterchainproxy samlfilter;  @autowired samlentrypoint samlentrypoint; */  @autowired private customuserdetailsservice customuserdetailsservice;     @override protected void configure(httpsecurity http) throws exception {       try {         http          .csrf().disable()          .authorizerequests()          .antmatchers("/static/**").permitall()          .antmatchers("/settings/api/**").permitall()          .antmatchers("/api/**").permitall()          .anyrequest().authenticated()          .and()          .formlogin()          .loginpage("/login").permitall()          .loginprocessingurl("/login")         // .usernameparameter("username").passwordparameter("password")          .defaultsuccessurl("/index",true)          .and()          .httpbasic();     //   .defaultsuccessurl("/", true); } catch (exception e) {         // todo auto-generated catch block         system.out.println("sadhiasdniaaaaaaaaaaaaaaaa:");         e.printstacktrace();     } } @bean public apicustomauthenticationprovider apicustomauthenticationprovider() {     return new apicustomauthenticationprovider();     } }

i want know if 

@bean public apicustomauthenticationprovider apicustomauthenticationprovider() {     return new apicustomauthenticationprovider();

is correct way of telling spring security use custom authentication manager .

you need add in spring security config:

@autowired public void configureglobal(authenticationmanagerbuilder auth) throws exception {     auth.authenticationprovider(new apicustomauthenticationprovider()); }

or

auth.authenticationprovider(apicustomauthenticationprovider())

and reminder, if return token :

usernamepasswordauthenticationtoken("aman", "12345"),

spring not give authorization user. instead need assign role : 

list<grantedauthority> grantedauths = new arraylist<grantedauthority>(); grantedauths.add(new simplegrantedauthority("role_user")); usernamepasswordauthenticationtoken("aman", "12345",grantedauths) ;

as stated above,you giving user role_user , user can use authenticated page.

hope help.


Comments

Post a Comment

Popular posts from this blog

github - Git errors while pushing -

-
Image
i input "git add -a" , gives me error: "fatal: unknown index entry format 65540000". i looked every other sources , not figure out means. then, tried pushing using sourcetree , got error below: all added codes , few imagefiles. not sure causing problem. last commit did month ago, btw. first commit after upgraded xcode 7.0 version. thanks this first commit after upgraded xcode 7.0 version then try clone again repo xcode7, , add change in new local repo. should work better in clone entirely managed new xcode.
Read more

php - Using grpc in Laravel, "Class 'Grpc\ChannelCredentials' not found." -

-
i trying use grpc in laravel project. this part of composer.json file: "require": { ... "datto/protobuf-php": "dev-master", "google/auth": "^0.7.0", "grpc/grpc": "dev-release-0_13", ... } i have generated php file proto file. placed in app/services/ , included in composer.json autoload.files section. have run composer install without issues. i have created route testing. has following code: $client = new vat_service\vatserviceclient('localhost:50051', [ 'credentials' => grpc\channelcredentials::createinsecure() ]); but receive response class 'grpc\channelcredentials' not found. when visit route. the laravel app running in homestead vagrant box. i don't know how proceed. missing dependency? did miss install something? i have solved problem, not sure of below steps solution. things tried: i installed grpc-beta in homestead box (...
Read more

c++ - How can I delete a QSharedPointer -

-
i have written wrapper around qtextedit use qiodevice. want able use multiple wrapper same qtextedit, may use different text color each wrapper. to make wrapper thread-safe added qmutex protect usage of qtextedit. thinking must use 1 mutex protect 1 qtextedit. i end following implementation, using qsharedpointer protect qtextedit. texteditiodevice.h class texteditiodevice : public qiodevice { q_object public: texteditiodevice(qtextedit * qtextedit, qcolor color, qobject * parent); virtual ~texteditiodevice(); protected: qint64 readdata(char *data, qint64 maxlen); qint64 writedata(const char *data, qint64 len); private: /** * @brief pointer qtextedit */ qpointer<qtextedit> textedit; /** * @brief text color */ qcolor color; /** * @brief shared pointer qtextedit associated mutex */ qsharedpointer<qmutex> mutex; /** * @brief storage qtextedit associated mutexes */ sta...
Read more