java - Not being able to provide custom authentication provider for the spring security -

-

i want have custom authentication provider spring security , have implemented 

@component public class apicustomauthenticationprovider implements authenticationprovider { @override public authentication authenticate(authentication authentication) throws authenticationexception {  system.out.println("ahsgdvjasdhgjasjdh"); return new usernamepasswordauthenticationtoken("aman", "12345"); } @override public boolean supports(class<?> authentication) {     return (usernamepasswordauthenticationtoken.class.isassignablefrom(authentication));      } }

right don't have logic want see if spring security using authentication provider .

i have security config file as

@configuration @enablewebsecurity //@importresource("classpath:/security/spring_saml_sso_security.xml")  public class securityconfig extends websecurityconfigureradapter { /*@autowired metadatageneratorfilter metadatageneratorfilter;  @autowired filterchainproxy samlfilter;  @autowired samlentrypoint samlentrypoint; */  @autowired private customuserdetailsservice customuserdetailsservice;     @override protected void configure(httpsecurity http) throws exception {       try {         http          .csrf().disable()          .authorizerequests()          .antmatchers("/static/**").permitall()          .antmatchers("/settings/api/**").permitall()          .antmatchers("/api/**").permitall()          .anyrequest().authenticated()          .and()          .formlogin()          .loginpage("/login").permitall()          .loginprocessingurl("/login")         // .usernameparameter("username").passwordparameter("password")          .defaultsuccessurl("/index",true)          .and()          .httpbasic();     //   .defaultsuccessurl("/", true); } catch (exception e) {         // todo auto-generated catch block         system.out.println("sadhiasdniaaaaaaaaaaaaaaaa:");         e.printstacktrace();     } } @bean public apicustomauthenticationprovider apicustomauthenticationprovider() {     return new apicustomauthenticationprovider();     } }

i want know if 

@bean public apicustomauthenticationprovider apicustomauthenticationprovider() {     return new apicustomauthenticationprovider();

is correct way of telling spring security use custom authentication manager .

you need add in spring security config:

@autowired public void configureglobal(authenticationmanagerbuilder auth) throws exception {     auth.authenticationprovider(new apicustomauthenticationprovider()); }

or

auth.authenticationprovider(apicustomauthenticationprovider())

and reminder, if return token :

usernamepasswordauthenticationtoken("aman", "12345"),

spring not give authorization user. instead need assign role : 

list<grantedauthority> grantedauths = new arraylist<grantedauthority>(); grantedauths.add(new simplegrantedauthority("role_user")); usernamepasswordauthenticationtoken("aman", "12345",grantedauths) ;

as stated above,you giving user role_user , user can use authenticated page.

hope help.


Comments

Post a Comment

Popular posts from this blog

java - Static nested class instance -

-
this question has answer here: java inner class , static nested class 23 answers i came across in java, know static nested class why create instance of 'static'. isn't whole idea of 'static' use without instance? understand concept of inner classes, why (and frankly how possible to) create 'instance' of 'static' member @ ? why this: 1- outerclass.staticnestedclass nestedobject = new outerclass.staticnestedclass(); 2- nestedobject.anestedclassmethod(); and not this: 1- outerclass outerinstance=new outerclass(); 2- outerinstance.staticnestedclass.anestedclassmethod(); use on inner classes, keyword static indicates can access inner class without instance of outer class. for example: public class outer { public static class inner { /* code here. */ } } with construction, can create instance of inn
Read more

c# - Bluetooth LE CanUpdate Characteristic property -

-
i building xamarin.forms cross platform mobile app, uses monkey.robotics bluetoth low energy functionality. connecting mbed based implimentation of custom gatt service . in xamarin c#, triggers characteristic. canupdate property in monkey.robotics? this standard example c# based on: if (characteristic.canupdate) { characteristic.valueupdated += (s, e) => { debug.writeline("characteristic.valueupdated"); device.begininvokeonmainthread( () => { updatedisplay(characteristic); }); isbusy = false; // spin until first result received }; isbusy = true; characteristic.startupdates(); } this has been working, since changed own custom gatt service connecting to, canupdate property false. property , how triggered? me debugging gatt service code. thanks monkey.robotics open sour
Read more

JavaScript - Replace variable from string in all occurrences -

-
ok, know if have character '-' , want remove in places in string javascript, ... someword = someword.replace(/-/g, ''); but, when applying array of characters, s not working ... const badchars = ('\/:*?"<>|').split(''); let filename = title.replace(/ /g, '-').tolocalelowercase(); (let item = 0; item < badchars.length; item++) { // below not work global '/ /g' filename = filename.replace(/badchars[item]/g, ''); } any ideas? /badchars[item]/g looks badchars , literally, followed i , t , e , or m . if you're trying use character badchars[item] , you'll need use regexp constructor, , you'll need escape regex-specific characters. escaping regular expression has been well-covered . using that: filename = filename.replace(new regexp(regexp.quote(badchars[item]), 'g'), ''); but , don't want that. want character class: let filename = title.replac
Read more