Package org.molgenis.security

Class MolgenisWebAppSecurityConfig

  • All Implemented Interfaces:
    org.springframework.security.config.annotation.SecurityConfigurer<javax.servlet.Filter,​org.springframework.security.config.annotation.web.builders.WebSecurity>, org.springframework.security.config.annotation.web.WebSecurityConfigurer<org.springframework.security.config.annotation.web.builders.WebSecurity>
    @Import(DataServiceClientRegistrationRepository.class)
public abstract class MolgenisWebAppSecurityConfig
extends org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter

    • Constructor Detail

      • MolgenisWebAppSecurityConfig

        public MolgenisWebAppSecurityConfig()

    • Method Detail

      • configure

        protected void configure​(org.springframework.security.config.annotation.web.builders.HttpSecurity http)
                  throws Exception
        Overrides:
        configure in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
        Throws:
        Exception

      • delegatingEntryPoint

        @Bean
public org.springframework.security.web.AuthenticationEntryPoint delegatingEntryPoint()

      • configure

        public void configure​(org.springframework.security.config.annotation.web.builders.WebSecurity web)
               throws Exception
        Specified by:
        configure in interface org.springframework.security.config.annotation.SecurityConfigurer<javax.servlet.Filter,​org.springframework.security.config.annotation.web.builders.WebSecurity>
        Overrides:
        configure in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
        Throws:
        Exception

      • runAsAuthenticationProvider

        @Bean
public org.springframework.security.authentication.AuthenticationProvider runAsAuthenticationProvider()

      • configureUrlAuthorization

        protected abstract void configureUrlAuthorization​(org.springframework.security.config.annotation.web.configurers.ExpressionUrlAuthorizationConfigurer.ExpressionInterceptUrlRegistry expressionInterceptUrlRegistry)

      • roleHierarchy

        protected abstract org.springframework.security.access.hierarchicalroles.RoleHierarchy roleHierarchy()

      • tokenService

        @Bean
public org.molgenis.security.core.token.TokenService tokenService()

      • tokenAuthenticationProvider

        @Bean
public org.springframework.security.authentication.AuthenticationProvider tokenAuthenticationProvider()

      • securityContextRepository

        @Bean
public org.springframework.security.web.context.SecurityContextRepository securityContextRepository()

      • tokenAuthenticationFilter

        @Bean
public javax.servlet.Filter tokenAuthenticationFilter()

      • changePasswordFilter

        @Bean
public javax.servlet.Filter changePasswordFilter()

      • redirectStrategy

        @Bean
public org.springframework.security.web.RedirectStrategy redirectStrategy()

      • roleHierarchyBean

        @Bean
public org.springframework.security.access.hierarchicalroles.RoleHierarchy roleHierarchyBean()

      • roleVoter

        @Bean
public org.springframework.security.access.vote.RoleVoter roleVoter()

      • roleHierarchyAuthoritiesMapper

        @Bean
public org.springframework.security.core.authority.mapping.GrantedAuthoritiesMapper roleHierarchyAuthoritiesMapper()

      • passwordEncoder

        @Bean
public org.springframework.security.crypto.password.PasswordEncoder passwordEncoder()

      • userDetailsService

        @Bean
protected UserDetailsServiceImpl userDetailsService()
        Overrides:
        userDetailsService in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter

      • userDetailsServiceBean

        @Bean
public org.springframework.security.core.userdetails.UserDetailsService userDetailsServiceBean()
                                                                                        throws Exception
        Overrides:
        userDetailsServiceBean in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
        Throws:
        Exception

      • userDetailsChecker

        @Bean
public org.springframework.security.core.userdetails.UserDetailsChecker userDetailsChecker()

      • configure

        protected void configure​(org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder auth)
        Overrides:
        configure in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter

      • authenticationManagerBean

        @Bean
public org.springframework.security.authentication.AuthenticationManager authenticationManagerBean()
                                                                                            throws Exception
        Overrides:
        authenticationManagerBean in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
        Throws:
        Exception

      • authenticationEntryPoint

        @Bean
public org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint authenticationEntryPoint()

      • invalidSessionStrategy

        @Bean
public org.springframework.security.web.session.InvalidSessionStrategy invalidSessionStrategy()

      • httpSessionEventPublisher

        @Bean
public org.springframework.security.web.session.HttpSessionEventPublisher httpSessionEventPublisher()

      • oidcUserService

        @Bean
public org.springframework.security.oauth2.client.oidc.userinfo.OidcUserService oidcUserService()

      • localeResolver

        @Bean
public org.springframework.web.servlet.LocaleResolver localeResolver()