Nemcio/SCM-Manager
1
0
Fork 0
mirror of https://github.com/scm-manager/scm-manager.git synced 2026-02-06 06:39:15 +01:00
Code Issues Packages Projects Releases Activity
Files
3e6e7bd4cb3118801099985c20c04bfa7fb181a5
SCM-Manager/scm-webapp/src/main/java/sonia/scm/security/AnonymousRealm.java

45 lines
1.3 KiB
Java
Raw Normal View History

do not add _anonymous to group _authenticated / use AnonymousToken for anonymous access in authenticationFilter
2019-10-09 16:41:55 +02:00
package sonia.scm.security;
import com.google.common.annotations.VisibleForTesting;
import com.google.inject.Inject;
import org.apache.shiro.authc.AuthenticationInfo;
import org.apache.shiro.authc.AuthenticationToken;
implement anonymous realm // use constant for _anonymous user
2019-10-10 13:40:40 +02:00
import org.apache.shiro.authc.credential.AllowAllCredentialsMatcher;
do not add _anonymous to group _authenticated / use AnonymousToken for anonymous access in authenticationFilter
2019-10-09 16:41:55 +02:00
import org.apache.shiro.realm.AuthenticatingRealm;
implement anonymous realm // use constant for _anonymous user
2019-10-10 13:40:40 +02:00
import sonia.scm.SCMContext;
import sonia.scm.plugin.Extension;
do not add _anonymous to group _authenticated / use AnonymousToken for anonymous access in authenticationFilter
2019-10-09 16:41:55 +02:00
implement anonymous realm // use constant for _anonymous user
2019-10-10 13:40:40 +02:00
import javax.inject.Singleton;
add unit tests for anonymous realm
2019-10-17 09:26:36 +02:00
import static com.google.common.base.Preconditions.checkArgument;
implement anonymous realm // use constant for _anonymous user
2019-10-10 13:40:40 +02:00
@Singleton
@Extension
do not add _anonymous to group _authenticated / use AnonymousToken for anonymous access in authenticationFilter
2019-10-09 16:41:55 +02:00
public class AnonymousRealm extends AuthenticatingRealm {
/**
* realm name
*/
@VisibleForTesting
static final String REALM = "AnonymousRealm";
/**
* dao realm helper
*/
private final DAORealmHelper helper;
@Inject
public AnonymousRealm(DAORealmHelperFactory helperFactory) {
this.helper = helperFactory.create(REALM);
setAuthenticationTokenClass(AnonymousToken.class);
implement anonymous realm // use constant for _anonymous user
2019-10-10 13:40:40 +02:00
setCredentialsMatcher(new AllowAllCredentialsMatcher());
do not add _anonymous to group _authenticated / use AnonymousToken for anonymous access in authenticationFilter
2019-10-09 16:41:55 +02:00
}
@Override
add unit tests for anonymous realm
2019-10-17 09:26:36 +02:00
protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken authenticationToken) {
checkArgument(authenticationToken instanceof AnonymousToken, "%s is required", AnonymousToken.class);
implement anonymous realm // use constant for _anonymous user
2019-10-10 13:40:40 +02:00
return helper.authenticationInfoBuilder(SCMContext.USER_ANONYMOUS).build();
do not add _anonymous to group _authenticated / use AnonymousToken for anonymous access in authenticationFilter
2019-10-09 16:41:55 +02:00
}
}
Reference in New Issue Copy Permalink