Changeset 4985

Timestamp:

04/15/14 17:36:50 (10 years ago)

Author:

olhsha@mpi.nl

Message:

restored simple spring authentication

Location:

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend

Files:

• nb-configuration.xml (deleted)
• pom.xml (modified) (4 diffs)
• src/main/java/eu/dasish/annotation/backend/dao/DBIntegrityService.java (modified) (1 diff)
• src/main/java/eu/dasish/annotation/backend/dao/impl/DBIntegrityServiceImlp.java (modified) (1 diff)
• src/main/java/eu/dasish/annotation/backend/rest/AutheticationResource.java (modified) (3 diffs)
• src/main/java/eu/dasish/annotation/backend/rest/DebugResource.java (modified) (1 diff)
• src/main/java/eu/dasish/annotation/backend/rest/ResourceResource.java (modified) (1 diff)
• src/main/resources/spring-config/springSecurity.xml (added)
• src/main/webapp/WEB-INF/web.xml (modified) (5 diffs)

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/pom.xml

@@ -16 +16 @@
     <dependencies>
         <dependency>
+            <groupId>javax.servlet</groupId>
+            <artifactId>javax.servlet-api</artifactId>
+            <version>3.0.1</version>
+            <scope>provided</scope>            
+        </dependency>  
+        <dependency>
+            <groupId>javax.servlet</groupId>
+            <artifactId>servlet-api</artifactId>
+            <version>2.5</version>
+            <scope>provided</scope>
+        </dependency>        
+        <dependency>
             <groupId>com.sun.jersey</groupId>
             <artifactId>jersey-servlet</artifactId>
@@ -36 +48 @@
             <artifactId>jersey-test-framework-grizzly2</artifactId>
             <version>${jersey.version}</version>
+            <exclusions>
+                <exclusion>
+                    <artifactId>javax.servlet</artifactId>
+                    <groupId>org.glassfish</groupId>
+                </exclusion>
+            </exclusions>
         </dependency>
         <dependency>
@@ -70 +88 @@
         </dependency>
         <dependency>
+            <groupId>org.springframework.security</groupId>
+            <artifactId>spring-security-config</artifactId>
+            <version>${spring.version}</version>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.security</groupId>
+            <artifactId>spring-security-web</artifactId>
+            <version>${spring.version}</version>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.security</groupId>
+            <artifactId>spring-security-core</artifactId>      
+            <version>${spring.version}</version>
+        </dependency>
+        <dependency>
             <groupId>org.hsqldb</groupId>
             <artifactId>hsqldb</artifactId>
@@ -108 +141 @@
             <version>${slf4j.version}</version>
         </dependency>
-<!--        <dependency>
-            <groupId>javax.servlet</groupId>
-            <artifactId>servlet-api</artifactId>
-            <version>2.5</version>
-            <scope>provided</scope>
-        </dependency>     
-    -->
         <dependency>
             <groupId>de.mpg.mpgaai</groupId>

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/src/main/java/eu/dasish/annotation/backend/dao/DBIntegrityService.java

@@ -322 +322 @@
     boolean createAnnotationInNotebook(Number notebookID, Annotation annotation, Number ownerID) throws NotInDataBaseException;
 
-    public Principal createShibbolizedPrincipal(String remoteID);
+    public Principal createPrincipalRecord(String remoteID);
     
     /**

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/src/main/java/eu/dasish/annotation/backend/dao/impl/DBIntegrityServiceImlp.java

@@ -851 +851 @@
 
     @Override
-    public Principal createShibbolizedPrincipal(String remoteID) {
+    public Principal createPrincipalRecord(String remoteID) {
         return principalDao.createShibbolizedPrincipal(remoteID);
     }

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/src/main/java/eu/dasish/annotation/backend/rest/AutheticationResource.java

@@ -22 +22 @@
 import eu.dasish.annotation.schema.Principal;
 import java.io.IOException;
-import java.sql.SQLException;
+import javax.servlet.ServletException;
 import javax.ws.rs.GET;
 import javax.ws.rs.Path;
@@ -38 +38 @@
 @Component
 @Path("/authentication")
-@Transactional(rollbackFor = {Exception.class, SQLException.class, IOException.class, ParserConfigurationException.class})
+@Transactional(rollbackFor = {Exception.class, IOException.class, ParserConfigurationException.class})
 public class AutheticationResource extends ResourceResource {
+
+  
 
     @GET
@@ -65 +67 @@
     }
 
-
-
     @GET
     @Produces(MediaType.TEXT_XML)
     @Path("logout")
     @Transactional(readOnly = true)
-    public void logout() throws IOException {
+    public void logout() throws IOException, ServletException {
+        httpServletRequest.getSession().invalidate();
         httpServletResponse.sendRedirect(context.getInitParameter("eu.dasish.annotation.backend.logout"));
     }
-
-    
 }

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/src/main/java/eu/dasish/annotation/backend/rest/DebugResource.java

@@ -92 +92 @@
     @Transactional(readOnly = true)
     public String getLoggedInRemoteID() {
-        return httpServletRequest.getRemoteUser();
+        return (httpServletRequest.getRemoteUser() != null) ? httpServletRequest.getRemoteUser() : "Null";
     }
 

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/src/main/java/eu/dasish/annotation/backend/rest/ResourceResource.java

@@ -61 +61 @@
         String remotePrincipal = httpServletRequest.getRemoteUser();
         verboseOutput = new VerboseOutput(loggerServer);
-        if (!remotePrincipal.equals("anonymous")) {
-            try {
-                return dbIntegrityService.getPrincipalInternalIDFromRemoteID(remotePrincipal);
-            } catch (NotInDataBaseException e) {
-                loggerServer.info(e.toString());
-                loggerServer.info("The record for the user with the Shibboleth id " + remotePrincipal + " will be generated now automatically.");
+        if (remotePrincipal != null) {
+            if (!remotePrincipal.equals("anonymous")) {
                 try {
+                    return dbIntegrityService.getPrincipalInternalIDFromRemoteID(remotePrincipal);
+                } catch (NotInDataBaseException e) {
+                    loggerServer.info(e.toString());
+                    loggerServer.info("The record for the user with the Shibboleth id " + remotePrincipal + " will be generated now automatically.");
                     try {
-                        return dbIntegrityService.addPrincipal(dbIntegrityService.createShibbolizedPrincipal(remotePrincipal), remotePrincipal);
-                    } catch (PrincipalExists e2) {
-                        loggerServer.info(e2.toString());
-                        httpServletResponse.sendError(HttpServletResponse.SC_INTERNAL_SERVER_ERROR, e2.toString());
+                        try {
+                            return dbIntegrityService.addPrincipal(dbIntegrityService.createPrincipalRecord(remotePrincipal), remotePrincipal);
+                        } catch (PrincipalExists e2) {
+                            loggerServer.info(e2.toString());
+                            httpServletResponse.sendError(HttpServletResponse.SC_INTERNAL_SERVER_ERROR, e2.toString());
+                            return null;
+                        }
+                    } catch (NotInDataBaseException e1) {
+                        loggerServer.info(e1.toString());
+                        httpServletResponse.sendError(HttpServletResponse.SC_INTERNAL_SERVER_ERROR, e1.toString());
                         return null;
                     }
-                } catch (NotInDataBaseException e1) {
-                    loggerServer.info(e1.toString());
-                    httpServletResponse.sendError(HttpServletResponse.SC_INTERNAL_SERVER_ERROR, e1.toString());
-                    return null;
                 }
+            } else {
+                loggerServer.info("Shibboleth fall-back.  Logged in as 'anonymous' with no rights.");
+                httpServletResponse.sendError(HttpServletResponse.SC_UNAUTHORIZED, " Shibboleth fall-back.  Logged in as 'anonymous' with no rights.");
+                return null;
             }
         } else {
-            loggerServer.info("Shibboleth fall-back.  Logged in as 'anonymous' with no rights.");
-            httpServletResponse.sendError(HttpServletResponse.SC_UNAUTHORIZED, " Shibboleth fall-back.  Logged in as 'anonymous' with no rights.");
+            loggerServer.info("Null principal");
+            httpServletResponse.sendError(HttpServletResponse.SC_UNAUTHORIZED, " Null principal");
             return null;
         }

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/src/main/webapp/WEB-INF/web.xml

@@ -35 +35 @@
         <param-name>eu.dasish.annotation.backend.schemaLocation</param-name>
         <param-value>http://www.dasish.eu/ns/addit https://svn.clarin.eu/DASISH/t5.6/schema/trunk/annotator-schema/src/main/resources/DASISH-schema.xsd</param-value>
-    <!-- <param-value>http://www.dasish.eu/ns/addit file:/Users/olhsha/repositories/DASISH/t5.6/schema/trunk/annotator-schema/src/main/target/DASISH-schema.xsd</param-value> -->
+        <!-- <param-value>http://www.dasish.eu/ns/addit file:/Users/olhsha/repositories/DASISH/t5.6/schema/trunk/annotator-schema/src/main/target/DASISH-schema.xsd</param-value> -->
     </context-param>
     <context-param>
@@ -47 +47 @@
     <context-param>
         <param-name>eu.dasish.annotation.backend.logout</param-name>
-        <param-value>/ds/webannotator?shhaaDo=lO</param-value>
+        <!-- <param-value>/ds/webannotator?shhaaDo=lO</param-value> -->
+        <!-- <param-value>/ds/webannotator/j_spring_security_logout</param-value> -->
+        <param-value>/annotator-backend/j_spring_security_logout</param-value>
     </context-param>
     
@@ -82 +84 @@
     </servlet-mapping>
     
-<!--   <security-constraint>
+    <!--   <security-constraint>
         <display-name>Protected backend localhost</display-name>
         <web-resource-collection>
@@ -105 +107 @@
         <role-name>tomcat</role-name>
     </security-role> -->
-    
+   
+ <!-- Spring security -->
     <filter>
+        <filter-name>springSecurityFilterChain</filter-name>
+        <filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class>
+    </filter>
+    <filter-mapping>
+        <filter-name>springSecurityFilterChain</filter-name>
+        <url-pattern>/*</url-pattern>
+    </filter-mapping>
+       
+    <!--  Shibboleth filter -->
+<!--    <filter>
         <filter-name>AAIFilter</filter-name>
         <filter-class>de.mpg.aai.shhaa.AuthFilter</filter-class>
@@ -113 +126 @@
         <filter-name>AAIFilter</filter-name>
         <url-pattern>/*</url-pattern>
-    </filter-mapping> 
+    </filter-mapping> -->