org.finra.herd.app.config

Class AppSpringModuleConfig

java.lang.Object

org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration

org.finra.herd.app.config.AppSpringModuleConfig

All Implemented Interfaces:

org.springframework.beans.factory.Aware, org.springframework.beans.factory.SmartInitializingSingleton, org.springframework.context.annotation.ImportAware

@Configuration
 @ComponentScan(value="org.finra.herd.app",
               excludeFilters=)
 @EnableGlobalMethodSecurity(securedEnabled=true)
public class AppSpringModuleConfig
extends org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration

This is the Spring root configuration for the web application.

Constructor Summary

Constructors

Constructor and Description
AppSpringModuleConfig()

Method Summary

Modifier and Type	Method and Description
protected org.springframework.security.access.AccessDecisionManager	accessDecisionManager() Overridden to remove role prefix for the role voter.
org.springframework.security.authentication.AuthenticationManager	authenticationManager()
org.springframework.security.web.firewall.HttpFirewall	defaultHttpFirewall() Gets a default http firewall, default to DefaultHttpFirewall for HttpFirewall to provide backend capability.
org.springframework.security.web.FilterChainProxy	filterChainProxy(TrustedUserAuthenticationFilter trustedUserAuthenticationFilter, HttpHeaderAuthenticationFilter httpHeaderAuthenticationFilter) Gets a filter chain proxy.
HttpHeaderApplicationUserBuilder	httpHeaderApplicationUserBuilder()
HttpHeaderAuthenticationFilter	httpHeaderAuthenticationFilter(org.springframework.security.authentication.AuthenticationManager authenticationManager, HttpHeaderApplicationUserBuilder httpHeaderApplicationUserBuilder)
static Log4jOverridableConfigurer	log4jConfigurer() The Log4J overridable configurer that will handle our Log4J initialization for the herd application.
TrustedApplicationUserBuilder	trustedApplicationUserBuilder()
TrustedUserAuthenticationFilter	trustedUserAuthenticationFilter(org.springframework.security.authentication.AuthenticationManager authenticationManager, TrustedApplicationUserBuilder trustedApplicationUserBuilder)

Methods inherited from class org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration

afterInvocationManager, afterSingletonsInstantiated, configure, createExpressionHandler, customMethodSecurityMetadataSource, getExpressionHandler, methodSecurityInterceptor, methodSecurityMetadataSource, preInvocationAuthorizationAdvice, runAsManager, setApplicationContext, setImportMetadata, setJsr250MethodSecurityMetadataSource, setMethodSecurityExpressionHandler, setObjectPostProcessor

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

AppSpringModuleConfig

public AppSpringModuleConfig()

Method Detail

log4jConfigurer

@Bean
public static Log4jOverridableConfigurer log4jConfigurer()

The Log4J overridable configurer that will handle our Log4J initialization for the herd application.

IMPORTANT: Ensure this method is static since the returned Log4jOverridableConfigurer is a bean factory post processor (BFPP). If it weren't static, autowiring and injection on this @Configuration class won't work due to lifecycle issues. See "Bootstrapping" comment in @Bean annotation for more details.

Returns:

the Log4J overridable configurer.

filterChainProxy

@Bean
public org.springframework.security.web.FilterChainProxy filterChainProxy(TrustedUserAuthenticationFilter trustedUserAuthenticationFilter,
                                                                                HttpHeaderAuthenticationFilter httpHeaderAuthenticationFilter)

Gets a filter chain proxy.

Parameters:

trustedUserAuthenticationFilter - the trusted user authentication filter.

httpHeaderAuthenticationFilter - the HTTP header authentication filter.

Returns:

the filter chain proxy.

defaultHttpFirewall

@Bean
public org.springframework.security.web.firewall.HttpFirewall defaultHttpFirewall()

Gets a default http firewall, default to DefaultHttpFirewall for HttpFirewall to provide backend capability.

Returns:

the default http firewall.

trustedUserAuthenticationFilter

@Bean
public TrustedUserAuthenticationFilter trustedUserAuthenticationFilter(org.springframework.security.authentication.AuthenticationManager authenticationManager,
                                                                             TrustedApplicationUserBuilder trustedApplicationUserBuilder)

trustedApplicationUserBuilder

@Bean
public TrustedApplicationUserBuilder trustedApplicationUserBuilder()

httpHeaderAuthenticationFilter

@Bean
public HttpHeaderAuthenticationFilter httpHeaderAuthenticationFilter(org.springframework.security.authentication.AuthenticationManager authenticationManager,
                                                                           HttpHeaderApplicationUserBuilder httpHeaderApplicationUserBuilder)

httpHeaderApplicationUserBuilder

@Bean
public HttpHeaderApplicationUserBuilder httpHeaderApplicationUserBuilder()

authenticationManager

@Bean
public org.springframework.security.authentication.AuthenticationManager authenticationManager()

Overrides:

authenticationManager in class org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration

accessDecisionManager

protected org.springframework.security.access.AccessDecisionManager accessDecisionManager()

Overridden to remove role prefix for the role voter. The application does not require any other access decision voters in the default configuration.

Overrides:

accessDecisionManager in class org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration