逆向工程>> dw-header-auth-bundle>> 返回
项目作者: nightowlengineer

项目描述 :
Use a configured header to provide a user into a Dropwizard application, e.g. from an upstream proxy
高级语言: Java
项目地址: git://github.com/nightowlengineer/dw-header-auth-bundle.git
创建时间: 2018-09-29T17:28:55Z
项目社区:https://github.com/nightowlengineer/dw-header-auth-bundle
开源协议:MIT License
下载


Header authentication bundle for Dropwizard

This bundle provides the ability to define a header to take a user (or ‘principal’) ID from, and use as an authenticated
user throughout the application. This is mainly intended for use in applications that sit behind a reverse proxy that
will extract or provide the user information as required. This bundle also registers the RolesAllowedDynamic feature,
meaning you can add @RolesAllowed annotations to restrict calls as needed.

It’s important that any application that relies on authentication done in this manner is properly secured from
malicious requests (for example, by locking down the application to only accept connections from the upstream proxy)

Build Status

Maven Setup

  1. <dependency>
  2.   <groupId>engineer.nightowl</groupId>
  3.   <artifactId>dw-header-auth-bundle</artifactId>
  4.   <version>1.3.5-1</version>
  5. </dependency>

Getting Started

Implement the HeaderAuthConfiguration:

  1. public class SampleConfiguration extends Configuration implements HeaderAuthConfiguration {
  3.   @NotNull
  4.   @JsonProperty("authentication")
  5.   private HeaderAuthConfiguration headerAuthConfiguration;
  7.   @Override
  8.   public HeaderAuthConfiguration getHeaderAuthConfiguration() {
  9.     return headerAuthConfiguration;
  10.   }
  11. }

Add the bundle:

  1. public class SampleService extends Application<SampleConfiguration> {
  2.     public static void main(String[] args) throws Exception {
  3.         new SampleService().run(args);
  4.     }
  6.     @Override
  7.     public void initialize(Bootstrap<SampleConfiguration> bootstrap) {
  9.         // User represents your internal user representation which extends Principal
  10.         // UserService represents your internal user information source which extends PrincipalService
  11.         final HeaderAuthBundle<User, UserService> headerAuthBundle =
  12.             new HeaderAuthBundle<>(User.class, new UserService());
  14.         bootstrap.addBundle(headerAuthBundle);
  15.     }
  17.     @Override
  18.     public void run(SampleConfiguration configuration, Environment environment) {
  19.         ...
  20.     }
  21. }

Inside your service’s configuration yml file, add the header name that should be inspected:

  1. authentication:
  2.   headerName: USER_ID

And that’s it! Any request that is sent to your service will inspect the header USER_ID and use this to return a single
user and their roles from your UserService.