Versions Compared

Old Version 3

changes.mady.by.user Alexandra Aldea

Saved on

compared with

New Version 4

changes.mady.by.user Petru Galanton

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Custom authentication can be provided by implementing the com.aquimablueriq.component.webapi.security.BlueriqAuthentication and can only be used by using a custom authentication provider.

...

Code Block
languagejava
public class CustomBlueriqAuthentication implements BlueriqAuthentication {

    private String userName;
    private List<SimpleGrantedAuthority> authorities;
    private List<String> roles;
    private List<String> teams;
    private boolean authenticated = false;
    private Map<String, String> properties;

	public CustomBlueriqAuthentication() {
      super();
      this.userName = "testUsername";
      this.properties = new HashMap<>();
      this.authorities = Collections.emptyList();
      this.roles = Collections.emptyList();
      this.teams = Collections.emptyList();
    }

    @Override
    public Collection<? extends GrantedAuthority> getAuthorities() {
      return authorities;
    }

    @Override
    public Object getCredentials() {
      return null;
    }

    @Override
    public Object getDetails() {
      return null;
    }

    @Override
    public Object getPrincipal() {
      return userName;
    }

    @Override
    public boolean isAuthenticated() {
      return authenticated;
    }

    @Override
    public void setAuthenticated(boolean isAuthenticated) throws IllegalArgumentException {
      this.authenticated = isAuthenticated;
    }

    @Override
    public String getName() {
      return userName;
    }

    @Override
    public List<String> getTeams() {
      return teams;
    }

    @Override
    public List<String> getRoles() {
      return roles;
    }

    @Override
    public boolean isAnonymous() {
      return false;
    }


    @Override
    public boolean isAutomatic() {
      return false;
    }

    @Override
    public List<String> getPropertyNames() {
      return new ArrayList<>(properties.keySet());
    }

    @Override
    public String getProperty(String name) {
      return properties.get(name);
    }

  }

...


The benefits of implementing the BlueriqAuthentication interface are:

  • roles and teams are automatically added to the IUserData objects created by the built-in IAuthorisationManager
  • custom properties from HTTP headers (as configured in application.properties) are automatically added to the IUserData objects created by the built-in IAuthorisationManager
  • custom properties from OpenID Connect claims  (as configured in application.properties) are automatically added to the IUserData objects created by the built-in IAuthorisationManager