io.getlime.security.powerauth.rest.api.spring.provider

Class PowerAuthAuthenticationProvider

java.lang.Object

io.getlime.security.powerauth.rest.api.base.provider.PowerAuthAuthenticationProviderBase

io.getlime.security.powerauth.rest.api.spring.provider.PowerAuthAuthenticationProvider

All Implemented Interfaces:

org.springframework.security.authentication.AuthenticationProvider

@Component
public class PowerAuthAuthenticationProvider
extends PowerAuthAuthenticationProviderBase
implements org.springframework.security.authentication.AuthenticationProvider

Implementation of PowerAuth authentication provider.

Author:

Petr Dvorak, petr@lime-company.eu

Constructor Summary

Constructors

Constructor and Description
PowerAuthAuthenticationProvider()

Method Summary

Modifier and Type	Method and Description
org.springframework.security.core.Authentication	authenticate(org.springframework.security.core.Authentication authentication)
void	setApplicationConfiguration(PowerAuthApplicationConfiguration applicationConfiguration)
void	setPowerAuthClient(io.getlime.security.powerauth.soap.spring.client.PowerAuthServiceClient powerAuthClient)
boolean	supports(Class<?> authentication)
PowerAuthApiAuthentication	validateRequestSignature(String httpMethod, byte[] httpBody, String requestUriIdentifier, String httpAuthorizationHeader, List<io.getlime.security.powerauth.crypto.lib.enums.PowerAuthSignatureTypes> allowedSignatureTypes) Validate the signature from the PowerAuth 2.0 HTTP header against the provided HTTP method, request body and URI identifier.
PowerAuthApiAuthentication	validateToken(String tokenHeader, List<io.getlime.security.powerauth.crypto.lib.enums.PowerAuthSignatureTypes> allowedSignatureTypes)

Methods inherited from class io.getlime.security.powerauth.rest.api.base.provider.PowerAuthAuthenticationProviderBase

validateRequestSignature, validateRequestSignature, validateRequestSignature, validateToken

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

PowerAuthAuthenticationProvider

public PowerAuthAuthenticationProvider()

Method Detail

setPowerAuthClient

@Autowired
public void setPowerAuthClient(io.getlime.security.powerauth.soap.spring.client.PowerAuthServiceClient powerAuthClient)

setApplicationConfiguration

@Autowired(required=false)
public void setApplicationConfiguration(PowerAuthApplicationConfiguration applicationConfiguration)

authenticate

public org.springframework.security.core.Authentication authenticate(org.springframework.security.core.Authentication authentication)
                                                              throws org.springframework.security.core.AuthenticationException

Specified by:

authenticate in interface org.springframework.security.authentication.AuthenticationProvider

Throws:

org.springframework.security.core.AuthenticationException

supports

public boolean supports(Class<?> authentication)

Specified by:

supports in interface org.springframework.security.authentication.AuthenticationProvider

validateRequestSignature

public PowerAuthApiAuthentication validateRequestSignature(String httpMethod,
                                                           byte[] httpBody,
                                                           String requestUriIdentifier,
                                                           String httpAuthorizationHeader,
                                                           List<io.getlime.security.powerauth.crypto.lib.enums.PowerAuthSignatureTypes> allowedSignatureTypes)
                                                    throws PowerAuthAuthenticationException

Validate the signature from the PowerAuth 2.0 HTTP header against the provided HTTP method, request body and URI identifier. Make sure to accept only allowed signatures.

Specified by:

validateRequestSignature in class PowerAuthAuthenticationProviderBase

Parameters:

httpMethod - HTTP method (GET, POST, ...)

httpBody - Body of the HTTP request.

requestUriIdentifier - Request URI identifier.

httpAuthorizationHeader - PowerAuth 2.0 HTTP authorization header.

allowedSignatureTypes - Allowed types of the signature.

Returns:

Instance of a PowerAuthApiAuthenticationImpl on successful authorization.

Throws:

PowerAuthAuthenticationException - In case authorization fails, exception is raised.

validateToken

public PowerAuthApiAuthentication validateToken(String tokenHeader,
                                                List<io.getlime.security.powerauth.crypto.lib.enums.PowerAuthSignatureTypes> allowedSignatureTypes)
                                         throws PowerAuthAuthenticationException

Specified by:

validateToken in class PowerAuthAuthenticationProviderBase

Throws:

PowerAuthAuthenticationException