net.devh.boot.grpc.server.security

Class GrpcSecurityAutoConfiguration

java.lang.Object

net.devh.boot.grpc.server.security.GrpcSecurityAutoConfiguration

@Configuration
 @ConditionalOnBean(value=org.springframework.security.authentication.AuthenticationManager.class)
public class GrpcSecurityAutoConfiguration
extends Object

Auto configuration class with the required beans for the spring-security configuration of the grpc server.

To enable security add both an AuthenticationManager and a GrpcAuthenticationReader to the application context. The authentication reader obtains the credentials from the requests which then will be validated by the authentication manager. After that, you can decide how you want to secure your application. Currently these options are available:

• Use Spring Security's annotations. This requires @EnableGlobalMethodSecurity(proxyTargetClass = true, ...).
• Having both an AccessDecisionManager and a GrpcSecurityMetadataSource in the application context.

Note: The order of the beans is important! First the authorization checking interceptor, then the authenticating interceptor and finally the exception translating interceptor. That is necessary because they are executed in the reverse order of being declared.

Constructor Summary

Constructors

Constructor and Description
GrpcSecurityAutoConfiguration()

Method Summary

Modifier and Type	Method and Description
AuthenticatingServerInterceptor	authenticatingServerInterceptor(AuthenticationManager authenticationManager, GrpcAuthenticationReader authenticationReader)
AuthorizationCheckingServerInterceptor	authorizationCheckingServerInterceptor(AccessDecisionManager accessDecisionManager, GrpcSecurityMetadataSource securityMetadataSource)
ExceptionTranslatingServerInterceptor	exceptionTranslatingServerInterceptor()

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

GrpcSecurityAutoConfiguration

public GrpcSecurityAutoConfiguration()

Method Detail

authorizationCheckingServerInterceptor

@Bean
 @ConditionalOnMissingBean
 @ConditionalOnBean(value={org.springframework.security.access.AccessDecisionManager.class,GrpcSecurityMetadataSource.class})
public AuthorizationCheckingServerInterceptor authorizationCheckingServerInterceptor(AccessDecisionManager accessDecisionManager,
                                                                                                                                                                                                                                                    GrpcSecurityMetadataSource securityMetadataSource)

authenticatingServerInterceptor

@Bean
 @ConditionalOnMissingBean
public AuthenticatingServerInterceptor authenticatingServerInterceptor(AuthenticationManager authenticationManager,
                                                                                                        GrpcAuthenticationReader authenticationReader)

exceptionTranslatingServerInterceptor

@Bean
 @ConditionalOnMissingBean
public ExceptionTranslatingServerInterceptor exceptionTranslatingServerInterceptor()