• Home
• ca.ibodrov
• mica-concord-server-plugin
• 0.0.1
• source code
• MicaRealm.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

ca.ibodrov.mica.server.MicaRealm Maven / Gradle / Ivy

package ca.ibodrov.mica.server;

import ca.ibodrov.mica.server.oidc.OidcAuthenticationToken;
import com.walmartlabs.concord.server.security.PrincipalUtils;
import org.apache.shiro.authc.AuthenticationException;
import org.apache.shiro.authc.AuthenticationInfo;
import org.apache.shiro.authc.AuthenticationToken;
import org.apache.shiro.authc.SimpleAccount;
import org.apache.shiro.authz.AuthorizationInfo;
import org.apache.shiro.realm.AuthorizingRealm;
import org.apache.shiro.subject.PrincipalCollection;

import java.util.List;

public class MicaRealm extends AuthorizingRealm {

    @Override
    public boolean supports(AuthenticationToken token) {
        return token instanceof OidcAuthenticationToken;
    }

    @Override
    protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principals) {
        MicaPrincipal principal = principals.oneByType(MicaPrincipal.class);
        if (principal == null) {
            return null;
        }
        return PrincipalUtils.toAuthorizationInfo(principals);
    }

    @Override
    protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken token) throws AuthenticationException {
        var userInfo = ((OidcAuthenticationToken) token).userInfo();
        MicaPrincipal principal = new MicaPrincipal(userInfo.email());
        return new SimpleAccount(List.of(principal, token), userInfo, "mica-oidc");
    }
}