io.micronaut.security.token.TokenAuthenticationFetcher Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of micronaut-security Show documentation
Show all versions of micronaut-security Show documentation
Official Security Solution for Micronaut
/*
* Copyright 2017-2024 original authors
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* https://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package io.micronaut.security.token;
import io.micronaut.context.annotation.Requires;
import io.micronaut.context.event.ApplicationEventPublisher;
import io.micronaut.core.annotation.NonNull;
import io.micronaut.core.util.CollectionUtils;
import io.micronaut.http.HttpRequest;
import io.micronaut.http.server.util.HttpHostResolver;
import io.micronaut.http.server.util.locale.HttpLocaleResolver;
import io.micronaut.security.authentication.Authentication;
import io.micronaut.security.event.TokenValidatedEvent;
import io.micronaut.security.filters.AuthenticationFetcher;
import io.micronaut.security.token.reader.TokenResolver;
import io.micronaut.security.token.validator.TokenValidator;
import jakarta.inject.Inject;
import jakarta.inject.Singleton;
import org.reactivestreams.Publisher;
import reactor.core.publisher.Flux;
import java.util.Collection;
import java.util.List;
import java.util.Locale;
import java.util.Optional;
import static io.micronaut.security.filters.SecurityFilter.TOKEN;
/**
* Attempts to retrieve a token form the {@link HttpRequest} and if existing validated.
* It uses a {@link TokenResolver} and the list of {@link TokenValidator} registered in the ApplicationContext.
*
* @author Sergio del Amo
* @author Graeme Rocher
* @since 1.0
*/
@Requires(classes = HttpRequest.class)
@Singleton
public class TokenAuthenticationFetcher implements AuthenticationFetcher> {
/**
* The order of the fetcher.
*/
public static final Integer ORDER = 0;
protected final Collection>> tokenValidators;
protected final HttpHostResolver httpHostResolver;
protected final HttpLocaleResolver httpLocaleResolver;
protected final ApplicationEventPublisher tokenValidatedEventPublisher;
private final TokenResolver> tokenResolver;
/**
* @param tokenValidators The list of {@link TokenValidator} which attempt to validate the request
* @param tokenResolver The {@link io.micronaut.security.token.reader.TokenResolver} which returns the first found token in the request.
* @param tokenValidatedEventPublisher Application event publisher for {@link TokenValidatedEvent}.
* @deprecated Use {@link TokenAuthenticationFetcher(List, TokenResolver, ApplicationEventPublisher)} instead.
*/
@Deprecated(forRemoval = true, since = "4.4.0")
public TokenAuthenticationFetcher(Collection>> tokenValidators,
TokenResolver> tokenResolver,
ApplicationEventPublisher tokenValidatedEventPublisher) {
this(CollectionUtils.iterableToList(tokenValidators), tokenResolver, tokenValidatedEventPublisher);
}
/**
* @param tokenValidators The list of {@link TokenValidator} which attempt to validate the request
* @param tokenResolver The {@link io.micronaut.security.token.reader.TokenResolver} which returns the first found token in the request.
* @param tokenValidatedEventPublisher Application event publisher for {@link TokenValidatedEvent}.
* @deprecated Use {@link TokenAuthenticationFetcher(List, TokenResolver, ApplicationEventPublisher, HttpHostResolver, HttpLocaleResolver)} instead.
*/
@Deprecated(forRemoval = true, since = "4.7.0")
public TokenAuthenticationFetcher(List>> tokenValidators,
TokenResolver> tokenResolver,
ApplicationEventPublisher tokenValidatedEventPublisher) {
this(
tokenValidators,
tokenResolver,
tokenValidatedEventPublisher,
request -> null,
new HttpLocaleResolver() {
@Override
public @NonNull Optional resolve(@NonNull HttpRequest context) {
return Optional.of(Locale.getDefault());
}
@Override
public @NonNull Locale resolveOrDefault(@NonNull HttpRequest context) {
return Locale.getDefault();
}
}
);
}
/**
* @param tokenValidators The list of {@link TokenValidator} which attempt to validate the request
* @param tokenResolver The {@link io.micronaut.security.token.reader.TokenResolver} which returns the first found token in the request.
* @param tokenValidatedEventPublisher Application event publisher for {@link TokenValidatedEvent}.
* @param httpHostResolver The http host resolver
* @param httpLocaleResolver The http locale resolver
* @since 4.7.0
*/
@Inject
public TokenAuthenticationFetcher(
List>> tokenValidators,
TokenResolver> tokenResolver,
ApplicationEventPublisher tokenValidatedEventPublisher,
HttpHostResolver httpHostResolver,
HttpLocaleResolver httpLocaleResolver
) {
this.tokenValidatedEventPublisher = tokenValidatedEventPublisher;
this.tokenResolver = tokenResolver;
this.tokenValidators = tokenValidators;
this.httpHostResolver = httpHostResolver;
this.httpLocaleResolver = httpLocaleResolver;
}
@Override
public Publisher fetchAuthentication(HttpRequest request) {
List tokens = tokenResolver.resolveTokens(request);
if (CollectionUtils.isEmpty(tokens)) {
return Flux.empty();
}
return Flux.fromIterable(tokens)
.flatMap(tokenValue -> Flux.fromIterable(tokenValidators)
.flatMap(tokenValidator -> tokenValidator.validateToken(tokenValue, request))
.next()
.map(authentication -> {
request.setAttribute(TOKEN, tokenValue);
tokenValidatedEventPublisher.publishEvent(
new TokenValidatedEvent(
tokenValue,
httpHostResolver.resolve(request),
httpLocaleResolver.resolveOrDefault(request)
)
);
return authentication;
}));
}
@Override
public int getOrder() {
return ORDER;
}
}