io.miragon.miranum.platform.security.authentication.UserAuthenticationProviderImpl Maven / Gradle / Ivy
The newest version!
package io.miragon.miranum.platform.security.authentication;
import io.miragon.miranum.platform.security.SpringSecurityProperties;
import jakarta.annotation.PostConstruct;
import lombok.RequiredArgsConstructor;
import lombok.extern.slf4j.Slf4j;
import org.springframework.context.annotation.Profile;
import org.springframework.lang.NonNull;
import org.springframework.security.core.Authentication;
import org.springframework.security.core.context.SecurityContextHolder;
import org.springframework.security.oauth2.client.registration.ClientRegistrationRepository;
import org.springframework.security.oauth2.jwt.Jwt;
import org.springframework.stereotype.Component;
import java.util.List;
/**
* User authentication provider.
* Extracts the username from the token.
*/
@Component
@Profile("!no-security")
@RequiredArgsConstructor
@Slf4j
public class UserAuthenticationProviderImpl implements UserAuthenticationProvider {
public static final String NAME_UNAUTHENTICATED_USER = "unauthenticated";
private final SpringSecurityProperties springSecurityProperties;
@Override
@NonNull
public String getLoggedInUser() {
final Authentication authentication = SecurityContextHolder.getContext().getAuthentication();
if (authentication.getPrincipal() instanceof Jwt jwt) {
return (String) jwt.getClaims().get(springSecurityProperties.getServer().getUserNameAttribute());
}
return NAME_UNAUTHENTICATED_USER;
}
@Override
@NonNull
public List getLoggedInUserRoles() {
final Authentication authentication = SecurityContextHolder.getContext().getAuthentication();
return authentication.getAuthorities().stream().map(Object::toString).map(obj -> obj.replaceFirst("^ROLE_", "")).toList();
}
}