• Home
• io.quarkus
• quarkus-elytron-security-oauth2
• 1.2.1.Final
• source code
• OAuth2Augmentor.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

io.quarkus.elytron.security.oauth2.runtime.auth.OAuth2Augmentor Maven / Gradle / Ivy

package io.quarkus.elytron.security.oauth2.runtime.auth;

import java.util.List;
import java.util.concurrent.CompletableFuture;
import java.util.concurrent.CompletionStage;

import io.quarkus.security.identity.AuthenticationRequestContext;
import io.quarkus.security.identity.SecurityIdentity;
import io.quarkus.security.identity.SecurityIdentityAugmentor;
import io.quarkus.security.runtime.QuarkusSecurityIdentity;

public class OAuth2Augmentor implements SecurityIdentityAugmentor {

    private final String roleClaim;

    public OAuth2Augmentor(String roleClaim) {
        this.roleClaim = roleClaim;
    }

    @Override
    public int priority() {
        return 0;
    }

    @Override
    public CompletionStage augment(SecurityIdentity identity, AuthenticationRequestContext context) {
        CompletableFuture cs = new CompletableFuture<>();
        if (identity.getPrincipal() instanceof ElytronOAuth2CallerPrincipal) {
            QuarkusSecurityIdentity.Builder builder = QuarkusSecurityIdentity.builder()
                    .setPrincipal(identity.getPrincipal())
                    .addAttributes(identity.getAttributes())
                    .addCredentials(identity.getCredentials())
                    .addRoles(identity.getRoles());
            String[] roles = extractRoles(((ElytronOAuth2CallerPrincipal) identity.getPrincipal()));
            if (roles != null) {
                for (String i : roles) {
                    builder.addRole(i);
                }
            }
            cs.complete(builder.build());
        } else {
            cs.complete(identity);
        }
        return cs;
    }

    private String[] extractRoles(ElytronOAuth2CallerPrincipal principal) {
        Object claims = principal.getClaims().get(roleClaim);
        if (claims instanceof List) {
            return ((List) claims).toArray(new String[0]);
        }

        String claim = (String) principal.getClaims().get(roleClaim);
        if (claim == null) {
            return null;
        }
        return claim.split(" ");
    }
}