org.apereo.cas.config.RedisMultifactorAuthenticationTrustConfiguration Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of cas-server-support-trusted-mfa-redis Show documentation
Show all versions of cas-server-support-trusted-mfa-redis Show documentation
cas-server-support-trusted-mfa-redis
package org.apereo.cas.config;
import org.apereo.cas.authentication.CasSSLContext;
import org.apereo.cas.configuration.CasConfigurationProperties;
import org.apereo.cas.configuration.features.CasFeatureModule;
import org.apereo.cas.redis.core.CasRedisTemplate;
import org.apereo.cas.redis.core.RedisObjectFactory;
import org.apereo.cas.trusted.authentication.api.MultifactorAuthenticationTrustRecord;
import org.apereo.cas.trusted.authentication.api.MultifactorAuthenticationTrustRecordKeyGenerator;
import org.apereo.cas.trusted.authentication.api.MultifactorAuthenticationTrustStorage;
import org.apereo.cas.trusted.authentication.storage.RedisMultifactorAuthenticationTrustStorage;
import org.apereo.cas.util.crypto.CipherExecutor;
import org.apereo.cas.util.spring.beans.BeanCondition;
import org.apereo.cas.util.spring.beans.BeanSupplier;
import org.apereo.cas.util.spring.boot.ConditionalOnFeatureEnabled;
import lombok.val;
import org.jooq.lambda.Unchecked;
import org.springframework.beans.factory.annotation.Qualifier;
import org.springframework.boot.autoconfigure.AutoConfiguration;
import org.springframework.boot.autoconfigure.condition.ConditionalOnMissingBean;
import org.springframework.boot.context.properties.EnableConfigurationProperties;
import org.springframework.cloud.context.config.annotation.RefreshScope;
import org.springframework.context.ConfigurableApplicationContext;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.ScopedProxyMode;
import org.springframework.data.redis.connection.RedisConnectionFactory;
import java.util.List;
/**
* This is {@link RedisMultifactorAuthenticationTrustConfiguration}.
*
* @author Misagh Moayyed
* @since 6.4.0
*/
@EnableConfigurationProperties(CasConfigurationProperties.class)
@ConditionalOnFeatureEnabled(feature = CasFeatureModule.FeatureCatalog.MultifactorAuthenticationTrustedDevices, module = "redis")
@AutoConfiguration
public class RedisMultifactorAuthenticationTrustConfiguration {
private static final BeanCondition CONDITION = BeanCondition.on("cas.authn.mfa.trusted.redis.enabled").isTrue().evenIfMissing();
@Bean
@ConditionalOnMissingBean(name = "redisMfaTrustedConnectionFactory")
@RefreshScope(proxyMode = ScopedProxyMode.DEFAULT)
public RedisConnectionFactory redisMfaTrustedConnectionFactory(
final ConfigurableApplicationContext applicationContext,
@Qualifier(CasSSLContext.BEAN_NAME)
final CasSSLContext casSslContext,
final CasConfigurationProperties casProperties) {
return BeanSupplier.of(RedisConnectionFactory.class)
.when(CONDITION.given(applicationContext.getEnvironment()))
.supply(Unchecked.supplier(() -> {
val redis = casProperties.getAuthn().getMfa().getTrusted().getRedis();
return RedisObjectFactory.newRedisConnectionFactory(redis, casSslContext);
}))
.otherwiseProxy()
.get();
}
@RefreshScope(proxyMode = ScopedProxyMode.DEFAULT)
@Bean
@ConditionalOnMissingBean(name = "redisMfaTrustedAuthnTemplate")
public CasRedisTemplate> redisMfaTrustedAuthnTemplate(
final ConfigurableApplicationContext applicationContext,
@Qualifier("redisMfaTrustedConnectionFactory")
final RedisConnectionFactory redisMfaTrustedConnectionFactory) {
return BeanSupplier.of(CasRedisTemplate.class)
.when(CONDITION.given(applicationContext.getEnvironment()))
.supply(() -> RedisObjectFactory.newRedisTemplate(redisMfaTrustedConnectionFactory))
.otherwiseProxy()
.get();
}
@RefreshScope(proxyMode = ScopedProxyMode.DEFAULT)
@Bean
public MultifactorAuthenticationTrustStorage mfaTrustEngine(
final ConfigurableApplicationContext applicationContext,
final CasConfigurationProperties casProperties,
@Qualifier("redisMfaTrustedAuthnTemplate")
final CasRedisTemplate> redisMfaTrustedAuthnTemplate,
@Qualifier("mfaTrustRecordKeyGenerator")
final MultifactorAuthenticationTrustRecordKeyGenerator keyGenerationStrategy,
@Qualifier("mfaTrustCipherExecutor")
final CipherExecutor mfaTrustCipherExecutor) {
return BeanSupplier.of(MultifactorAuthenticationTrustStorage.class)
.when(CONDITION.given(applicationContext.getEnvironment()))
.supply(() -> new RedisMultifactorAuthenticationTrustStorage(casProperties.getAuthn().getMfa().getTrusted(),
mfaTrustCipherExecutor, redisMfaTrustedAuthnTemplate, keyGenerationStrategy,
casProperties.getAuthn().getMfa().getTrusted().getRedis().getScanCount()))
.otherwiseProxy()
.get();
}
}
© 2015 - 2024 Weber Informatics LLC | Privacy Policy