github-forks
/
arthas
mirror of https://github.com/alibaba/arthas.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

support basic auth

Browse Source
pull/1490/merge^2
gongdewei 4 years ago
parent af308402a5
commit 33adfad1d0
4 changed files with 81 additions and 0 deletions
Show Stats Download Patch File Download Diff File

5
channel/channel-server-app/pom.xml
Unescape Escape View File

@ -45,6 +45,11 @@
<artifactId>arthas-channel-server-starter</artifactId>
<version>${project.version}</version>
</dependency>
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-security</artifactId>
</dependency>
</dependencies>
<build>

43
channel/channel-server-app/src/main/java/com/alibaba/arthas/channel/server/WebSecurityConfig.java
Unescape Escape View File

@ -0,0 +1,43 @@
package com.alibaba.arthas.channel.server;
import com.alibaba.arthas.channel.server.autoconfigure.ChannelServerProperties;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
import org.springframework.security.crypto.password.NoOpPasswordEncoder;
import org.springframework.util.StringUtils;
@Configuration
@EnableWebSecurity
public class WebSecurityConfig extends WebSecurityConfigurerAdapter {
@Autowired
private ChannelServerProperties channelServerProperties;
@Override
protected void configure(AuthenticationManagerBuilder auth) throws Exception {
String username = channelServerProperties.getAuth().getUsername();
if (StringUtils.hasText(username)) {
auth.inMemoryAuthentication()
//.passwordEncoder(new BCryptPasswordEncoder())
.passwordEncoder(NoOpPasswordEncoder.getInstance()) // CHANGE IT for production
.withUser(username)
.password(channelServerProperties.getAuth().getPassword())
.roles("USER");
}
}
@Override
protected void configure(HttpSecurity http) throws Exception {
String username = channelServerProperties.getAuth().getUsername();
if (StringUtils.hasText(username)) {
http.csrf().disable().authorizeRequests()
.anyRequest().authenticated()
.and()
.httpBasic();
}
}
}

3
channel/channel-server-app/src/main/resources/application.properties
Unescape Escape View File

@ -22,6 +22,9 @@ arthas.channel.server.message-exchange.topic-survival-time-mills=60000
arthas.channel.server.message-exchange.topic-capacity=1000
# auth
#arthas.channel.server.auth.username=arthas
#arthas.channel.server.auth.password=arthas
# for all endpoints
management.endpoints.web.exposure.include=*

30
channel/channel-server-starter/src/main/java/com/alibaba/arthas/channel/server/autoconfigure/ChannelServerProperties.java
Unescape Escape View File

@ -12,6 +12,8 @@ public class ChannelServerProperties {
private AgentCleaner agentCleaner = new AgentCleaner();
private Auth auth = new Auth();
public Server getWebsocket() {
return websocket;
}
@ -44,6 +46,14 @@ public class ChannelServerProperties {
this.messageExchange = messageExchange;
}
public Auth getAuth() {
return auth;
}
public void setAuth(Auth auth) {
this.auth = auth;
}
public static class Server {
private String host;
private int port;
@ -158,4 +168,24 @@ public class ChannelServerProperties {
}
}
public static class Auth {
private String username;
private String password;
public String getUsername() {
return username;
}
public void setUsername(String username) {
this.username = username;
}
public String getPassword() {
return password;
}
public void setPassword(String password) {
this.password = password;
}
}
}

Write Preview
Loading…
Cancel
Save