release version 1.10.0
This commit is contained in:
@ -0,0 +1,65 @@
|
||||
/*-
|
||||
* ~~~~~~licensing~~~~~~
|
||||
* connector-producing
|
||||
* ==========
|
||||
* Copyright (C) 2020 - 2024 EmDev LLC
|
||||
* ==========
|
||||
* You may not use this file except in accordance with the License Terms of the Copyright
|
||||
* Holder located at: https://entaxy.ru/eula . All copyrights, all intellectual property
|
||||
* rights to the Software and any copies are the property of the Copyright Holder. Unless
|
||||
* it is explicitly allowed the Copyright Holder, the User is prohibited from using the
|
||||
* Software for commercial purposes to provide services to third parties.
|
||||
*
|
||||
* The Copyright Holder hereby declares that the Software is provided on an "AS IS".
|
||||
* Under no circumstances does the Copyright Holder guarantee or promise that the
|
||||
* Software provided by him will be suitable or not suitable for the specific purposes
|
||||
* of the User, that the Software will meet all commercial and personal subjective
|
||||
* expectations of the User, that the Software will work properly, without technical
|
||||
* errors, quickly and uninterruptedly.
|
||||
*
|
||||
* Under no circumstances shall the Copyright Holder or its Affiliates is not liable
|
||||
* to the User for any direct or indirect losses of the User, his expenses or actual
|
||||
* damage, including, downtime; loss of bussines; lost profit; lost earnings; loss
|
||||
* or damage to data, property, etc.
|
||||
* ~~~~~~/licensing~~~~~~
|
||||
*/
|
||||
package ru.entaxy.platform.base.security.jaas.producing;
|
||||
|
||||
import org.osgi.service.component.annotations.CollectionType;
|
||||
import org.osgi.service.component.annotations.Reference;
|
||||
import org.osgi.service.component.annotations.ReferenceCardinality;
|
||||
import org.osgi.service.component.annotations.ReferencePolicy;
|
||||
import org.osgi.service.component.annotations.ReferencePolicyOption;
|
||||
|
||||
import ru.entaxy.platform.base.objects.factory.EntaxyFactory;
|
||||
import ru.entaxy.platform.core.producer.api.EntaxyProducer;
|
||||
import ru.entaxy.platform.core.producer.impl.CommonObjectProducer;
|
||||
import ru.entaxy.platform.core.producer.wrapper.AbstractFactoryWrapper;
|
||||
import ru.entaxy.platform.core.producer.wrapper.DefaultFactoryWrapper;
|
||||
|
||||
// @Component(service = {EntaxyProducer.class}, immediate = true)
|
||||
// @EntaxyProducerInfo(supportedTypes = {"entaxy.security.jaas.*"})
|
||||
public class JaasComponentProducer extends CommonObjectProducer implements EntaxyProducer {
|
||||
|
||||
@Reference(bind = "addFactory", unbind = "removeFactory", cardinality = ReferenceCardinality.MULTIPLE,
|
||||
collectionType = CollectionType.SERVICE, policy = ReferencePolicy.DYNAMIC,
|
||||
policyOption = ReferencePolicyOption.GREEDY)
|
||||
public void addFactory(EntaxyFactory factory) {
|
||||
doAddFactory(factory);
|
||||
}
|
||||
|
||||
// WE MUST DECLARE IT for @Reference annotation processor
|
||||
@Override
|
||||
public void removeFactory(EntaxyFactory factory) {
|
||||
super.removeFactory(factory);
|
||||
}
|
||||
|
||||
@Override
|
||||
protected AbstractFactoryWrapper doAddFactory(EntaxyFactory factory) {
|
||||
AbstractFactoryWrapper wrapper = super.doAddFactory(factory, DefaultFactoryWrapper.class);
|
||||
if (wrapper != null)
|
||||
wrapper.setGenerationProcessor(this);
|
||||
return wrapper;
|
||||
}
|
||||
|
||||
}
|
||||
@ -0,0 +1,8 @@
|
||||
{
|
||||
"module:http://karaf.apache.org/xmlns/jaas/v1.1.0": {
|
||||
"targetNodeName": "config",
|
||||
"targetNodeNamespace": "http://karaf.apache.org/xmlns/jaas/v1.1.0",
|
||||
"position": "inside_last",
|
||||
"conflict": "ignore" /*[ignore, replace]*/
|
||||
}
|
||||
}
|
||||
@ -0,0 +1,3 @@
|
||||
{
|
||||
"supportedTypes": ["entaxy.security.jaas.*"]
|
||||
}
|
||||
@ -0,0 +1,14 @@
|
||||
{
|
||||
"factory": {
|
||||
"id": "abstract-jaas-component",
|
||||
"type": "entaxy.security.jaas.component",
|
||||
"description": "",
|
||||
"isAbstract": true,
|
||||
"parent": "abstract-security-component",
|
||||
"label": "security,jaas",
|
||||
"category": ""
|
||||
},
|
||||
"entaxy.security.jaas.component": {},
|
||||
"fields": {},
|
||||
"outputs": {}
|
||||
}
|
||||
@ -0,0 +1,129 @@
|
||||
{
|
||||
"factory": {
|
||||
"id": "abstract-jaas-login-module",
|
||||
"type": "entaxy.security.jaas.loginmodule",
|
||||
"description": "Abstract JAAS login module",
|
||||
"isAbstract": true,
|
||||
"parent": "abstract-jaas-component",
|
||||
"label": "security,jaas,loginmodule",
|
||||
"category": ""
|
||||
},
|
||||
"entaxy.security.jaas.loginmodule": {
|
||||
"moduleClassName": "to.be.Replaced"
|
||||
},
|
||||
"fields": {
|
||||
"__objectId": {
|
||||
"type": "String",
|
||||
"required": true,
|
||||
"isHidden": true,
|
||||
"defaultValue": {
|
||||
"@CALCULATED": {
|
||||
"expression": "${properties.realm}.${factoryId}.${properties.classifier}",
|
||||
"targetPath": "$.objectId",
|
||||
"removeResolved": true,
|
||||
"lazy": false
|
||||
}
|
||||
}
|
||||
},
|
||||
"displayName": {
|
||||
"required": true,
|
||||
"defaultValue": {
|
||||
"@CALCULATED": {
|
||||
"expression": "${properties.classifier}",
|
||||
"lazy": false
|
||||
}
|
||||
}
|
||||
},
|
||||
// "__entaxyContainerId": {
|
||||
// "type": "String",
|
||||
// "isHidden": true,
|
||||
// "required": true,
|
||||
// "defaultValue": {
|
||||
// "@CALCULATED": {
|
||||
// "expression": "${#OWNER#.objectId}",
|
||||
// "lazy": false
|
||||
// }
|
||||
// }
|
||||
// },
|
||||
"realm": {
|
||||
"type": "String",
|
||||
"required": true,
|
||||
"isHidden": true,
|
||||
"defaultValue": {
|
||||
"@CALCULATED": {
|
||||
"expression": "${#OWNER#.objectId}",
|
||||
"lazy": false
|
||||
}
|
||||
}
|
||||
},
|
||||
"classifier": {
|
||||
"displayName": "Classifier",
|
||||
"description": "Unique identifier",
|
||||
"type": "String",
|
||||
"required": true,
|
||||
"immutable": true,
|
||||
"defaultValue": "main",
|
||||
"@UNIQUE": {
|
||||
"filterByParentFieldValues": true
|
||||
}
|
||||
},
|
||||
"className": {
|
||||
"type": "String",
|
||||
"group": "general",
|
||||
"required": true,
|
||||
"isHidden": true,
|
||||
"defaultValue": {
|
||||
"@CALCULATED": {
|
||||
"lazy": true,
|
||||
"expression": "${#FACTORY#.#TYPEINFO#.moduleClassName}"
|
||||
}
|
||||
}
|
||||
},
|
||||
"flags": {
|
||||
"displayName": "Options",
|
||||
"description": "Flags for Defining a JAAS Module. <br/> required - Authentication of this login module must succeed. Always proceed to the next login module in this entry, irrespective of success or failure. <br/> requisite - Authentication of this login module must succeed. If success, proceed to the next login module; if failure, return immediately without processing the remaining login modules. <br/> sufficient - Authentication of this login module is not required to succeed. If success, return immediately without processing the remaining login modules; if failure, proceed to the next login module. <br/> optional - Authentication of this login module is not required to succeed. Always proceed to the next login module in this entry, irrespective of success or failure. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"required": true,
|
||||
"type": "string",
|
||||
"@TYPEINFO": {
|
||||
"type": "enum",
|
||||
"values": ["required", "requisite", "sufficient", "optional"],
|
||||
"multiple": true
|
||||
},
|
||||
"defaultValue": ["optional"]
|
||||
},
|
||||
"##publish": {
|
||||
"type": "Map",
|
||||
"required": true,
|
||||
"isHidden": true,
|
||||
"defaultValue":{
|
||||
"relation": [
|
||||
{
|
||||
"@CALCULATED": {
|
||||
"expression": "${properties.realm}:entaxy.security.jaas.realm:module:-aggregation:modules",
|
||||
"lazy": false
|
||||
}
|
||||
}
|
||||
]
|
||||
}
|
||||
}
|
||||
},
|
||||
"outputs": {
|
||||
"init": {
|
||||
"fields": {
|
||||
"objectId": {
|
||||
"isHidden": true
|
||||
},
|
||||
"__objectId": {},
|
||||
// "__entaxyContainerId": {},
|
||||
"className": {},
|
||||
"realm": {},
|
||||
"classifier": {},
|
||||
"flags": {}
|
||||
},
|
||||
"scopes": ["public", "private"],
|
||||
"config": {
|
||||
"configurable": false
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
@ -0,0 +1,14 @@
|
||||
{
|
||||
"factory": {
|
||||
"id": "abstract-security-component",
|
||||
"type": "entaxy.security.component",
|
||||
"description": "",
|
||||
"isAbstract": true,
|
||||
"parent": "base-object",
|
||||
"label": "security",
|
||||
"category": ""
|
||||
},
|
||||
"entaxy.security.component": {},
|
||||
"fields": {},
|
||||
"outputs": {}
|
||||
}
|
||||
@ -0,0 +1,28 @@
|
||||
{
|
||||
"factory": {
|
||||
"id": "abstract-audit-jaas-login-module",
|
||||
"type": "entaxy.security.jaas.loginmodule",
|
||||
"description": "Abstract audit JAAS login module",
|
||||
"isAbstract": true,
|
||||
"parent": "abstract-jaas-login-module",
|
||||
"label": "security,jaas,audit",
|
||||
"category": ""
|
||||
},
|
||||
"entaxy.security.jaas.loginmodule": {},
|
||||
"fields": {
|
||||
"module_enabled": {
|
||||
"displayName": "Module Enabled",
|
||||
"description": "A Checkbox that activates or deactivates a JAAS security module. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"type": "Boolean",
|
||||
"required": true,
|
||||
"defaultValue": false
|
||||
}
|
||||
},
|
||||
"outputs": {
|
||||
"init": {
|
||||
"fields": {
|
||||
"module_enabled": {}
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
@ -0,0 +1,30 @@
|
||||
{
|
||||
"factory": {
|
||||
"id": "eventadmin-audit-jaas-login-module",
|
||||
"type": "entaxy.security.jaas.loginmodule",
|
||||
"description": "For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"isAbstract": false,
|
||||
"parent": "abstract-audit-jaas-login-module",
|
||||
"label": "",
|
||||
"category": ""
|
||||
},
|
||||
"entaxy.security.jaas.loginmodule": {
|
||||
"moduleClassName": "org.apache.karaf.jaas.modules.audit.EventAdminAuditLoginModule"
|
||||
},
|
||||
"fields": {
|
||||
"module_topic": {
|
||||
"type": "String",
|
||||
"required": true,
|
||||
"displayName": "Topic",
|
||||
"description": "A topic defines the event type and acts as a label for categorizing and filtering events. It follows a hierarchical structure (e.g., ru/entaxy/audit/login for login audit events), allowing handlers to subscribe to specific event types for efficient event distribution. For more details see <a target=\"_blank\" href=\"https://felix.apache.org/documentation/subprojects/apache-felix-event-admin.html\">Felix docs</a>",
|
||||
"defaultValue": "ru/entaxy/audit/login/"
|
||||
}
|
||||
},
|
||||
"outputs": {
|
||||
"init": {
|
||||
"fields": {
|
||||
"module_topic": {}
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
@ -0,0 +1,30 @@
|
||||
{
|
||||
"factory": {
|
||||
"id": "file-audit-jaas-login-module",
|
||||
"type": "entaxy.security.jaas.loginmodule",
|
||||
"description": "For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"isAbstract": false,
|
||||
"parent": "abstract-audit-jaas-login-module",
|
||||
"label": "",
|
||||
"category": ""
|
||||
},
|
||||
"entaxy.security.jaas.loginmodule": {
|
||||
"moduleClassName": "org.apache.karaf.jaas.modules.audit.FileAuditLoginModule"
|
||||
},
|
||||
"fields": {
|
||||
"module_file": {
|
||||
"type": "String",
|
||||
"required": true,
|
||||
"displayName": "File",
|
||||
"description": "The File Audit Login module writes directly to a specified file. By default, it's set to ./data/security/audit.log. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"defaultValue": "./data/security/audit.log"
|
||||
}
|
||||
},
|
||||
"outputs": {
|
||||
"init": {
|
||||
"fields": {
|
||||
"module_file": {}
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
@ -0,0 +1,48 @@
|
||||
{
|
||||
"factory": {
|
||||
"id": "log-audit-jaas-login-module",
|
||||
"type": "entaxy.security.jaas.loginmodule",
|
||||
"description": "For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"isAbstract": false,
|
||||
"parent": "abstract-audit-jaas-login-module",
|
||||
"label": "",
|
||||
"category": ""
|
||||
},
|
||||
"entaxy.security.jaas.loginmodule": {
|
||||
"moduleClassName": "org.apache.karaf.jaas.modules.audit.LogAuditLoginModule"
|
||||
},
|
||||
"fields": {
|
||||
"module_logger": {
|
||||
"type": "String",
|
||||
"required": true,
|
||||
"displayName": "Logger name",
|
||||
"description": "Specifies the name of the logger used for auditing login events. By default, ru.entaxy.audit.Login. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"defaultValue": "ru.entaxy.audit.Login"
|
||||
},
|
||||
"module_level": {
|
||||
"type": "String",
|
||||
"required": true,
|
||||
"displayName": "Log level",
|
||||
"description": "Defines the severity level of the log messages generated during the auditing of login events. Common level include DEBUG, INFO, WARN, ERROR and TRACE. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"defaultValue": "INFO",
|
||||
"@TYPEINFO": {
|
||||
"type": "enum",
|
||||
"values": [
|
||||
"ERROR",
|
||||
"WARN",
|
||||
"INFO",
|
||||
"DEBUG",
|
||||
"TRACE"
|
||||
]
|
||||
}
|
||||
}
|
||||
},
|
||||
"outputs": {
|
||||
"init": {
|
||||
"fields": {
|
||||
"module_logger": {},
|
||||
"module_level": {}
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
@ -0,0 +1,21 @@
|
||||
{
|
||||
"factory": {
|
||||
"id": "jaas-login-module-empty",
|
||||
"type": "entaxy.security.jaas.loginmodule",
|
||||
"description": "Factory jaas-login-module-empty of entaxy.security.jaas.loginmodule",
|
||||
"parent": "abstract-jaas-login-module"
|
||||
},
|
||||
"entaxy.security.jaas.loginmodule": {},
|
||||
"fields": {},
|
||||
"outputs": {
|
||||
"init": {
|
||||
"isDefault": true,
|
||||
"scopes": [
|
||||
"private"
|
||||
],
|
||||
"config": {
|
||||
"configurable": false
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
@ -0,0 +1,57 @@
|
||||
{
|
||||
"factory": {
|
||||
"id": "jaas-realm",
|
||||
"type": "entaxy.security.jaas.realm",
|
||||
"description": "Factory jaas-realm of entaxy.security.jaas.realm",
|
||||
"parent": "abstract-jaas-component",
|
||||
"isAbstract": false
|
||||
},
|
||||
"entaxy.security.jaas.realm": {},
|
||||
"fields": {
|
||||
"objectId": {
|
||||
"displayName": "Realm name"
|
||||
},
|
||||
"rank": {
|
||||
"displayName": "Rank",
|
||||
"description": "Specifies an optional rank for resolving naming conflicts between JAAS realms . When two or more JAAS realms are registered under the same name, the OSGi container always picks the realm instance with the highest rank. If you decide to override the default realm, karaf, you should specify a rank of 100 or more, so that it overrides all of the previously installed karaf realms. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"type": "number",
|
||||
"required": true,
|
||||
"defaultValue": -1
|
||||
},
|
||||
"modules": {
|
||||
"type": "list",
|
||||
"group": "modules",
|
||||
"@TYPEINFO": {
|
||||
"excludeLabel": true,
|
||||
"enablePrivateObjectCreation": true,
|
||||
"privateObjectTypes": [{
|
||||
"name": "entaxy.security.jaas.loginmodule",
|
||||
"displayName": "Login Module"
|
||||
}],
|
||||
"itemTitle": {
|
||||
"fields": ["factoryId", "classifier"],
|
||||
"delimiter": "."
|
||||
},
|
||||
"validation": {
|
||||
"rules": {
|
||||
"checkUniqueness": {
|
||||
"fields": ["classifier"]
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
},
|
||||
"outputs": {
|
||||
"init": {
|
||||
"isDefault": true,
|
||||
"fields": {
|
||||
"rank": {},
|
||||
"modules": {}
|
||||
},
|
||||
"config": {
|
||||
"configurable": false
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
@ -0,0 +1,102 @@
|
||||
{
|
||||
"factory": {
|
||||
"id": "abstract-real-jaas-login-module-with-backend",
|
||||
"type": "entaxy.security.jaas.loginmodule",
|
||||
"description": "",
|
||||
"isAbstract": true,
|
||||
"parent": "abstract-real-jaas-login-module",
|
||||
"label": "",
|
||||
"category": ""
|
||||
},
|
||||
"entaxy.security.jaas.loginmodule": {
|
||||
"backendFactoryClassName": "to.be.Replaced"
|
||||
},
|
||||
"fields": {
|
||||
"backendEnabled": {
|
||||
"type": "boolean",
|
||||
"displayName": "Enable User Management",
|
||||
"description": "A flag that determines whether user management functionalities are activated within the application. When checked it enables a user management panel in the UI, allowing for the creation, modification, and deletion of user accounts, as well as managing roles and permissions.",
|
||||
"required": true,
|
||||
"defaultValue": false
|
||||
},
|
||||
"backendFactoryClassName": {
|
||||
"type": "String",
|
||||
"required": true,
|
||||
"isHidden": true,
|
||||
"defaultValue": {
|
||||
"@CALCULATED": {
|
||||
"lazy": false,
|
||||
"expression": "${#FACTORY#.#TYPEINFO#.backendFactoryClassName}"
|
||||
}
|
||||
}
|
||||
},
|
||||
"__backendFactory": {
|
||||
"type": "entaxy.security.jaas.loginmodule",
|
||||
"__isRef": true,
|
||||
"required": true,
|
||||
"isHidden": true,
|
||||
"__isRefByValueOnly": true,
|
||||
"@NO_LOOKUP": true,
|
||||
"@INTERNAL": true,
|
||||
"defaultValue": {
|
||||
"type": "entaxy.security.jaas.loginmodule",
|
||||
"factoryId": "#OWNER#",
|
||||
"outputType": "backendFactory",
|
||||
"scope": "private",
|
||||
"properties": {
|
||||
"backendEnabled": {
|
||||
"@CALCULATED": {
|
||||
"expression": "${#OWNER#.properties.backendEnabled}",
|
||||
"lazy": false,
|
||||
"resultType": "boolean",
|
||||
"allowObjects": false
|
||||
}
|
||||
},
|
||||
"backendFactoryClassName": {
|
||||
"@CALCULATED": {
|
||||
"expression": "${#OWNER#.properties.backendFactoryClassName}",
|
||||
"lazy": false,
|
||||
"allowObjects": false
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
},
|
||||
"##publish": {
|
||||
"defaultValue": {
|
||||
"backendEnabled": {
|
||||
"@CALCULATED": {
|
||||
"lazy": false,
|
||||
"expression": "${properties.backendEnabled}"
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
},
|
||||
"outputs": {
|
||||
"init": {
|
||||
"fields": {
|
||||
"backendEnabled": {},
|
||||
"backendFactoryClassName": {},
|
||||
"__backendFactory": {}
|
||||
},
|
||||
"config": {
|
||||
"@_SKIP_PROVIDE": false,
|
||||
"configurable": false
|
||||
}
|
||||
},
|
||||
"backendFactory": {
|
||||
"fields": {
|
||||
"backendEnabled": {},
|
||||
"backendFactoryClassName": {}
|
||||
},
|
||||
"config": {
|
||||
"@SKIP_PUBLISH": true,
|
||||
"configurable": false
|
||||
},
|
||||
"scopes": [
|
||||
"private"
|
||||
]
|
||||
}
|
||||
}
|
||||
}
|
||||
@ -0,0 +1,39 @@
|
||||
{
|
||||
"factory": {
|
||||
"id": "abstract-real-jaas-login-module",
|
||||
"type": "entaxy.security.jaas.loginmodule",
|
||||
"description": "",
|
||||
"isAbstract": true,
|
||||
"parent": "abstract-jaas-login-module",
|
||||
"label": "",
|
||||
"category": ""
|
||||
},
|
||||
"entaxy.security.jaas.loginmodule": {},
|
||||
"fields": {
|
||||
"module_detailed.login.exception": {
|
||||
"description": "Enabled detailed error messages for failed login attempts. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"type": "Boolean",
|
||||
"required": false,
|
||||
"displayName": "Use Detailed Login Exceptions"
|
||||
}
|
||||
},
|
||||
"outputs": {
|
||||
"init": {
|
||||
"fields": {
|
||||
"module_detailed.login.exception": {},
|
||||
"@IMPORT": [{
|
||||
"sourceFactoryId": "jaas-login-module-components",
|
||||
"location": "outputs.encryption.fields",
|
||||
"prefix": ""
|
||||
},
|
||||
{
|
||||
"sourceFactoryId": "jaas-login-module-components",
|
||||
"location": "outputs.jasypt.fields",
|
||||
"prefix": ""
|
||||
}
|
||||
]
|
||||
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
@ -0,0 +1,139 @@
|
||||
{
|
||||
"factory": {
|
||||
"id": "jaas-login-module-components",
|
||||
"type": "entaxy.security.jaas.loginmodule.components",
|
||||
"description": "",
|
||||
"isAbstract": true,
|
||||
"parent": "abstract-jaas-login-module",
|
||||
"label": "",
|
||||
"category": ""
|
||||
},
|
||||
"entaxy.security.jaas.loginmodule.components": {},
|
||||
"fields": {},
|
||||
"outputs": {
|
||||
"encryption": {
|
||||
"isDefault": false,
|
||||
"generator": "",
|
||||
"config": {},
|
||||
"fields": {
|
||||
"encryption_enabled": {
|
||||
"displayName": "Encryption Enabled",
|
||||
"description": "Set to true, to enable password encryption. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"type": "Boolean",
|
||||
"group": "encryption",
|
||||
"required": true,
|
||||
"defaultValue": false
|
||||
},
|
||||
"encryption_name": {
|
||||
"displayName": "Encryption Name",
|
||||
"description": "Name of the encryption service, which has been registered as an OSGi service. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"type": "String",
|
||||
"group": "encryption",
|
||||
"required": true,
|
||||
"condition": "${encryption_enabled}",
|
||||
"@TYPEINFO": {
|
||||
"type": "enum",
|
||||
"values": [
|
||||
"basic",
|
||||
"jasypt"
|
||||
]
|
||||
},
|
||||
"defaultValue": "basic"
|
||||
},
|
||||
"encryption_prefix": {
|
||||
"displayName": "Encryption Prefix",
|
||||
"description": "Prefix for encrypted passwords. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"type": "String",
|
||||
"group": "encryption",
|
||||
"required": true,
|
||||
"condition": "${encryption_enabled}",
|
||||
"defaultValue": "{CRYPT}"
|
||||
},
|
||||
"encryption_suffix": {
|
||||
"displayName": "Encryption Suffix",
|
||||
"description": "Suffix for encrypted passwords. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"type": "String",
|
||||
"group": "encryption",
|
||||
"required": true,
|
||||
"condition": "${encryption_enabled}",
|
||||
"defaultValue": "{CRYPT}"
|
||||
},
|
||||
"encryption_algorithm": {
|
||||
"displayName": "Encryption Algorithm",
|
||||
"description": "Specifies the name of the encryption algorithm — for example, MD5 or SHA-1. You can specify one of the following encryption algorithms: MD2/MD5/SHA-1/SHA-256/SHA-384/SHA-512. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"type": "String",
|
||||
"group": "encryption",
|
||||
"required": true,
|
||||
"condition": "${encryption_enabled}",
|
||||
"@TYPEINFO": {
|
||||
"type": "enum",
|
||||
"values": [
|
||||
"MD2",
|
||||
"MD5",
|
||||
"SHA-1",
|
||||
"SHA-256",
|
||||
"SHA-384",
|
||||
"SHA-512"
|
||||
]
|
||||
},
|
||||
"defaultValue": "MD5"
|
||||
},
|
||||
"encryption_encoding": {
|
||||
"displayName": "Encryption Encoding",
|
||||
"description": "Encrypted passwords encoding: hexadecimal or base64. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"type": "String",
|
||||
"group": "encryption",
|
||||
"required": true,
|
||||
"condition": "${encryption_enabled}",
|
||||
"@TYPEINFO": {
|
||||
"type": "enum",
|
||||
"values": [
|
||||
"hexadecimal",
|
||||
"base64"
|
||||
]
|
||||
},
|
||||
"defaultValue": "hexadecimal"
|
||||
}
|
||||
}
|
||||
},
|
||||
"jasypt": {
|
||||
"fields": {
|
||||
"encryption_providerName": {
|
||||
"displayName": "Encryption Provider Name",
|
||||
"description": "Name of the java.security. Provider instance that is to provide the digest algorithm. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"type": "String",
|
||||
"group": "jasypt",
|
||||
"required": false
|
||||
},
|
||||
"encryption_providerClassName": {
|
||||
"displayName": "Encryption Provider Class Name",
|
||||
"description": "Class name of the security provider that is to provide the digest algorithm. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"type": "String",
|
||||
"group": "jasypt",
|
||||
"required": false
|
||||
},
|
||||
"encryption_iterations": {
|
||||
"displayName": "Encryption Iterations",
|
||||
"description": "Number of times to apply the hash function recursively. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"type": "Number",
|
||||
"group": "jasypt",
|
||||
"required": false
|
||||
},
|
||||
"encryption_saltSizeBytes": {
|
||||
"displayName": "Encryption Salt Size Bytes",
|
||||
"description": "Size of the salt used to compute the digest. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"type": "Number",
|
||||
"group": "jasypt",
|
||||
"required": false
|
||||
},
|
||||
"encryption_saltGeneratorClassName": {
|
||||
"displayName": "Encryption Salt Generator Class Name",
|
||||
"description": "Class name of the salt generator. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"type": "String",
|
||||
"group": "jasypt",
|
||||
"required": false
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
@ -0,0 +1,14 @@
|
||||
{
|
||||
"factory": {
|
||||
"id": "jdbc-jaas-login-module",
|
||||
"type": "entaxy.security.jaas.loginmodule",
|
||||
"description": "JDBC login module. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"isAbstract": false,
|
||||
"parent": "abstract-real-jaas-login-module",
|
||||
"label": "",
|
||||
"category": ""
|
||||
},
|
||||
"entaxy.security.jaas.loginmodule": {},
|
||||
"fields": {},
|
||||
"outputs": {}
|
||||
}
|
||||
@ -0,0 +1,21 @@
|
||||
{
|
||||
"factory": {
|
||||
"id": "kerberos-jaas-login-module",
|
||||
"type": "entaxy.security.jaas.loginmodule",
|
||||
"description": "Kerberos login module. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"parent": "abstract-real-jaas-login-module",
|
||||
"label": "",
|
||||
"category": ""
|
||||
},
|
||||
"entaxy.security.jaas.loginmodule": {},
|
||||
"fields": {},
|
||||
"outputs": {
|
||||
"init": {
|
||||
"fields": {
|
||||
"module_detailed.login.exception": {
|
||||
"isHidden": true
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
@ -0,0 +1,217 @@
|
||||
{
|
||||
"factory": {
|
||||
"id": "ldap-jaas-login-module",
|
||||
"type": "entaxy.security.jaas.loginmodule",
|
||||
"description": "LDAP login module. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"isAbstract": false,
|
||||
"parent": "abstract-real-jaas-login-module",
|
||||
"label": "",
|
||||
"category": ""
|
||||
},
|
||||
"entaxy.security.jaas.loginmodule": {
|
||||
"moduleClassName": "org.apache.karaf.jaas.modules.ldap.LDAPLoginModule",
|
||||
"#backendFactoryClassName": "org.apache.karaf.jaas.modules.properties.PropertiesBackingEngineFactory"
|
||||
},
|
||||
"fields": {
|
||||
"connection_protocol": {
|
||||
"type": "String",
|
||||
"required": true,
|
||||
"displayName": "Connection Protocol",
|
||||
"description": "Defines the protocol (http or https) to be used. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"@TYPEINFO": {
|
||||
"type": "enum",
|
||||
"values": [
|
||||
"ldap",
|
||||
"ldaps"
|
||||
]
|
||||
},
|
||||
"defaultValue": "ldap",
|
||||
"group": "connection"
|
||||
},
|
||||
"connection_host": {
|
||||
"type": "String",
|
||||
"description": "The address of the LDAP server. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"required": true,
|
||||
"displayName": "Connection Host",
|
||||
"defaultValue": "localhost",
|
||||
"group": "connection"
|
||||
},
|
||||
"connection_port": {
|
||||
"type": "Number",
|
||||
"description": "The port number used to connect to the LDAP server. For LDAP Active Directory or OpenLDAP port is typically 389 for LDAP connections and 636 for LDAPS connections. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"required": true,
|
||||
"displayName": "Connection Port",
|
||||
"defaultValue": 10389,
|
||||
"group": "connection"
|
||||
},
|
||||
"connection_url": {
|
||||
"type": "String",
|
||||
"required": true,
|
||||
"isHidden": true,
|
||||
"@INTERNAL": true,
|
||||
"defaultValue": {
|
||||
"@CALCULATED": {
|
||||
"lazy": false,
|
||||
"expression": "${properties.connection_protocol}://${properties.connection_host}:${properties.connection_port}",
|
||||
"targetPath": "properties/module_connection.url",
|
||||
"removeResolved": true
|
||||
}
|
||||
},
|
||||
"group": "connection"
|
||||
},
|
||||
"module_connection.username": {
|
||||
"type": "String",
|
||||
"description": "The distinguished name (DN) or user identifier used to authenticate when connecting to the LDAP server. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"required": true,
|
||||
"displayName": "Username",
|
||||
"group": "connection"
|
||||
},
|
||||
"module_connection.password": {
|
||||
"type": "password",
|
||||
"description": "The corresponding password for the provided username, used to authenticate the connection to the LDAP server. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"required": true,
|
||||
"displayName": "Password",
|
||||
"group": "connection"
|
||||
},
|
||||
"module_authentication": {
|
||||
"type": "String",
|
||||
"description": "Authentication protocol: simple - implies that user credentials are supplied, and you are obliged to set the connection.username and connection.password options in this case. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"required": true,
|
||||
"displayName": "Module Authentication",
|
||||
"@TYPEINFO": {
|
||||
"type": "enum",
|
||||
"values": [
|
||||
"simple"
|
||||
]
|
||||
},
|
||||
"defaultValue": "simple",
|
||||
"group": "connection"
|
||||
},
|
||||
"module_ssl": {
|
||||
"description": "Enabled SSL encryption. When checked, the connection will use LDAPS (typically on port 636). For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"type": "Boolean",
|
||||
"displayName": "Use SSL",
|
||||
"group": "ssl"
|
||||
},
|
||||
"module_ssl.provider": {
|
||||
"type": "String",
|
||||
"displayName": "Provider",
|
||||
"description": "The provider name to use for SSL. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"group": "ssl"
|
||||
},
|
||||
"module_ssl.protocol": {
|
||||
"type": "String",
|
||||
"displayName": "Protocol",
|
||||
"description": "The protocol name to use for SSL (SSL for example). For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"group": "ssl"
|
||||
},
|
||||
"module_ssl.algorithm": {
|
||||
"type": "String",
|
||||
"displayName": "Algorithm",
|
||||
"description": "The algorithm to use for the KeyManagerFactory and TrustManagerFactory (PKIX for example). For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"group": "ssl"
|
||||
},
|
||||
"module_ssl.keystore": {
|
||||
"type": "String",
|
||||
"displayName": "Keystore",
|
||||
"description": "The key store name to use for SSL. The key store must be deployed using a jaas:keystore configuration. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"group": "ssl"
|
||||
},
|
||||
"module_ssl.keyalias": {
|
||||
"type": "String",
|
||||
"displayName": "Alias",
|
||||
"description": "The key alias to use for SSL. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"group": "ssl"
|
||||
},
|
||||
"module_ssl.truststore": {
|
||||
"type": "String",
|
||||
"displayName": "Truststore",
|
||||
"description": "The trust store name to use for SSL. The trust store must be deployed using a jaas:keystore configuration. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"group": "ssl"
|
||||
},
|
||||
"module_user.base.dn": {
|
||||
"type": "String",
|
||||
"required": true,
|
||||
"displayName": "User base DN",
|
||||
"description": "The LDAP base DN used to looking for user, e.g. ou=user,dc=apache,dc=org. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"group": "lookup"
|
||||
},
|
||||
"module_user.filter": {
|
||||
"type": "String",
|
||||
"required": true,
|
||||
"displayName": "User filter",
|
||||
"description": "The LDAP filter used to looking for user, e.g. (uid=%u) where %u will be replaced by the username. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"defaultValue": "(uid=%u)",
|
||||
"group": "lookup"
|
||||
},
|
||||
"module_user.search.subtree": {
|
||||
"type": "Boolean",
|
||||
"required": true,
|
||||
"displayName": "Search user in subtree",
|
||||
"description": "If 'true', the user lookup will be recursive (SUBTREE). If 'false', the user lookup will be performed only at the first level (ONELEVEL). For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"defaultValue": true,
|
||||
"group": "lookup"
|
||||
},
|
||||
"module_role.base.dn": {
|
||||
"type": "String",
|
||||
"required": true,
|
||||
"displayName": "Role base DN",
|
||||
"description": "The LDAP base DN used to looking for roles, e.g. ou=role,dc=apache,dc=org. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"group": "lookup"
|
||||
},
|
||||
"module_role.filter": {
|
||||
"type": "String",
|
||||
"required": true,
|
||||
"displayName": "Role filter",
|
||||
"description": "The LDAP filter used to looking for user’s role, e.g. (member:=uid=%u). For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"defaultValue": "(member:=uid=%u)",
|
||||
"group": "lookup"
|
||||
},
|
||||
"module_role.name.attribute": {
|
||||
"type": "String",
|
||||
"required": true,
|
||||
"displayName": "Role name attribute",
|
||||
"description": "The LDAP role attribute containing the role string used by Karaf, e.g. cn. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"defaultValue": "cn",
|
||||
"group": "lookup"
|
||||
},
|
||||
"module_role.search.subtree": {
|
||||
"type": "Boolean",
|
||||
"required": true,
|
||||
"displayName": "Search user in subtree",
|
||||
"description": "If 'true', the role lookup will be recursive (SUBTREE). If 'false', the role lookup will be performed only at the first level (ONELEVEL). For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"defaultValue": true,
|
||||
"group": "lookup"
|
||||
},
|
||||
"module_role.mapping": {
|
||||
"type": "String",
|
||||
"displayName": "Role mapping",
|
||||
"description": "Define a mapping between roles defined in the LDAP directory for the user, and corresponding roles in Karaf. The format is ldapRole1=karafRole1,karafRole2;ldapRole2=karafRole3,karafRole4. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"defaultValue": "",
|
||||
"group": "lookup"
|
||||
},
|
||||
"module_initial.context.factory": {
|
||||
"type": "String",
|
||||
"displayName": "Context factory",
|
||||
"description": "Define the initial context factory used to connect to the LDAP server. The default is com.sun.jndi.ldap.LdapCtxFactory. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"group": "others"
|
||||
},
|
||||
"module_ignorePartialResultException": {
|
||||
"type": "Boolean",
|
||||
"displayName": "Ignore partial result exception",
|
||||
"description": "Workaround for Active Directory servers not handling referrals correctly. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"group": "others"
|
||||
}
|
||||
},
|
||||
"outputs": {
|
||||
"init": {
|
||||
"fields": {
|
||||
"@IMPORT": [{
|
||||
"sourceFactoryId": "#",
|
||||
"location": "fields",
|
||||
"prefix": ""
|
||||
}]
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
@ -0,0 +1,13 @@
|
||||
{
|
||||
"factory": {
|
||||
"id": "osgi-jaas-login-module",
|
||||
"type": "entaxy.security.jaas.loginmodule",
|
||||
"description": "OSGi login module. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"parent": "abstract-real-jaas-login-module",
|
||||
"label": "",
|
||||
"category": ""
|
||||
},
|
||||
"entaxy.security.jaas.loginmodule": {},
|
||||
"fields": {},
|
||||
"outputs": {}
|
||||
}
|
||||
@ -0,0 +1,31 @@
|
||||
{
|
||||
"factory": {
|
||||
"id": "properties-jaas-login-module",
|
||||
"type": "entaxy.security.jaas.loginmodule",
|
||||
"description": "For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"isAbstract": false,
|
||||
"parent": "abstract-real-jaas-login-module-with-backend",
|
||||
"label": "",
|
||||
"category": ""
|
||||
},
|
||||
"entaxy.security.jaas.loginmodule": {
|
||||
"moduleClassName": "org.apache.karaf.jaas.modules.properties.PropertiesLoginModule",
|
||||
"backendFactoryClassName": "org.apache.karaf.jaas.modules.properties.PropertiesBackingEngineFactory"
|
||||
},
|
||||
"fields": {
|
||||
"module_users": {
|
||||
"displayName": "File Location",
|
||||
"description": "Specifies the path to the properties file (By default it is set to - ./etc/users.properties.) as storage for the users, groups, roles and passwords. By default, ru.entaxy.audit.Login. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"type": "String",
|
||||
"required": true,
|
||||
"defaultValue": "./etc/users.properties"
|
||||
}
|
||||
},
|
||||
"outputs": {
|
||||
"init": {
|
||||
"fields": {
|
||||
"module_users": {}
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
@ -0,0 +1,31 @@
|
||||
{
|
||||
"factory": {
|
||||
"id": "publickey-jaas-login-module",
|
||||
"type": "entaxy.security.jaas.loginmodule",
|
||||
"description": "For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"isAbstract": false,
|
||||
"parent": "abstract-real-jaas-login-module-with-backend",
|
||||
"label": "",
|
||||
"category": ""
|
||||
},
|
||||
"entaxy.security.jaas.loginmodule": {
|
||||
"moduleClassName": "org.apache.karaf.jaas.modules.publickey.PublickeyLoginModule",
|
||||
"backendFactoryClassName": "org.apache.karaf.jaas.modules.publickey.PublickeyBackingEngineFactory"
|
||||
},
|
||||
"fields": {
|
||||
"module_users": {
|
||||
"displayName": "File Location",
|
||||
"description": "Specifies the path to the properties file containing public key information for authentication. By default, it is set to ./etc/keys.properties. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"type": "String",
|
||||
"required": true,
|
||||
"defaultValue": "./etc/keys.properties"
|
||||
}
|
||||
},
|
||||
"outputs": {
|
||||
"init": {
|
||||
"fields": {
|
||||
"module_users": {}
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
@ -0,0 +1,31 @@
|
||||
{
|
||||
"factory": {
|
||||
"id": "resource-jaas-login-module",
|
||||
"type": "entaxy.security.jaas.loginmodule",
|
||||
"description": "For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"isAbstract": false,
|
||||
"parent": "abstract-real-jaas-login-module-with-backend",
|
||||
"label": "",
|
||||
"category": ""
|
||||
},
|
||||
"entaxy.security.jaas.loginmodule": {
|
||||
"moduleClassName": "ru.entaxy.platform.runtime.security.jaas.modules.resources.ResourceLoginModule",
|
||||
"backendFactoryClassName": "ru.entaxy.platform.runtime.security.jaas.modules.resources.ResourceBackingEngineFactory"
|
||||
},
|
||||
"fields": {
|
||||
"module_users": {
|
||||
"displayName": "Users Resource",
|
||||
"description": "Specifies the resource location of the properties file (By default it is set to - ./etc/users.properties.) as storage for the users, groups, roles and passwords. For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"type": "String",
|
||||
"required": true,
|
||||
"defaultValue": "entaxy-file-internal:.security/users.properties"
|
||||
}
|
||||
},
|
||||
"outputs": {
|
||||
"init": {
|
||||
"fields": {
|
||||
"module_users": {}
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
@ -0,0 +1,21 @@
|
||||
{
|
||||
"factory": {
|
||||
"id": "syncope-jaas-login-module",
|
||||
"type": "entaxy.security.jaas.loginmodule",
|
||||
"description": "For more details see <a target=\"_blank\" href=\"https://docs.entaxy.ru/entaxy-core/${project.version}/core/security/security-jaas.html\">Entaxy docs</a> and <a target=\"_blank\" href=\"https://karaf.apache.org/manual/latest/security\">Karaf docs</a>",
|
||||
"parent": "abstract-real-jaas-login-module",
|
||||
"label": "",
|
||||
"category": ""
|
||||
},
|
||||
"entaxy.security.jaas.loginmodule": {},
|
||||
"fields": {},
|
||||
"outputs": {
|
||||
"init": {
|
||||
"fields": {
|
||||
"module_detailed.login.exception": {
|
||||
"isHidden": true
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
@ -0,0 +1,37 @@
|
||||
[#ftl attributes={"generated.type":"blueprint.fragment"}]
|
||||
[#--
|
||||
|
||||
~~~~~~licensing~~~~~~
|
||||
factory-provider-archetype
|
||||
==========
|
||||
Copyright (C) 2020 - 2021 EmDev LLC
|
||||
==========
|
||||
Licensed under the Apache License, Version 2.0 (the "License");
|
||||
you may not use this file except in compliance with the License.
|
||||
You may obtain a copy of the License at
|
||||
|
||||
http://www.apache.org/licenses/LICENSE-2.0
|
||||
|
||||
Unless required by applicable law or agreed to in writing, software
|
||||
distributed under the License is distributed on an "AS IS" BASIS,
|
||||
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||||
See the License for the specific language governing permissions and
|
||||
limitations under the License.
|
||||
~~~~~~/licensing~~~~~~
|
||||
|
||||
--]
|
||||
[#import "templates:object-commons/common-utils.ftl" as utils]
|
||||
[#if properties.flags??]
|
||||
[#assign options = "flags=\"" + properties.flags?join(" ") + "\""]
|
||||
[#else]
|
||||
[#assign options = ""]
|
||||
[/#if]
|
||||
|
||||
<jaas:module name="[=objectId]" className="[=properties.className]"
|
||||
[=options] xmlns:jaas="http://karaf.apache.org/xmlns/jaas/v1.1.0">
|
||||
<![CDATA[
|
||||
entaxy.id=[=objectId]
|
||||
[=utils.createPropertiesFileData(properties, "module_", true, "", [])]
|
||||
[=utils.createPropertiesFileData(properties, "encryption_", true, "encryption.", [])]
|
||||
]]>
|
||||
</jaas:module>
|
||||
@ -0,0 +1,9 @@
|
||||
[#ftl attributes={"generated.type":"blueprint.fragment"}]
|
||||
|
||||
[#if properties.backendEnabled??]
|
||||
[#if properties.backendEnabled]
|
||||
<service interface="org.apache.karaf.jaas.modules.BackingEngineFactory">
|
||||
<bean class="[=properties.backendFactoryClassName]"/>
|
||||
</service>
|
||||
[/#if]
|
||||
[/#if]
|
||||
@ -0,0 +1,42 @@
|
||||
[#ftl attributes={"generated.type":"blueprint.fragment"}]
|
||||
[#--
|
||||
|
||||
~~~~~~licensing~~~~~~
|
||||
factory-provider-archetype
|
||||
==========
|
||||
Copyright (C) 2020 - 2021 EmDev LLC
|
||||
==========
|
||||
Licensed under the Apache License, Version 2.0 (the "License");
|
||||
you may not use this file except in compliance with the License.
|
||||
You may obtain a copy of the License at
|
||||
|
||||
http://www.apache.org/licenses/LICENSE-2.0
|
||||
|
||||
Unless required by applicable law or agreed to in writing, software
|
||||
distributed under the License is distributed on an "AS IS" BASIS,
|
||||
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||||
See the License for the specific language governing permissions and
|
||||
limitations under the License.
|
||||
~~~~~~/licensing~~~~~~
|
||||
|
||||
--]
|
||||
|
||||
<!--
|
||||
|
||||
factoryId: jaas-login-module-empty
|
||||
factoryType: entaxy.security.jaas.loginmodule
|
||||
outputType: init
|
||||
|
||||
-->
|
||||
<jaas:module className="org.apache.karaf.jaas.modules.properties.PropertiesLoginModule"
|
||||
flags="required" xmlns:jaas="http://karaf.apache.org/xmlns/jaas/v1.1.0">
|
||||
users =./etc/entaxy-users.properties
|
||||
encryption.enabled = true
|
||||
encryption.name = jasypt
|
||||
encryption.algorithm = SHA-256
|
||||
encryption.encoding = base64
|
||||
encryption.iterations = 100000
|
||||
encryption.saltSizeBytes = 16
|
||||
encryption.prefix = {CRYPT}
|
||||
encryption.suffix = {CRYPT}
|
||||
</jaas:module>
|
||||
@ -0,0 +1,39 @@
|
||||
[#ftl attributes={"generated.type":"blueprint"}]
|
||||
[#--
|
||||
|
||||
~~~~~~licensing~~~~~~
|
||||
factory-provider-archetype
|
||||
==========
|
||||
Copyright (C) 2020 - 2021 EmDev LLC
|
||||
==========
|
||||
Licensed under the Apache License, Version 2.0 (the "License");
|
||||
you may not use this file except in compliance with the License.
|
||||
You may obtain a copy of the License at
|
||||
|
||||
http://www.apache.org/licenses/LICENSE-2.0
|
||||
|
||||
Unless required by applicable law or agreed to in writing, software
|
||||
distributed under the License is distributed on an "AS IS" BASIS,
|
||||
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||||
See the License for the specific language governing permissions and
|
||||
limitations under the License.
|
||||
~~~~~~/licensing~~~~~~
|
||||
|
||||
--]
|
||||
<?xml version="1.0" encoding="UTF-8"?>
|
||||
<blueprint xmlns="http://www.osgi.org/xmlns/blueprint/v1.0.0"
|
||||
xmlns:jaas="http://karaf.apache.org/xmlns/jaas/v1.1.0"
|
||||
xmlns:ext="http://aries.apache.org/blueprint/xmlns/blueprint-ext/v1.0.0">
|
||||
|
||||
<!--
|
||||
|
||||
factoryId: jaas-realm
|
||||
factoryType: entaxy.security.jaas.realm
|
||||
outputType: init
|
||||
|
||||
-->
|
||||
|
||||
<jaas:config name="[=objectId]" rank="[=properties.rank?c]">
|
||||
</jaas:config>
|
||||
|
||||
</blueprint>
|
||||
Reference in New Issue
Block a user