Merge pull request #22 from devondragon/issue-21-Application_not_star…

…ting_in_local Issue 21 application not starting in local
devondragon · Jun 24, 2023 · bf115af · bf115af
2 parents 1fd19d8 + 0383dcb
commit bf115af
Show file tree

Hide file tree

Showing 5 changed files with 40 additions and 21 deletions.
diff --git a/.DS_Store b/.DS_Store
diff --git a/.gitignore b/.gitignore
@@ -2,6 +2,9 @@
 # Created by https://www.gitignore.io/api/java,gradle,eclipse
 # Edit at https://www.gitignore.io/?templates=java,gradle,eclipse
 
+### MacOS ###
+*.DS_Store
+
 ### Eclipse ###
 .metadata
 bin/

diff --git a/build.gradle b/build.gradle
@@ -43,7 +43,7 @@ dependencies {
 
     // Other dependencies
     runtimeOnly 'org.springframework.boot:spring-boot-devtools'
-    runtimeOnly 'io.micrometer:micrometer-registry-new-relic'
+    // runtimeOnly 'io.micrometer:micrometer-registry-new-relic'
     runtimeOnly 'org.mariadb.jdbc:mariadb-java-client'
     runtimeOnly 'org.postgresql:postgresql'
     implementation 'org.passay:passay:1.6.2'

diff --git a/src/main/java/com/digitalsanctuary/spring/user/util/WebSecurityConfig.java b/src/main/java/com/digitalsanctuary/spring/user/util/WebSecurityConfig.java
@@ -90,6 +90,9 @@ public class WebSecurityConfig {
 	@Value("${user.security.registrationNewVerificationURI}")
 	private String registrationNewVerificationURI;
 
+	@Value("${spring.security.oauth2.enabled:false} ")
+	private boolean oauth2Enabled;
+
 	@Autowired
 	private UserDetailsService userDetailsService;
 
@@ -105,10 +108,10 @@ public class WebSecurityConfig {
 	@Autowired
 	private DSOAuth2UserService dsOAuth2UserService;
 
-
 	/**
 	 *
-	 * The securityFilterChain method builds the security filter chain for Spring Security.
+	 * The securityFilterChain method builds the security filter chain for Spring
+	 * Security.
 	 *
 	 * @param http the HttpSecurity object
 	 * @return the SecurityFilterChain object
@@ -121,40 +124,50 @@ public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Excepti
 		ArrayList<String> unprotectedURIs = getUnprotectedURIsList();
 		log.debug("WebSecurityConfig.configure:" + "enhanced unprotectedURIs: {}", unprotectedURIs.toString());
 
-		CustomOAuth2AuthenticationEntryPoint loginAuthenticationEntryPoint = new CustomOAuth2AuthenticationEntryPoint(null, loginPageURI);
+		CustomOAuth2AuthenticationEntryPoint loginAuthenticationEntryPoint = new CustomOAuth2AuthenticationEntryPoint(
+				null, loginPageURI);
 
-		List<String> disableCSRFURIs = Arrays.stream(disableCSRFURIsArray).filter(uri -> uri != null && !uri.isEmpty()).collect(Collectors.toList());
+		List<String> disableCSRFURIs = Arrays.stream(disableCSRFURIsArray).filter(uri -> uri != null && !uri.isEmpty())
+				.collect(Collectors.toList());
 
 		http.formLogin(
-				formLogin -> formLogin.loginPage(loginPageURI).loginProcessingUrl(loginActionURI).successHandler(loginSuccessService).permitAll())
+				formLogin -> formLogin.loginPage(loginPageURI).loginProcessingUrl(loginActionURI)
+						.successHandler(loginSuccessService).permitAll())
 				.rememberMe(withDefaults());
 
-		http.logout(logout -> logout.logoutUrl(logoutActionURI).logoutSuccessUrl(logoutSuccessURI).invalidateHttpSession(true)
+		http.logout(logout -> logout.logoutUrl(logoutActionURI).logoutSuccessUrl(logoutSuccessURI)
+				.invalidateHttpSession(true)
 				.deleteCookies("JSESSIONID"));
 
 		if (disableCSRFURIs != null && disableCSRFURIs.size() > 0) {
 			http.csrf(csrf -> {
 				csrf.ignoringRequestMatchers(disableCSRFURIsArray);
 			});
 		}
-		http.oauth2Login(o -> o.loginPage(loginPageURI).successHandler(loginSuccessService).failureHandler((request, response, exception) -> {
-			log.error("WebSecurityConfig.configure:" + "OAuth2 login failure: {}", exception.getMessage());
-			request.getSession().setAttribute("error.message", exception.getMessage());
-			response.sendRedirect(loginPageURI);
-			// handler.onAuthenticationFailure(request, response, exception);
-		}).userInfoEndpoint().userService(dsOAuth2UserService)).userDetailsService(userDetailsService)
-				.exceptionHandling(handling -> handling.authenticationEntryPoint(loginAuthenticationEntryPoint));
-
-
+		if (oauth2Enabled) {
+			http.oauth2Login(o -> o.loginPage(loginPageURI).successHandler(loginSuccessService)
+					.failureHandler((request, response, exception) -> {
+						log.error("WebSecurityConfig.configure:" + "OAuth2 login failure: {}", exception.getMessage());
+						request.getSession().setAttribute("error.message", exception.getMessage());
+						response.sendRedirect(loginPageURI);
+						// handler.onAuthenticationFailure(request, response, exception);
+					}).userInfoEndpoint().userService(dsOAuth2UserService)).userDetailsService(userDetailsService)
+					.exceptionHandling(handling -> handling.authenticationEntryPoint(loginAuthenticationEntryPoint));
+		}
 		// Configure authorization rules based on the default action
 		if (DEFAULT_ACTION_DENY.equals(getDefaultAction())) {
-			// Allow access to unprotected URIs and require authentication for all other requests
-			http.authorizeHttpRequests().requestMatchers(unprotectedURIs.toArray(new String[0])).permitAll().anyRequest().authenticated();
+			// Allow access to unprotected URIs and require authentication for all other
+			// requests
+			http.authorizeHttpRequests().requestMatchers(unprotectedURIs.toArray(new String[0])).permitAll()
+					.anyRequest().authenticated();
 		} else if (DEFAULT_ACTION_ALLOW.equals(getDefaultAction())) {
-			// Require authentication for protected URIs and allow access to all other requests
-			http.authorizeHttpRequests().requestMatchers(protectedURIsArray).authenticated().requestMatchers("/**").permitAll();
+			// Require authentication for protected URIs and allow access to all other
+			// requests
+			http.authorizeHttpRequests().requestMatchers(protectedURIsArray).authenticated().requestMatchers("/**")
+					.permitAll();
 		} else {
-			// Log an error and deny access to all resources if the default action is not set correctly
+			// Log an error and deny access to all resources if the default action is not
+			// set correctly
 			log.error("WebSecurityConfig.configure:"
 					+ "user.security.defaultAction must be set to either {} or {}!!!  Denying access to all resources to force intentional configuration.",
 					DEFAULT_ACTION_ALLOW, DEFAULT_ACTION_DENY);

diff --git a/src/main/resources/application.yml b/src/main/resources/application.yml
@@ -15,6 +15,7 @@ spring:
     host: email-smtp.us-west-2.amazonaws.com
   # security:
     # oauth2:
+    #   enabled: true
     #   client:
     #     registration:
     #       google:
@@ -71,6 +72,8 @@ spring:
 user:
   registration:
     sendVerificationEmail: true
+    googleEnabled: false
+    facebookEnabled: false
   audit:
     logFilePath: /opt/app/logs/user-audit.log
     flushOnWrite: false