java - How to change roles and permissions in runtime in Spring-boot using SpringWebSecurity -

-



i have same "projects" , same users in database in spring-boot webapp. users access projects using urls like:

 http: // server / project / 1  http: // server / project / 2  ...  http: // server / project / x

where "x" project id type long.

different users have different privileges projects, eg .:

  • user1 has admin role in "project1"
  • user2 has user role in "project1"
  • user3 has user role in "projec1"
  • user1 has user role in "project2"
  • user2 has admin role in "project2"
  • user3 has user role in "projec2"

some user add new project "project3" , grant access project user1 , user2 user , user3 roles admin role.

in database have table users (user list) , table authorities (privileges of each user) don't know how link privileges, users , "projects".

package pl.pecynki.testapp;  import javax.sql.datasource;  import org.slf4j.logger; import org.slf4j.loggerfactory; import org.springframework.beans.factory.annotation.autowired; import org.springframework.context.annotation.bean; import org.springframework.context.annotation.configuration; import org.springframework.security.config.annotation.authentication.builders.authenticationmanagerbuilder; import org.springframework.security.config.annotation.web.builders.httpsecurity; import org.springframework.security.config.annotation.web.configuration.enablewebsecurity; import org.springframework.security.config.annotation.web.configuration.websecurityconfigureradapter; import org.springframework.security.web.authentication.authenticationsuccesshandler; import org.springframework.security.web.authentication.simpleurlauthenticationsuccesshandler;  @enablewebsecurity @configuration public class securityconfig extends websecurityconfigureradapter {      logger logger = loggerfactory.getlogger(securityconfig.class);      @autowired     private datasource datasource;      @bean     public authenticationsuccesshandler successhandler() {         simpleurlauthenticationsuccesshandler handler = new simpleurlauthenticationsuccesshandler();         handler.setusereferer(false);         return handler;     }         @override     protected void configure(httpsecurity http) throws exception {          http             .authorizerequests()                 .antmatchers("/project/**")                     .hasrole("user");         http             .authorizerequests()                 .antmatchers("/project/**/edit/")                     .hasrole("admin");         http             .authorizerequests()                 .antmatchers("/project/new")                     .hasrole("superadmin");         http         .authorizerequests()             .antmatchers("/notice_form")                 .authenticated();          http             .authorizerequests()                 .antmatchers("/","/**")                     .permitall();          http             .formlogin()                 .loginpage("/login")                 .usernameparameter("username")                 .passwordparameter("password")                 .successhandler(successhandler());         http             .formlogin()                 .permitall();         http             .logout()                 .permitall();      }      @autowired     public void configureglobal(authenticationmanagerbuilder auth) throws exception {         auth.jdbcauthentication().datasource(datasource)            .usersbyusernamequery("select username,password,enabled users username=?")            .authoritiesbyusernamequery("select username,authority authorities username=?");     }  }





wiki

Comments

Post a Comment

Popular posts from this blog

python - Read npy file directly from S3 StreamingBody -

-
i have many .npy (numpy) , .json files saved in s3, need download , load these files. for json files downloading files , loading dictionary using following code: obj = s3.object(bucket, key) response = obj.get() body = response['body'].read().decode('utf-8') data = json.loads(body) that way avoid writing .json file disk , reading it. now want same .npy files, equivalent? currently downloading file, saving temp file on disk , loading np.load avoid if possible. following https://stackoverflow.com/a/28196540/3509999 : obj = s3.object(bucket, key) io.bytesio(obj.get()["body"].read()) f: # rewind file f.seek(0) arr = np.load(f) wiki
Read more

kotlin - Out-projected type in generic interface prohibits the use of metod with generic parameter -

-
i start using kotlin , defined interface this: interface aadapter<vh : recyclerview.viewholder> { fun oncreateaviewholder(parent: viewgroup): vh fun onbindaviewholder(v: vh, position: int) } and when try use on code: class klasa ( private val adapter: aadapter<*> ) { fun dosth(){ //... val vh = this.adapter.oncreateaviewholder(parent) //on below line error adapter.onbindaviewholder(v, position) //... } } i error out-projected type 'aadapter<*>' prohibits use of 'public abstract fun onbindaviewholder(v: t, position: int): unit i tied add "in" or "out" definition i'm confused. how allow it. replace aadapter<*> aadapter<recyclerview.viewholder> . class klasa ( private val adapter: aadapter<recyclerview.viewholder> ) { // ... because have declared aadapter has type parameter vh type subclass of recyclerview....
Read more

Asterisk AGI Python Script to Dialplan does not work -

-
i'm stuck project have check database of sip extension incoming caller id , dial sip extension. below receive when run script on asterisk cli. -- registered sip '9125' @ 192.168.1.102:50142 > saved useragent "zoiper rv2.8.40" peer 9125 [2017-08-22 13:53:33] notice[5095]: chan_sip.c:24558 handle_response_peerpoke: peer '9125' reachable. (17ms / 2000ms) == using sip rtp tos bits 184 == using sip rtp cos mark 5 -- executing [0112617769@from-trunk:1] answer("sip/obitrunk1-0000000d", "") in new stack > 0x1ca50d0 -- probation passed - setting rtp source address 192.168.1.98:16834 -- executing [0112617769@from-trunk:2] agi("sip/obitrunk1-0000000d", "test.py") in new stack -- launched agi script /var/lib/asterisk/agi-bin/test.py args: ['/var/lib/asterisk/agi-bin/test.py'] env line: agi_request: test.py env line: agi_channel: sip/obitrunk1-0000000d env line: agi_language: en env line: a...
Read more