java.lang.Object

io.quarkus.vertx.http.deployment.HttpSecurityProcessor

public class HttpSecurityProcessor extends Object

Nested Class Summary

Nested Classes

Modifier and Type

Class

Description

(package private) static final class

HttpSecurityProcessor.AlwaysPropagateSecurityIdentity

(package private) static final class

HttpSecurityProcessor.HttpAuthenticationHandlerBuildItem

(package private) static class

HttpSecurityProcessor.IsApplicationBasicAuthRequired
Constructor Summary

Constructors

Constructor

Description

HttpSecurityProcessor()
Method Summary

Modifier and Type

Method

Description

(package private) void

addRoutingCtxToSecurityEventsForCdiBeans(HttpSecurityRecorder recorder, io.quarkus.deployment.Capabilities capabilities, io.quarkus.deployment.annotations.BuildProducer<AdditionalSecurityConstrainerEventPropsBuildItem> producer)

static Set<org.jboss.jandex.ClassInfo>

collectAnnotatedClasses(Collection<org.jboss.jandex.AnnotationInstance> instances, Predicate<org.jboss.jandex.ClassInfo> filter)

static Set<org.jboss.jandex.MethodInfo>

collectClassMethodsWithoutRbacAnnotation(Collection<org.jboss.jandex.ClassInfo> classes)

(package private) void

collectInterceptedMethods(io.quarkus.deployment.builditem.CombinedIndexBuildItem indexBuildItem, List<EagerSecurityInterceptorBindingBuildItem> interceptorBindings, List<ClassSecurityAnnotationBuildItem> classSecurityAnnotations, io.quarkus.deployment.annotations.BuildProducer<EagerSecurityInterceptorMethodsBuildItem> methodsProducer, io.quarkus.deployment.annotations.BuildProducer<EagerSecurityInterceptorClassesBuildItem> classesProducer)

static Set<org.jboss.jandex.MethodInfo>

collectMethodsWithoutRbacAnnotation(Collection<org.jboss.jandex.MethodInfo> methods)

(package private) void

createHttpAuthenticationHandler(HttpSecurityRecorder recorder, io.quarkus.deployment.Capabilities capabilities, VertxHttpBuildTimeConfig httpBuildTimeConfig, io.quarkus.deployment.annotations.BuildProducer<HttpSecurityProcessor.HttpAuthenticationHandlerBuildItem> authenticationHandlerProducer)

(package private) io.quarkus.arc.deployment.AdditionalBeanBuildItem

createSecurityIdentityAssociation()

(package private) void

detectBasicAuthImplicitlyRequired(VertxHttpBuildTimeConfig httpBuildTimeConfig, io.quarkus.arc.deployment.BeanRegistrationPhaseBuildItem beanRegistrationPhaseBuildItem, io.quarkus.deployment.builditem.ApplicationIndexBuildItem applicationIndexBuildItem, io.quarkus.deployment.annotations.BuildProducer<io.quarkus.deployment.builditem.SystemPropertyBuildItem> systemPropertyProducer, List<EagerSecurityInterceptorBindingBuildItem> eagerSecurityInterceptorBindings)

(package private) IgnoredContextLocalDataKeysBuildItem

dontPropagateSecurityIdentityToDuplicateContext(HttpSecurityRecorder recorder)

(package private) AuthorizationPolicyInstancesBuildItem

gatherAuthorizationPolicyInstances(io.quarkus.deployment.builditem.CombinedIndexBuildItem combinedIndex, io.quarkus.deployment.Capabilities capabilities)

(package private) void

generateAuthorizationPolicyStorage(io.quarkus.deployment.annotations.BuildProducer<io.quarkus.arc.deployment.GeneratedBeanBuildItem> generatedBeanProducer, io.quarkus.deployment.Capabilities capabilities, AuthorizationPolicyInstancesBuildItem authZPolicyInstancesItem, io.quarkus.deployment.annotations.BuildProducer<AdditionalSecurityAnnotationBuildItem> additionalSecurityAnnotationProducer)

Implements AuthorizationPolicyStorage as a bean.

(package private) io.quarkus.arc.deployment.SyntheticBeanBuildItem

initBasicAuth(HttpSecurityRecorder recorder, VertxHttpConfig httpConfig, VertxHttpBuildTimeConfig httpBuildTimeConfig, io.quarkus.deployment.annotations.BuildProducer<SecurityInformationBuildItem> securityInformationProducer)

(package private) io.quarkus.arc.deployment.AdditionalBeanBuildItem

initFormAuth(HttpSecurityRecorder recorder, VertxHttpBuildTimeConfig buildTimeConfig, io.quarkus.deployment.annotations.BuildProducer<RouteBuildItem> filterBuildItemBuildProducer)

(package private) void

initializeAuthenticationHandler(Optional<HttpSecurityProcessor.HttpAuthenticationHandlerBuildItem> authenticationHandler, HttpSecurityRecorder recorder, VertxHttpConfig httpConfig, io.quarkus.arc.deployment.BeanContainerBuildItem beanContainerBuildItem)

(package private) io.quarkus.arc.deployment.AdditionalBeanBuildItem

initMtlsClientAuth(VertxHttpBuildTimeConfig buildTimeConfig)

(package private) void

produceEagerSecurityInterceptorStorage(HttpSecurityRecorder recorder, io.quarkus.deployment.annotations.BuildProducer<io.quarkus.arc.deployment.SyntheticBeanBuildItem> producer, List<EagerSecurityInterceptorBindingBuildItem> interceptorBindings, List<EagerSecurityInterceptorClassesBuildItem> interceptorClasses, List<EagerSecurityInterceptorMethodsBuildItem> interceptorMethods)

(package private) void

registerAuthMechanismSelectionInterceptor(io.quarkus.deployment.Capabilities capabilities, VertxHttpBuildTimeConfig buildTimeConfig, io.quarkus.deployment.annotations.BuildProducer<EagerSecurityInterceptorBindingBuildItem> bindingProducer, HttpSecurityRecorder recorder, io.quarkus.deployment.annotations.BuildProducer<AdditionalSecuredMethodsBuildItem> additionalSecuredMethodsProducer, io.quarkus.deployment.annotations.BuildProducer<RegisterClassSecurityCheckBuildItem> registerClassSecurityCheckProducer, List<ClassSecurityAnnotationBuildItem> classSecurityAnnotations, List<HttpAuthMechanismAnnotationBuildItem> additionalHttpAuthMechAnnotations, io.quarkus.deployment.builditem.CombinedIndexBuildItem combinedIndexBuildItem)

(package private) List<HttpAuthMechanismAnnotationBuildItem>

registerHttpAuthMechanismAnnotations()

(package private) void

setMtlsCertificateRoleProperties(HttpSecurityRecorder recorder, VertxHttpConfig httpConfig, VertxHttpBuildTimeConfig httpBuildTimeConfig)

(package private) void

setupAuthenticationMechanisms(HttpSecurityRecorder recorder, io.quarkus.deployment.annotations.BuildProducer<FilterBuildItem> filterBuildItemBuildProducer, io.quarkus.deployment.annotations.BuildProducer<io.quarkus.arc.deployment.AdditionalBeanBuildItem> beanProducer, Optional<HttpSecurityProcessor.HttpAuthenticationHandlerBuildItem> authenticationHandlerBuildItem, io.quarkus.deployment.Capabilities capabilities, VertxHttpBuildTimeConfig httpBuildTimeConfig, io.quarkus.deployment.annotations.BuildProducer<SecurityInformationBuildItem> securityInformationProducer)

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details
- HttpSecurityProcessor
  
  public HttpSecurityProcessor()
Method Details
- initFormAuth
  
  io.quarkus.arc.deployment.AdditionalBeanBuildItem initFormAuth(HttpSecurityRecorder recorder, VertxHttpBuildTimeConfig buildTimeConfig, io.quarkus.deployment.annotations.BuildProducer<RouteBuildItem> filterBuildItemBuildProducer)
- initMtlsClientAuth
  
  io.quarkus.arc.deployment.AdditionalBeanBuildItem initMtlsClientAuth(VertxHttpBuildTimeConfig buildTimeConfig)
- setMtlsCertificateRoleProperties
  
  void setMtlsCertificateRoleProperties(HttpSecurityRecorder recorder, VertxHttpConfig httpConfig, VertxHttpBuildTimeConfig httpBuildTimeConfig)
- detectBasicAuthImplicitlyRequired
  
  void detectBasicAuthImplicitlyRequired(VertxHttpBuildTimeConfig httpBuildTimeConfig, io.quarkus.arc.deployment.BeanRegistrationPhaseBuildItem beanRegistrationPhaseBuildItem, io.quarkus.deployment.builditem.ApplicationIndexBuildItem applicationIndexBuildItem, io.quarkus.deployment.annotations.BuildProducer<io.quarkus.deployment.builditem.SystemPropertyBuildItem> systemPropertyProducer, List<EagerSecurityInterceptorBindingBuildItem> eagerSecurityInterceptorBindings)
- initBasicAuth
  
  io.quarkus.arc.deployment.SyntheticBeanBuildItem initBasicAuth(HttpSecurityRecorder recorder, VertxHttpConfig httpConfig, VertxHttpBuildTimeConfig httpBuildTimeConfig, io.quarkus.deployment.annotations.BuildProducer<SecurityInformationBuildItem> securityInformationProducer)
- setupAuthenticationMechanisms
  
  void setupAuthenticationMechanisms(HttpSecurityRecorder recorder, io.quarkus.deployment.annotations.BuildProducer<FilterBuildItem> filterBuildItemBuildProducer, io.quarkus.deployment.annotations.BuildProducer<io.quarkus.arc.deployment.AdditionalBeanBuildItem> beanProducer, Optional<HttpSecurityProcessor.HttpAuthenticationHandlerBuildItem> authenticationHandlerBuildItem, io.quarkus.deployment.Capabilities capabilities, VertxHttpBuildTimeConfig httpBuildTimeConfig, io.quarkus.deployment.annotations.BuildProducer<SecurityInformationBuildItem> securityInformationProducer)
- createHttpAuthenticationHandler
  
  void createHttpAuthenticationHandler(HttpSecurityRecorder recorder, io.quarkus.deployment.Capabilities capabilities, VertxHttpBuildTimeConfig httpBuildTimeConfig, io.quarkus.deployment.annotations.BuildProducer<HttpSecurityProcessor.HttpAuthenticationHandlerBuildItem> authenticationHandlerProducer)
- initializeAuthenticationHandler
  
  void initializeAuthenticationHandler(Optional<HttpSecurityProcessor.HttpAuthenticationHandlerBuildItem> authenticationHandler, HttpSecurityRecorder recorder, VertxHttpConfig httpConfig, io.quarkus.arc.deployment.BeanContainerBuildItem beanContainerBuildItem)
- registerHttpAuthMechanismAnnotations
  
  List<HttpAuthMechanismAnnotationBuildItem> registerHttpAuthMechanismAnnotations()
- registerAuthMechanismSelectionInterceptor
  
  void registerAuthMechanismSelectionInterceptor(io.quarkus.deployment.Capabilities capabilities, VertxHttpBuildTimeConfig buildTimeConfig, io.quarkus.deployment.annotations.BuildProducer<EagerSecurityInterceptorBindingBuildItem> bindingProducer, HttpSecurityRecorder recorder, io.quarkus.deployment.annotations.BuildProducer<AdditionalSecuredMethodsBuildItem> additionalSecuredMethodsProducer, io.quarkus.deployment.annotations.BuildProducer<RegisterClassSecurityCheckBuildItem> registerClassSecurityCheckProducer, List<ClassSecurityAnnotationBuildItem> classSecurityAnnotations, List<HttpAuthMechanismAnnotationBuildItem> additionalHttpAuthMechAnnotations, io.quarkus.deployment.builditem.CombinedIndexBuildItem combinedIndexBuildItem)
- collectInterceptedMethods
  
  void collectInterceptedMethods(io.quarkus.deployment.builditem.CombinedIndexBuildItem indexBuildItem, List<EagerSecurityInterceptorBindingBuildItem> interceptorBindings, List<ClassSecurityAnnotationBuildItem> classSecurityAnnotations, io.quarkus.deployment.annotations.BuildProducer<EagerSecurityInterceptorMethodsBuildItem> methodsProducer, io.quarkus.deployment.annotations.BuildProducer<EagerSecurityInterceptorClassesBuildItem> classesProducer)
- produceEagerSecurityInterceptorStorage
  
  void produceEagerSecurityInterceptorStorage(HttpSecurityRecorder recorder, io.quarkus.deployment.annotations.BuildProducer<io.quarkus.arc.deployment.SyntheticBeanBuildItem> producer, List<EagerSecurityInterceptorBindingBuildItem> interceptorBindings, List<EagerSecurityInterceptorClassesBuildItem> interceptorClasses, List<EagerSecurityInterceptorMethodsBuildItem> interceptorMethods)
- addRoutingCtxToSecurityEventsForCdiBeans
  
  void addRoutingCtxToSecurityEventsForCdiBeans(HttpSecurityRecorder recorder, io.quarkus.deployment.Capabilities capabilities, io.quarkus.deployment.annotations.BuildProducer<AdditionalSecurityConstrainerEventPropsBuildItem> producer)
- gatherAuthorizationPolicyInstances
  
  AuthorizationPolicyInstancesBuildItem gatherAuthorizationPolicyInstances(io.quarkus.deployment.builditem.CombinedIndexBuildItem combinedIndex, io.quarkus.deployment.Capabilities capabilities)
- generateAuthorizationPolicyStorage
  
  void generateAuthorizationPolicyStorage(io.quarkus.deployment.annotations.BuildProducer<io.quarkus.arc.deployment.GeneratedBeanBuildItem> generatedBeanProducer, io.quarkus.deployment.Capabilities capabilities, AuthorizationPolicyInstancesBuildItem authZPolicyInstancesItem, io.quarkus.deployment.annotations.BuildProducer<AdditionalSecurityAnnotationBuildItem> additionalSecurityAnnotationProducer)
  Implements AuthorizationPolicyStorage as a bean. If no AuthorizationPolicy are detected, generated bean will look like this:
  public class AuthorizationPolicyStorage_Imp extends AuthorizationPolicyStorage { AuthorizationPolicyStorage_Imp() { super(); } @Override protected Map<MethodDescription, String> getMethodToPolicyName() { return Map.of(); } }
  On the other hand, if AuthorizationPolicy is detected, getMethodToPolicyName returns method descriptions of detected annotation instances.
- createSecurityIdentityAssociation
  
  io.quarkus.arc.deployment.AdditionalBeanBuildItem createSecurityIdentityAssociation()
- dontPropagateSecurityIdentityToDuplicateContext
  
  IgnoredContextLocalDataKeysBuildItem dontPropagateSecurityIdentityToDuplicateContext(HttpSecurityRecorder recorder)
- collectClassMethodsWithoutRbacAnnotation
  
  public static Set<org.jboss.jandex.MethodInfo> collectClassMethodsWithoutRbacAnnotation(Collection<org.jboss.jandex.ClassInfo> classes)
- collectMethodsWithoutRbacAnnotation
  
  public static Set<org.jboss.jandex.MethodInfo> collectMethodsWithoutRbacAnnotation(Collection<org.jboss.jandex.MethodInfo> methods)
- collectAnnotatedClasses
  
  public static Set<org.jboss.jandex.ClassInfo> collectAnnotatedClasses(Collection<org.jboss.jandex.AnnotationInstance> instances, Predicate<org.jboss.jandex.ClassInfo> filter)

Class HttpSecurityProcessor

Nested Class Summary

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Details

HttpSecurityProcessor

Method Details

initFormAuth

initMtlsClientAuth

setMtlsCertificateRoleProperties

detectBasicAuthImplicitlyRequired

initBasicAuth

setupAuthenticationMechanisms

createHttpAuthenticationHandler

initializeAuthenticationHandler

registerHttpAuthMechanismAnnotations

registerAuthMechanismSelectionInterceptor

collectInterceptedMethods

produceEagerSecurityInterceptorStorage

addRoutingCtxToSecurityEventsForCdiBeans

gatherAuthorizationPolicyInstances

generateAuthorizationPolicyStorage

createSecurityIdentityAssociation

dontPropagateSecurityIdentityToDuplicateContext

collectClassMethodsWithoutRbacAnnotation

collectMethodsWithoutRbacAnnotation

collectAnnotatedClasses