Java tutorial
/** * Copyright 2016, RadiantBlue Technologies, Inc. * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. **/ package gateway; import java.security.Principal; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse; import org.apache.http.client.HttpClient; import org.apache.http.impl.client.HttpClientBuilder; import org.springframework.beans.factory.annotation.Autowired; import org.springframework.beans.factory.annotation.Value; import org.springframework.boot.SpringApplication; import org.springframework.boot.autoconfigure.SpringBootApplication; import org.springframework.boot.builder.SpringApplicationBuilder; import org.springframework.boot.context.web.SpringBootServletInitializer; import org.springframework.context.annotation.Bean; import org.springframework.context.annotation.ComponentScan; import org.springframework.context.annotation.Configuration; import org.springframework.context.annotation.Profile; import org.springframework.http.HttpMethod; import org.springframework.http.client.HttpComponentsClientHttpRequestFactory; import org.springframework.http.converter.json.Jackson2ObjectMapperBuilder; import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder; import org.springframework.security.config.annotation.web.builders.HttpSecurity; import org.springframework.security.config.annotation.web.builders.WebSecurity; import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter; import org.springframework.security.config.http.SessionCreationPolicy; import org.springframework.web.client.RestTemplate; import org.springframework.web.servlet.config.annotation.InterceptorRegistry; import org.springframework.web.servlet.config.annotation.WebMvcConfigurerAdapter; import org.springframework.web.servlet.handler.HandlerInterceptorAdapter; import gateway.auth.PiazzaBasicAuthenticationEntryPoint; import gateway.auth.PiazzaBasicAuthenticationProvider; import io.swagger.annotations.Api; import springfox.documentation.builders.ApiInfoBuilder; import springfox.documentation.builders.PathSelectors; import springfox.documentation.builders.RequestHandlerSelectors; import springfox.documentation.service.ApiInfo; import springfox.documentation.service.Contact; import springfox.documentation.spi.DocumentationType; import springfox.documentation.spring.web.plugins.Docket; import springfox.documentation.swagger2.annotations.EnableSwagger2; /** * Spring-boot configuration for the Gateway service. * * @author Patrick.Doody, Russell.Orf * */ @SpringBootApplication @EnableSwagger2 @ComponentScan({ "gateway, util" }) public class Application extends SpringBootServletInitializer { @Value("${http.max.total}") private int httpMaxTotal; @Value("${http.max.route}") private int httpMaxRoute; @Override protected SpringApplicationBuilder configure(SpringApplicationBuilder builder) { return builder.sources(Application.class); } public static void main(String[] args) { SpringApplication.run(Application.class, args); // NOSONAR } @Bean public Jackson2ObjectMapperBuilder jacksonBuilder() { Jackson2ObjectMapperBuilder builder = new Jackson2ObjectMapperBuilder(); builder.indentOutput(true); return builder; } @Bean public RestTemplate restTemplate() { RestTemplate restTemplate = new RestTemplate(); HttpClient httpClient = HttpClientBuilder.create().setMaxConnTotal(httpMaxTotal) .setMaxConnPerRoute(httpMaxRoute).build(); restTemplate.setRequestFactory(new HttpComponentsClientHttpRequestFactory(httpClient)); return restTemplate; } @Bean public Docket gatewayApi() { return new Docket(DocumentationType.SWAGGER_2).useDefaultResponseMessages(false) .ignoredParameterTypes(Principal.class).groupName("Piazza").apiInfo(apiInfo()).select() .apis(RequestHandlerSelectors.withClassAnnotation(Api.class)).paths(PathSelectors.any()).build(); } private ApiInfo apiInfo() { return new ApiInfoBuilder().title("Gateway API").description("Piazza Core Services API") .contact(new Contact("The VeniceGeo Project", "http://radiantblue.com", "venice@radiantblue.com")) .version("0.1.0").build(); } @Configuration protected static class AddCorsHeaders extends WebMvcConfigurerAdapter { @Override public void addInterceptors(InterceptorRegistry registry) { registry.addInterceptor(new HandlerInterceptorAdapter() { @Override public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception { response.addHeader("Access-Control-Allow-Methods", "GET, POST, PUT, DELETE, OPTIONS"); return true; } }); } } @Configuration @Profile({ "secure" }) protected static class ApplicationSecurity extends WebSecurityConfigurerAdapter { @Autowired private PiazzaBasicAuthenticationProvider basicAuthProvider; @Autowired private PiazzaBasicAuthenticationEntryPoint basicEntryPoint; @Override protected void configure(AuthenticationManagerBuilder auth) throws Exception { auth.authenticationProvider(basicAuthProvider); } @Override public void configure(WebSecurity web) throws Exception { web.ignoring().antMatchers("/key").antMatchers("/version").antMatchers("/") .antMatchers(HttpMethod.OPTIONS); } @Override protected void configure(HttpSecurity http) throws Exception { http.httpBasic().authenticationEntryPoint(basicEntryPoint).and().authorizeRequests().anyRequest() .authenticated().and().sessionManagement() .sessionCreationPolicy(SessionCreationPolicy.STATELESS).and().csrf().disable(); } } }