Issue #10441 ee8 jaspi module is missing (#10444)

* Issue #10441 ee8 jaspi module is missing

Signed-off-by: Olivier Lamy <olamy@apache.org>

* fix parent pom version

Signed-off-by: Olivier Lamy <olamy@apache.org>

---------

Signed-off-by: Olivier Lamy <olamy@apache.org>

jetty-ee8/jetty-ee8-jaspi/pom.xml

@@ -0,0 +1,90 @@
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
+  <parent>
+    <groupId>org.eclipse.jetty.ee8</groupId>
+    <artifactId>jetty-ee8</artifactId>
+    <version>12.0.2-SNAPSHOT</version>
+  </parent>
+
+  <modelVersion>4.0.0</modelVersion>
+  <artifactId>jetty-ee8-jaspi</artifactId>
+  <name>EE8 :: Jetty :: JASPI Security</name>
+  <description>Jetty security infrastructure</description>
+
+  <properties>
+    <ee9.module>jetty-ee9-jaspi</ee9.module>
+    <bundle-symbolic-name>${project.groupId}.security.jaspi</bundle-symbolic-name>
+    <spotbugs.onlyAnalyze>org.eclipse.jetty.jaspi.*</spotbugs.onlyAnalyze>
+  </properties>
+
+  <build>
+    <plugins>
+      <plugin>
+        <groupId>org.apache.felix</groupId>
+        <artifactId>maven-bundle-plugin</artifactId>
+        <extensions>true</extensions>
+        <configuration>
+          <instructions>
+            <Require-Capability>osgi.extender; filter:="(osgi.extender=osgi.serviceloader.registrar)"</Require-Capability>
+            <Provide-Capability>osgi.serviceloader;osgi.serviceloader=org.eclipse.jetty.security.Authenticator$Factory</Provide-Capability>
+          </instructions>
+        </configuration>
+      </plugin>
+      <plugin>
+        <artifactId>maven-antrun-plugin</artifactId>
+        <executions>
+          <execution>
+            <phase>process-resources</phase>
+            <configuration>
+              <target>
+                <!-- ee9 use javax.security but ee8 need java.security -->
+                <replace token="javax.security" value="java.security" dir="${project.build.sourceDirectory}">
+                  <include name="**/module-info.java"/>
+                </replace>
+              </target>
+            </configuration>
+            <goals>
+              <goal>run</goal>
+            </goals>
+          </execution>
+        </executions>
+      </plugin>
+
+    </plugins>
+  </build>
+
+  <dependencies>
+    <dependency>
+      <groupId>jakarta.security.auth.message</groupId>
+      <artifactId>jakarta.security.auth.message-api</artifactId>
+      <version>1.1.3</version>
+    </dependency>
+    <dependency>
+      <groupId>org.eclipse.jetty.toolchain</groupId>
+      <artifactId>jetty-servlet-api</artifactId>
+    </dependency>
+    <dependency>
+      <groupId>org.eclipse.jetty.ee8</groupId>
+      <artifactId>jetty-ee8-security</artifactId>
+    </dependency>
+    <dependency>
+      <groupId>org.slf4j</groupId>
+      <artifactId>slf4j-api</artifactId>
+    </dependency>
+    <dependency>
+      <groupId>org.eclipse.jetty</groupId>
+      <artifactId>jetty-slf4j-impl</artifactId>
+      <scope>test</scope>
+    </dependency>
+    <dependency>
+      <groupId>org.eclipse.jetty.toolchain</groupId>
+      <artifactId>jetty-test-helper</artifactId>
+      <scope>test</scope>
+    </dependency>
+    <dependency>
+      <groupId>jakarta.activation</groupId>
+      <artifactId>jakarta.activation-api</artifactId>
+      <scope>test</scope>
+      <version>1.2.2</version>
+    </dependency>
+  </dependencies>
+</project>

jetty-ee8/jetty-ee8-jaspi/src/main/config/etc/jaspi/jetty-ee8-jaspi-authmoduleconfig.xml

@@ -0,0 +1,8 @@
+<?xml version="1.0"?>
+<!DOCTYPE Configure PUBLIC "-//Jetty//Configure//EN" "https://www.eclipse.org/jetty/configure_10_0.dtd">
+
+<Configure>
+  <Call class="jakarta.security.auth.message.config.AuthConfigFactory" name="getFactory">
+    <!-- Configure the AuthConfigFactory here. -->
+  </Call>
+</Configure>

jetty-ee8/jetty-ee8-jaspi/src/main/config/etc/jaspi/jetty-ee8-jaspi-default.xml

@@ -0,0 +1,20 @@
+<?xml version="1.0"?>
+<!DOCTYPE Configure PUBLIC "-//Jetty//Configure//EN" "https://www.eclipse.org/jetty/configure_10_0.dtd">
+
+<Configure id="Server" class="org.eclipse.jetty.server.Server">
+
+  <!-- ===================================================================== -->
+  <!-- Configure a factory for Jaspi                                         -->
+  <!-- ===================================================================== -->
+  <Call class="jakarta.security.auth.message.config.AuthConfigFactory" name="setFactory">
+    <Arg>
+      <New id="jaspiAuthConfigFactory" class="org.eclipse.jetty.ee8.security.jaspi.DefaultAuthConfigFactory" />
+    </Arg>
+  </Call>
+  <Call name="addBean">
+    <Arg>
+      <Ref refid="jaspiAuthConfigFactory" />
+    </Arg>
+    <Arg type="boolean">false</Arg>
+  </Call>
+</Configure>

jetty-ee8/jetty-ee8-jaspi/src/main/config/etc/jaspi/jetty-ee8-jaspi-demo.xml

@@ -0,0 +1,48 @@
+<?xml version="1.0"?>
+<!DOCTYPE Configure PUBLIC "-//Jetty//Configure//EN" "https://www.eclipse.org/jetty/configure_10_0.dtd">
+
+<Configure>
+  <Call class="jakarta.security.auth.message.config.AuthConfigFactory" name="getFactory">
+    <Call name="registerConfigProvider">
+
+      <!-- The Jetty provided implementation of AuthConfigProvider which will wrap a ServerAuthModule. -->
+      <Arg type="String">org.eclipse.jetty.ee8.security.jaspi.provider.JaspiAuthConfigProvider</Arg>
+
+      <!-- A Map of initialization properties. -->
+      <Arg>
+        <Map>
+          <Entry>
+            <!-- Provide the fully qualified classname of the ServerAuthModule to be used. -->
+            <Item>ServerAuthModule</Item>
+            <Item>org.eclipse.jetty.ee8.security.jaspi.modules.BasicAuthenticationAuthModule</Item>
+          </Entry>
+          <Entry>
+            <!-- Realm as utilised by Jetty Security  -->
+            <Item>org.eclipse.jetty.ee8.security.jaspi.modules.RealmName</Item>
+            <Item>Test Realm</Item>
+          </Entry>
+        </Map>
+      </Arg>
+
+      <!-- Message Layer Identifier as per spec chapter 3.1  -->
+      <Arg type="String">HttpServlet</Arg>
+
+      <!-- Application Context Identifier as per spec chapter 3.2
+
+        AppContextID ::= hostname blank context-path
+        The algorithm applied here will use the
+        _serverName on the configured JaspiAuthenticatorFactory (if set) and try to match it
+        against the "server" part (in the "server /test" example below).
+        Next it will try to match the ServletContext#getVirtualServerName to the "server" part.
+        If neither are set, it will then try to match the first Subject's principal name, and finally fall back to
+        the default value "server" if none are available.
+
+        The context-path should match the context path where this applies.
+      -->
+      <Arg type="String">server /test</Arg>
+
+      <!-- A friendly description of the provided auth-module. -->
+      <Arg type="String">A simple provider using HTTP BASIC authentication.</Arg>
+    </Call>
+  </Call>
+</Configure>

jetty-ee8/jetty-ee8-jaspi/src/main/config/modules/ee9-jaspi-default-auth-config-factory.mod

@@ -0,0 +1,19 @@
+# DO NOT EDIT - See: https://www.eclipse.org/jetty/documentation/current/startup-modules.html
+
+[description]
+Provides a DefaultAuthConfigFactory for jaspi
+
+[tags]
+security
+
+[environment]
+ee8
+
+[depend]
+ee8-security
+
+[provide]
+ee8-auth-config-factory
+
+[xml]
+etc/jaspi/jetty-ee8-jaspi-default.xml

jetty-ee8/jetty-ee8-jaspi/src/main/config/modules/ee9-jaspi-demo.mod

@@ -0,0 +1,19 @@
+# DO NOT EDIT - See: https://www.eclipse.org/jetty/documentation/current/startup-modules.html
+
+[description]
+Enables JASPI basic authentication the /test context path.
+
+[tags]
+security
+
+[environment]
+ee8
+
+[depend]
+ee8-jaspi
+
+[xml]
+etc/jaspi/jetty-ee8-jaspi-demo.xml
+
+[files]
+basehome:etc/jaspi/jetty-ee8-jaspi-demo.xml|etc/jaspi/jetty-ee8-jaspi-demo.xml

jetty-ee8/jetty-ee8-jaspi/src/main/config/modules/ee9-jaspi.mod

@@ -0,0 +1,22 @@
+# DO NOT EDIT - See: https://www.eclipse.org/jetty/documentation/current/startup-modules.html
+
+[description]
+Enables JASPI authentication for deployed web applications.
+
+[tags]
+security
+
+[depend]
+ee8-security
+ee8-auth-config-factory
+
+[lib]
+lib/jetty-ee8-jaspi-${jetty.version}.jar
+lib/jaspi/*.jar
+
+[xml]
+etc/jaspi/jetty-ee8-jaspi-authmoduleconfig.xml
+
+[files]
+basehome:etc/jaspi/jetty-ee8-jaspi-authmoduleconfig.xml|etc/jaspi/jetty-ee8-jaspi-authmoduleconfig.xml
+

jetty-ee8/jetty-ee8-jaspi/src/main/resources/META-INF/services/org.eclipse.jetty.ee8.security.Authenticator$Factory

@@ -0,0 +1 @@
+org.eclipse.jetty.ee8.security.jaspi.JaspiAuthenticatorFactory

jetty-ee8/pom.xml

@@ -37,6 +37,7 @@
     <module>jetty-ee8-plus</module>
     <module>jetty-ee8-jndi</module>
     <module>jetty-ee8-maven-plugin</module>
+    <module>jetty-ee8-jaspi</module>
     <module>jetty-ee8-jspc-maven-plugin</module>
     <module>jetty-ee8-proxy</module>
     <module>jetty-ee8-annotations</module>
@@ -241,6 +242,11 @@
           <artifactId>apache-jsp</artifactId>
           <version>${jsp.impl.version}</version>
         </dependency>
+        <dependency>
+          <groupId>jakarta.activation</groupId>
+          <artifactId>jakarta.activation-api</artifactId>
+          <version>1.2.2</version>
+        </dependency>
         <dependency>
           <groupId>jakarta.servlet.jsp.jstl</groupId>
           <artifactId>jakarta.servlet.jsp.jstl-api</artifactId>
@@ -251,6 +257,11 @@
           <artifactId>jakarta.servlet.jsp-api</artifactId>
           <version>2.3.6</version>
         </dependency>
+        <dependency>
+          <groupId>org.eclipse.jetty.orbit</groupId>
+          <artifactId>javax.security.auth.message</artifactId>
+          <version>1.0.0.v201108011116</version>
+        </dependency>
         <dependency>
           <groupId>org.glassfish.web</groupId>
           <artifactId>javax.servlet.jsp.jstl</artifactId>