BAEL-315 adding configuration for security on the config and discovery servers.

2016-10-03 13:01:01 -06:00 · 2016-10-03 13:01:01 -06:00 · d3979102f8
parent 72b2eacb4f
commit d3979102f8
11 changed files with 72 additions and 5 deletions
--- a/spring-cloud/spring-cloud-bootstrap/application-config/discovery.properties
+++ b/spring-cloud/spring-cloud-bootstrap/application-config/discovery.properties
@ -3,6 +3,6 @@ server.port=8082

 eureka.instance.hostname=localhost

-eureka.client.serviceUrl.defaultZone=http://localhost:8082/eureka/
+eureka.client.serviceUrl.defaultZone=http://disc_discUser:discPassword@localhost:8082/eureka/
 eureka.client.register-with-eureka=false
 eureka.client.fetch-registry=false
--- a/spring-cloud/spring-cloud-bootstrap/application-config/gateway.properties
+++ b/spring-cloud/spring-cloud-bootstrap/application-config/gateway.properties
@ -3,7 +3,7 @@ server.port=8080

 eureka.client.region = default
 eureka.client.registryFetchIntervalSeconds = 5
-eureka.client.serviceUrl.defaultZone=http://localhost:8082/eureka/
+eureka.client.serviceUrl.defaultZone=http://disc_gatewayUser:gatewayPassword@localhost:8082/eureka/

 zuul.routes.resource.path=/resource/**
 hystrix.command.resource.execution.isolation.thread.timeoutInMilliseconds: 5000
--- a/spring-cloud/spring-cloud-bootstrap/application-config/resource.properties
+++ b/spring-cloud/spring-cloud-bootstrap/application-config/resource.properties
@ -5,4 +5,4 @@ resource.returnString=hello cloud

 eureka.client.region = default
 eureka.client.registryFetchIntervalSeconds = 5
-eureka.client.serviceUrl.defaultZone=http://localhost:8082/eureka/
+eureka.client.serviceUrl.defaultZone=http://disc_resourceUser:resourcePassword@localhost:8082/eureka/
--- a/spring-cloud/spring-cloud-bootstrap/config/pom.xml
+++ b/spring-cloud/spring-cloud-bootstrap/config/pom.xml
@ -28,6 +28,10 @@
            <artifactId>spring-boot-starter-test</artifactId>
            <scope>test</scope>
        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-security</artifactId>
+        </dependency>
    </dependencies>

    <dependencyManagement>
--- a/spring-cloud/spring-cloud-bootstrap/config/src/main/java/com/baeldung/spring/cloud/integration/config/SecurityConfig.java
+++ b/spring-cloud/spring-cloud-bootstrap/config/src/main/java/com/baeldung/spring/cloud/integration/config/SecurityConfig.java
@ -0,0 +1,25 @@
+package com.baeldung.spring.cloud.integration.config;
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
+import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+
+@Configuration
+@EnableWebSecurity
+public class SecurityConfig extends WebSecurityConfigurerAdapter {
+
+    @Autowired
+    public void configureGlobal(AuthenticationManagerBuilder auth) throws Exception{
+        auth.inMemoryAuthentication()
+                .withUser("config_discUser")
+                .password("discPassword")
+            .and()
+                .withUser("config_gatewayUser")
+                .password("gatewayPassword")
+            .and()
+                .withUser("config_resourceUser")
+                .password("resourcePassword");
+    }
+}
--- a/spring-cloud/spring-cloud-bootstrap/config/src/main/resources/application.properties
+++ b/spring-cloud/spring-cloud-bootstrap/config/src/main/resources/application.properties
@ -5,4 +5,4 @@ spring.cloud.config.server.git.uri=file:///${user.home}/application-config

 eureka.client.region = default
 eureka.client.registryFetchIntervalSeconds = 5
-eureka.client.serviceUrl.defaultZone=http://localhost:8082/eureka
+eureka.client.serviceUrl.defaultZone=disc_configUser:configPassword@http://localhost:8082/eureka/
--- a/spring-cloud/spring-cloud-bootstrap/discovery/pom.xml
+++ b/spring-cloud/spring-cloud-bootstrap/discovery/pom.xml
@ -28,6 +28,10 @@
            <artifactId>spring-boot-starter-test</artifactId>
            <scope>test</scope>
        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-security</artifactId>
+        </dependency>
    </dependencies>

    <dependencyManagement>
--- a/spring-cloud/spring-cloud-bootstrap/discovery/src/main/java/com/baeldung/spring/cloud/integration/discovery/SecurityConfig.java
+++ b/spring-cloud/spring-cloud-bootstrap/discovery/src/main/java/com/baeldung/spring/cloud/integration/discovery/SecurityConfig.java
@ -0,0 +1,28 @@
+package com.baeldung.spring.cloud.integration.discovery;
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
+import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+
+@Configuration
+@EnableWebSecurity
+public class SecurityConfig extends WebSecurityConfigurerAdapter {
+
+    @Autowired
+    public void configureGlobal(AuthenticationManagerBuilder auth) throws Exception{
+        auth.inMemoryAuthentication()
+                .withUser("disc_configUser")
+                .password("configPassword")
+            .and()
+                .withUser("disc_discUser")
+                .password("discPassword")
+            .and()
+                .withUser("disc_gatewayUser")
+                .password("gatewayPassword")
+            .and()
+                .withUser("disc_resourceUser")
+                .password("resourcePassword");
+    }
+}
--- a/spring-cloud/spring-cloud-bootstrap/discovery/src/main/resources/bootstrap.properties
+++ b/spring-cloud/spring-cloud-bootstrap/discovery/src/main/resources/bootstrap.properties
@ -1,2 +1,4 @@
 spring.cloud.config.name=discovery
-spring.cloud.config.uri=http://localhost:8081
+spring.cloud.config.uri=http://localhost:8081
+spring.cloud.config.username=config_discUser
+spring.cloud.config.password=discPassword
--- a/spring-cloud/spring-cloud-bootstrap/gateway/src/main/resources/bootstrap.properties
+++ b/spring-cloud/spring-cloud-bootstrap/gateway/src/main/resources/bootstrap.properties
@ -1,5 +1,7 @@
 spring.cloud.config.name=gateway
 spring.cloud.config.discovery.service-id=config
 spring.cloud.config.discovery.enabled=true
+spring.cloud.config.username=config_gatewayUser
+spring.cloud.config.password=gatewayPassword

 eureka.client.serviceUrl.defaultZone=http://localhost:8082/eureka/
--- a/spring-cloud/spring-cloud-bootstrap/resource/src/main/resources/bootstrap.properties
+++ b/spring-cloud/spring-cloud-bootstrap/resource/src/main/resources/bootstrap.properties
@ -1,5 +1,7 @@
 spring.cloud.config.name=resource
 spring.cloud.config.discovery.service-id=config
 spring.cloud.config.discovery.enabled=true
+spring.cloud.config.username=config_resourceUser
+spring.cloud.config.password=resourcePassword

 eureka.client.serviceUrl.defaultZone=http://localhost:8082/eureka/