Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Basic Authentication with embedded Jetty 7 server and no web.xml file

Tags:

basic-authentication

jetty

I have an embedded implementation of Jetty 7 running as a service and want to add basic authentication with no web.xml file for a servlet.

I created my credentials using the steps described here

I thought that I could create the server, create a security handler with basic authentication and attach a HashLoginService to the security manager. But I am clearly missing several things because I am never getting prompt for credentials.

Below is the code. Any help would be greatly appreciated.

    server = new Server(port);
    server.addConnector(getSslChannelConnector(securePort));
    server.setGracefulShutdown(1000);
    server.setStopAtShutdown(true);

    // create the context handler for the server
    ServletContextHandler sch = new ServletContextHandler(server, WEBAPP_CONTEXT);

    // attach the security handler to it that has basic authentication
    sch.setSecurityHandler(getSecurityHandler());

    // define the processing servlet.
    sch.addServlet(new ServletHolder(new ProcessingServlet()), "/process");

    .
    .
private SecurityHandler getSecurityHandler() {

    // add authentication
    Constraint constraint = new Constraint(Constraint.__BASIC_AUTH,"user");
    constraint.setAuthenticate(true);
    constraint.setRoles(new String[]{"user","admin"});

    // map the security constraint to the root path.
    ConstraintMapping cm = new ConstraintMapping();
    cm.setConstraint(constraint);
    cm.setPathSpec("/*");

    // create the security handler, set the authentication to Basic
    // and assign the realm.
    ConstraintSecurityHandler csh = new ConstraintSecurityHandler();
    csh.setAuthenticator(new BasicAuthenticator());
    csh.setRealmName(REALM);
    csh.addConstraintMapping(cm);

    // set the login service
    csh.setLoginService(getHashLoginService());

    return csh;

}
private HashLoginService getHashLoginService() {

    // create the login service, assign the realm and read the user credentials
    // from the file /tmp/realm.properties.
    HashLoginService hls = new HashLoginService();
    hls.setName(REALM);
    hls.setConfig("/tmp/realm.properties");
    hls.setRefreshInterval(0);
    return hls;
}
like image 957
jspyeatt Avatar asked Nov 08 '11 20:11

jspyeatt

1 Answers

I got this working and posted a sample webapp here

like image 108
Jesper J. Avatar answered Sep 22 '22 06:09

Jesper J.
Sign in to Comment

Related questions

Deactivate Jetty's default 404 error handler
Jetty 9.0 embedded and RestEasy 3.0 keeps throwing NoSuchMethodError
Jetty Startup issue: WebAppContext:Failed startup of context o.e.j.w.WebAppContext{/,null}
Running a web application (WAR) with embedded jetty server
Docker - Run Jetty on HTTPS
How to enable response time logging in Jetty 7
Jetty Startup Fails - Address in Use
jquery cross domain authentication
How Jetty handles class loading with same class with different dependencies?
Changes wont reflect in localhost while using google app engine
Jetty 7: configuring JNDI for Start.java
Gradle + Intellij IDEA 13 bug
How do I place jars in jetty/lib on the jetty classpath?
java.lang.ClassNotFoundException: org.eclipse.jetty.Server
comet vs pubsub..?
Dropwizard 0.8 and Jetty fail return 404 on resources
Jetty Websocket IdleTimeout
Run JavaExec task in background and then terminate when build completes
How can I deploy a WAR in an embedded Jetty 8?
web.xml default file in directory (for jetty, or tomcat)?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!