github
/
halo
mirror of https://github.com/halo-dev/halo
1
0
Fork 0
Code Issues Releases Wiki Activity

Provide an authentication enabled option

pull/137/head
johnniang 2019-03-28 22:52:54 +08:00
parent 0add4107ef
commit 35a2ddf546
4 changed files with 25 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
src/main/java/cc/ryanc/halo/config/HaloConfiguration.java
View File

@ -82,6 +82,9 @@ public class HaloConfiguration {
ObjectMapper objectMapper, ObjectMapper objectMapper,
StringCacheStore cacheStore) { StringCacheStore cacheStore) {
AdminAuthenticationFilter adminFilter = new AdminAuthenticationFilter(cacheStore, "/admin/api/login"); AdminAuthenticationFilter adminFilter = new AdminAuthenticationFilter(cacheStore, "/admin/api/login");
// Set auth enabled
adminFilter.setAuthEnabled(haloProperties.getAuthEnabled());
// Set failure handler // Set failure handler
adminFilter.setFailureHandler(new AdminAuthenticationFailureHandler(haloProperties.getProductionEnv(), objectMapper)); adminFilter.setFailureHandler(new AdminAuthenticationFailureHandler(haloProperties.getProductionEnv(), objectMapper));

5
src/main/java/cc/ryanc/halo/config/properties/HaloProperties.java
View File

@ -24,6 +24,11 @@ public class HaloProperties {
*/ */
private Boolean productionEnv = true; private Boolean productionEnv = true;
/**
* Authentication enabled
*/
private Boolean authEnabled = true;
/** /**
* Work directory. * Work directory.
*/ */

16
src/main/java/cc/ryanc/halo/security/filter/AdminAuthenticationFilter.java
View File

@ -50,6 +50,11 @@ public class AdminAuthenticationFilter extends OncePerRequestFilter {
private AuthenticationFailureHandler failureHandler; private AuthenticationFailureHandler failureHandler;
/**
* Authentication enabled.
*/
private boolean authEnabled = true;
private final StringCacheStore cacheStore; private final StringCacheStore cacheStore;
private final Collection<String> excludeUrlPatterns; private final Collection<String> excludeUrlPatterns;
@ -64,6 +69,13 @@ public class AdminAuthenticationFilter extends OncePerRequestFilter {
@Override @Override
protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, FilterChain filterChain) throws ServletException, IOException { protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, FilterChain filterChain) throws ServletException, IOException {
if (!authEnabled) {
// If authentication disabled
filterChain.doFilter(request, response);
return;
}
// Get token from request // Get token from request
String token = getTokenFromRequest(request); String token = getTokenFromRequest(request);
@ -112,6 +124,10 @@ public class AdminAuthenticationFilter extends OncePerRequestFilter {
this.failureHandler = failureHandler; this.failureHandler = failureHandler;
} }
public void setAuthEnabled(boolean authEnabled) {
this.authEnabled = authEnabled;
}
/** /**
* Gets token from request. * Gets token from request.
* *

1
src/main/resources/application-dev.yaml
View File

@ -54,3 +54,4 @@ logging:
halo: halo:
doc-disabled: false doc-disabled: false
production-env: false production-env: false
auth-enabled: false