ASWI - Pokročilé softwarové inženýrství » ASWI 2019 » Interní podpora mzdové agendy (Oso Oy)

package org.danekja.ymanager;

import org.springframework.context.annotation.Configuration;

import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity;

import org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration;

@Configuration

@EnableGlobalMethodSecurity (jsr250Enabled = true, prePostEnabled = true)

public class MethodSecurityConfiguration extends GlobalMethodSecurityConfiguration {

}

package org.danekja.ymanager;

import org.slf4j.Logger;

import org.slf4j.LoggerFactory;

import org.springframework.context.annotation.Bean;

import org.springframework.context.annotation.Configuration;

import org.springframework.security.authentication.AuthenticationProvider;

import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;

import org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider;

import org.springframework.security.config.annotation.web.builders.HttpSecurity;

import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;

import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;

import org.springframework.security.core.AuthenticationException;

import org.springframework.security.core.userdetails.UserDetails;

import org.springframework.security.core.userdetails.UserDetailsService;

@Configuration

@EnableWebSecurity

public class WebSecurityConfiguration extends WebSecurityConfigurerAdapter {

    @Override

    protected void configure(HttpSecurity http) throws Exception {

        http.cors()

                .and()

                .authorizeRequests()

                .anyRequest().authenticated()

                .and()

                .httpBasic();

    }

    /**

     * This is a dummy authentication provider which does not check password at all.

     * <p>

     * To be replaced with OAuth2 client

     *

     * @param userDetailsService

     * @return

     */

    @Bean

    public AuthenticationProvider dummyAuthManager(UserDetailsService userDetailsService) {

        return new AbstractUserDetailsAuthenticationProvider() {

            private final Logger LOG = LoggerFactory.getLogger("DummyLogger");

            @Override

            protected void additionalAuthenticationChecks(UserDetails userDetails, UsernamePasswordAuthenticationToken authentication) throws AuthenticationException {

            }

            @Override

            protected UserDetails retrieveUser(String username, UsernamePasswordAuthenticationToken authentication) throws AuthenticationException {

                return userDetailsService.loadUserByUsername(username);

            }

        };

    }

}

import org.danekja.ymanager.domain.*;

import org.danekja.ymanager.dto.DefaultSettings;

import org.danekja.ymanager.domain.RequestType;

import org.danekja.ymanager.domain.Status;

import org.danekja.ymanager.domain.RequestType;

import org.danekja.ymanager.domain.Status;

import org.danekja.ymanager.domain.UserRole;

import org.danekja.ymanager.domain.VacationType;

package org.danekja.ymanager.domain;

/**

 * The enum {@code RequestType} represents different types of a request.

 */

public enum RequestType {

    /**

     * The request for a vacation.

     */

    VACATION,

    /**

     * The request for an authorization.

     */

    AUTHORIZATION;

    /**

     * Creates the type of a request from the provided string.

     * The method is case insensitive. If the given string does not correspond to any values of the enum the method returns null.

     *

     * @param type the string representation of the type of a request

     * @return the value of the enum or null

     */

    public static RequestType getType(final String type) {

        if (type == null || type.isEmpty()) return null;

        try {

            return RequestType.valueOf(type.toUpperCase());

        } catch (final IllegalArgumentException e) {

            return null;

        }

    }

}

package org.danekja.ymanager.domain;

/**

 * The enum {@code Status} represents states of authorization and vacation approval process.

 */

public enum Status {

    /**

     * The subject of a request is accepted.

     */

    ACCEPTED,

    /**

     * The subject of a request is waiting for an answer.

     */

    PENDING,

    /**

     * The subject of a request is rejected.

     */

    REJECTED;

    /**

     * Creates the status from the provided string.

     * The method is case insensitive. If the given string does not correspond to any values of the enum the method returns null.

     *

     * @param status the string representation of the status

     * @return the value of the enum or null

     */

    public static Status getStatus(final String status) {

        if (status == null || status.isEmpty()) return null;

        try {

            return Status.valueOf(status.toUpperCase());

        } catch (final IllegalArgumentException e) {

            return null;

        }

    }

}

package org.danekja.ymanager.domain;

/**

 * The enum {@code UserRole} represents different roles of a user.

 */

public enum UserRole {

    /**

     * The user is an employee.

     */

    EMPLOYEE,

    /**

     * The user is na employer. This user has more rights than an employee.

     */

    EMPLOYER;

    /**

     * Creates the role from the provided string.

     * The method is case insensitive. If the given string does not correspond to any values of the enum the method returns null.

     *

     * @param role the string representation of the role

     * @return the value of the enum or null

     */

    public static UserRole getUserRole(final String role) {

        if (role == null || role.isEmpty()) return null;

        try {

            return UserRole.valueOf(role.toUpperCase());

        } catch (final IllegalArgumentException e) {

            return null;

        }

    }

}

package org.danekja.ymanager.domain;

/**

 * The enum {@code VacationType} represents different types of a vacation.

 */

public enum VacationType {

    /**

     * The vacation represents a sick day.

     */

    SICK_DAY,

    /**

     * The vacation represents an overtime.

     */

    VACATION;

    /**

     * Creates the type of a vacation from the provided string.

     * The method is case insensitive. If the given string does not correspond to any values of the enum the method returns null.

     *

     * @param type the string representation of the type of a vacation

     * @return the value of the enum or null

     */

    public static VacationType getVacationType(final String type) {

        if (type == null || type.isEmpty()) return null;

        try {

            return VacationType.valueOf(type.toUpperCase());

        } catch (final IllegalArgumentException e) {

            return null;

        }

    }

}

import org.danekja.ymanager.domain.Status;

import org.danekja.ymanager.domain.Status;

import org.danekja.ymanager.domain.Status;

import org.danekja.ymanager.domain.UserRole;

import org.danekja.ymanager.domain.UserRole;

import org.danekja.ymanager.domain.Status;

import org.danekja.ymanager.domain.VacationType;

import org.danekja.ymanager.domain.Status;

import org.danekja.ymanager.domain.VacationType;

import org.danekja.ymanager.domain.Status;

import org.danekja.ymanager.domain.VacationType;

import org.danekja.ymanager.domain.Status;

import org.danekja.ymanager.domain.UserRole;

import static org.danekja.ymanager.domain.UserRole.getUserRole;

import org.danekja.ymanager.domain.Status;

import org.danekja.ymanager.domain.UserRole;

import org.danekja.ymanager.domain.VacationType;

import static org.danekja.ymanager.domain.Status.getStatus;

import org.danekja.ymanager.domain.Status;

import org.danekja.ymanager.domain.UserRole;

import org.danekja.ymanager.domain.RequestType;

import org.danekja.ymanager.domain.Status;