How to use AntPathRequestMatcher method of com.testsigma.security.JWTAuthenticationFilter class

Best Testsigma code snippet using com.testsigma.security.JWTAuthenticationFilter.AntPathRequestMatcher

Source:WebSecurityConfig.java

...34import org.springframework.security.oauth2.core.endpoint.OAuth2AuthorizationRequest;35import org.springframework.security.web.AuthenticationEntryPoint;36import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;37import org.springframework.security.web.authentication.logout.HttpStatusReturningLogoutSuccessHandler;38import org.springframework.security.web.util.matcher.AntPathRequestMatcher;39import javax.validation.constraints.NotNull;40import static com.testsigma.config.AjaxLoginFormConfigurer.ajaxLogin;41@Configuration42@EnableWebSecurity43@RequiredArgsConstructor(onConstructor = @__(@Autowired))44public class WebSecurityConfig extends WebSecurityConfigurerAdapter {45  private final static String JSESSIONID_COOKIE = "JSESSIONID";46  private final AuthUserService authUserService;47  private final AuthenticationConfigProperties authenticationConfigProperties;48  private final AdditionalPropertiesConfig additionalPropertiesConfig;49  @Value("${testsigma.csrf.header:X-C}")50  String headerName;51  @Bean52  public BCryptPasswordEncoder bCryptPasswordEncoder() {53    return new BCryptPasswordEncoder();54  }55  @Autowired56  public void configureGlobal(AuthenticationManagerBuilder auth) throws Exception {57    BCryptPasswordEncoder bCryptPasswordEncoder = bCryptPasswordEncoder();58    auth.userDetailsService(authUserService).passwordEncoder(bCryptPasswordEncoder);59    authUserService.setBCryptPasswordEncoder(bCryptPasswordEncoder);60  }61  @Bean62  public AuthenticationEntryPoint authenticationEntryPoint() {63    return new RestAuthenticationEntryPoint();64  }65  @Bean66  @Override67  public AuthenticationManager authenticationManagerBean() throws Exception {68    return super.authenticationManagerBean();69  }70  @NotNull71  @Bean72  public AjaxLoginSuccessHandler ajaxLoginSuccessHandler() {73    return new AjaxLoginSuccessHandler();74  }75  @NotNull76  @Bean77  public AjaxLoginFailureHandler ajaxLoginFailureHandler() {78    return new AjaxLoginFailureHandler();79  }80  @Bean81  public JWTAuthenticationFilter jwtAuthenticationFilter() throws Exception {82    JWTAuthenticationFilter filter = new JWTAuthenticationFilter("/**/*");83    filter.setAuthenticationManager(super.authenticationManagerBean());84    return filter;85  }86  @Bean87  public com.testsigma.security.api.APIAuthenticationFilter apiJwtAuthenticationFilter() throws Exception {88    com.testsigma.security.api.APIAuthenticationFilter filter = new com.testsigma.security.api.APIAuthenticationFilter();89    filter.setAuthenticationManager(super.authenticationManagerBean());90    return filter;91  }92  @Bean93  public com.testsigma.security.PresignedAuthenticationFilter presignedJwtAuthenticationFilter() throws Exception {94    com.testsigma.security.PresignedAuthenticationFilter filter = new com.testsigma.security.PresignedAuthenticationFilter();95    filter.setAuthenticationManager(super.authenticationManagerBean());96    return filter;97  }98  @Bean99  public AgentJwtAuthenticationFilter agentJwtAuthorizationFilter() throws Exception {100    AgentJwtAuthenticationFilter filter = new AgentJwtAuthenticationFilter();101    filter.setAuthenticationManager(super.authenticationManagerBean());102    return filter;103  }104  @Bean105  public AuthorizationRequestRepository<OAuth2AuthorizationRequest> cookieAuthorizationRequestRepository() {106    return new com.testsigma.security.HttpCookieOAuth2AuthorizationRequestRepository();107  }108  @Bean109  public ClientRegistrationRepository clientRegistrationRepository() {110    return new InMemoryClientRegistrationRepository(this.googleClientRegistration());111  }112  private ClientRegistration googleClientRegistration() {113    String googleClientId = StringUtils.defaultIfEmpty(additionalPropertiesConfig.getGoogleClientId(),114      authenticationConfigProperties.getGoogleOAuthClientID());115    String googleClientSecret = StringUtils.defaultIfEmpty(additionalPropertiesConfig.getGoogleClientSecret(),116      authenticationConfigProperties.getGoogleOAuthClientSecret());117    return CommonOAuth2Provider.GOOGLE.getBuilder("google")118      .clientId(googleClientId)119      .clientSecret(googleClientSecret)120      .build();121  }122  @Override123  public void configure(WebSecurity web) {124    web.ignoring()125      .antMatchers(HttpMethod.GET, URLConstants.SESSION_RESOURCE_URL)126      .antMatchers((URLConstants.AGENT_CERTIFICATE_URL + URLConstants.ALL_SUB_URLS))127      .antMatchers(URLConstants.ASSETS_URL)128      .antMatchers("/servers")129      .antMatchers("/auth_config")130      .antMatchers("/onboarding/**")131      .antMatchers("/local/agents/**");132  }133  @Override134  protected void configure(HttpSecurity http) throws Exception {135    configureOauth2LoginHandlers(136      configureFilters(137        configureLoginHandlers(138          configureLogoutHandlers(139            configureExceptionHandling(140              configureUrlAuthorizations(141                configureCsrf(142                  configureCors(143                    basicConfig(http)144                  )145                )146              )147            )148          )149        )150      )151    );152  }153  private HttpSecurity basicConfig(HttpSecurity http) throws Exception {154    return http.headers().frameOptions().disable().and()155      .sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS).and();156  }157  private HttpSecurity configureCors(HttpSecurity http) throws Exception {158    return http.cors().and();159  }160  private HttpSecurity configureCsrf(HttpSecurity http) throws Exception {161    return http.csrf().disable();162  }163  private HttpSecurity configureUrlAuthorizations(HttpSecurity http) throws Exception {164    return http.authorizeRequests().antMatchers(URLConstants.ASSETS_URL).permitAll()165      .antMatchers(URLConstants.AGENT_CERTIFICATE_URL + URLConstants.ALL_SUB_URLS).permitAll()166      .antMatchers(HttpMethod.POST, URLConstants.LOGIN_URL).permitAll()167      .antMatchers(HttpMethod.GET, URLConstants.SESSION_RESOURCE_URL).permitAll()168      .antMatchers(URLConstants.ALL_URLS).access("isFullyAuthenticated()")169      .antMatchers(URLConstants.ALL_URLS).authenticated().and();170  }171  private HttpSecurity configureExceptionHandling(HttpSecurity http) throws Exception {172    return http.exceptionHandling().authenticationEntryPoint(authenticationEntryPoint()).and();173  }174  private HttpSecurity configureLogoutHandlers(HttpSecurity http) throws Exception {175    return http.logout()176      .logoutRequestMatcher(new AntPathRequestMatcher(URLConstants.LOGOUT_URL, HttpMethod.GET.name()))177      .logoutSuccessHandler((new HttpStatusReturningLogoutSuccessHandler(HttpStatus.OK)))178      .deleteCookies(JSESSIONID_COOKIE)179      .deleteCookies(JWTTokenService.JWT_COOKIE_NAME).invalidateHttpSession(true).and();180  }181  private HttpSecurity configureLoginHandlers(HttpSecurity http) throws Exception {182    return http.anonymous().disable().apply(ajaxLogin()).loginPage(URLConstants.LOGIN_URL)183      .successHandler(ajaxLoginSuccessHandler()).failureHandler(ajaxLoginFailureHandler()).and();184  }185  private HttpSecurity configureFilters(HttpSecurity http) throws Exception {186    return http.addFilterBefore(jwtAuthenticationFilter(), UsernamePasswordAuthenticationFilter.class)187      .addFilterAfter(apiJwtAuthenticationFilter(), JWTAuthenticationFilter.class)188      .addFilterAfter(agentJwtAuthorizationFilter(), JWTAuthenticationFilter.class)189      .addFilterBefore(presignedJwtAuthenticationFilter(), UsernamePasswordAuthenticationFilter.class);190  }...

Source:JWTAuthenticationFilter.java

...22import org.springframework.security.core.AuthenticationException;23import org.springframework.security.core.context.SecurityContext;24import org.springframework.security.core.context.SecurityContextHolder;25import org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter;26import org.springframework.security.web.util.matcher.AntPathRequestMatcher;27import org.springframework.security.web.util.matcher.RequestMatcher;28import javax.servlet.FilterChain;29import javax.servlet.ServletException;30import javax.servlet.http.Cookie;31import javax.servlet.http.HttpServletRequest;32import javax.servlet.http.HttpServletResponse;33import java.io.IOException;34import java.util.UUID;35@Log4j236public class JWTAuthenticationFilter extends AbstractAuthenticationProcessingFilter {37  private final RequestMatcher sessionRequestMatcher = new AntPathRequestMatcher(URLConstants.SESSION_RESOURCE_URL,38    HttpMethod.GET.toString());39  private final RequestMatcher loginRequestMatcher = new AntPathRequestMatcher(URLConstants.LOGIN_URL,40    HttpMethod.POST.toString());41  private final RequestMatcher apiRequestMatcher = new AntPathRequestMatcher(URLConstants.API_BASE_URL + "/**");42  private final RequestMatcher presignedStorageRequestMatcher = new AntPathRequestMatcher(URLConstants.PRESIGNED_BASE_URL + "/**");43  private final RequestMatcher agentApiRequestMatcher = new AntPathRequestMatcher(URLConstants.AGENT_API_BASE_URL + "/**");44  private final RequestMatcher oauthRequestMatcher = new AntPathRequestMatcher(URLConstants.OAUTH2_BASE_URL + "/**");45  private final RequestMatcher agentCertificateMatcher = new AntPathRequestMatcher(URLConstants.AGENT_CERTIFICATE_URL + "/**");46  private final RequestMatcher serverRequestMatcher = new AntPathRequestMatcher("/servers");47  private final RequestMatcher onboardingMatcher = new AntPathRequestMatcher("/onboarding/**");48  private final RequestMatcher authConfigMatcher = new AntPathRequestMatcher("/auth_config");49  private final RequestMatcher localAgentMatcher = new AntPathRequestMatcher("/local/agents/**");50  @Autowired51  AuthenticationManager authenticationManager;52  @Autowired53  JWTTokenService jwtTokenService;54  @Autowired55  AdditionalPropertiesConfig authenticationConfig;56  @Autowired57  UserPreferenceService userPreferenceService;58  @Autowired59  JWTTokenService tokenService;60  @Value("#{new Boolean('${server.servlet.session.cookie.http-only}')}")61  private Boolean httpOnly;62  @Value("#{new Boolean('${server.servlet.session.cookie.secure}')}")63  private Boolean secure;...

AntPathRequestMatcher

Using AI Code Generation

1    protected void configure(HttpSecurity http) throws Exception {2        http.csrf().disable().authorizeRequests()3                .antMatchers("/login").permitAll()4                .anyRequest().authenticated()5                .and()6                .addFilterBefore(new JWTLoginFilter("/login", authenticationManager()),

AntPathRequestMatcher

Using AI Code Generation

1public class AntPathRequestMatcherTest {2    public static void main(String[] args) {3        String[] patterns = new String[] {"/api/**", "/api/**/test", "/api/**/test/*", "/api/**/test/**"};4        String[] requests = new String[] {"/api", "/api/test", "/api/test/test1", "/api/test/test1/test2", "/api/test/test1/test2/test3"};5        for (String pattern : patterns) {6            AntPathRequestMatcher matcher = new AntPathRequestMatcher(pattern);7            for (String request : requests) {8                System.out.println("Pattern: " + pattern + " Request: " + request + " " + matcher.matches(new MockHttpServletRequest("GET", request)));9            }10        }11    }12}

Automation Testing Tutorials

Learn to execute automation testing from scratch with LambdaTest Learning Hub. Right from setting up the prerequisites to run your first automation test, to following best practices and diving deeper into advanced test scenarios. LambdaTest Learning Hubs compile a list of step-by-step guides to help you be proficient with different test automation frameworks i.e. Selenium, Cypress, TestNG etc.