D-Net

package eu.dnetlib.repo.manager.server.utils;

import org.mitre.openid.connect.model.OIDCAuthenticationToken;

import org.springframework.security.core.Authentication;

import org.springframework.security.web.authentication.AuthenticationSuccessHandler;

import javax.servlet.ServletException;

import javax.servlet.http.Cookie;

import javax.servlet.http.HttpServletRequest;

import javax.servlet.http.HttpServletResponse;

import java.io.IOException;

public class FrontEndLinkURIAuthenticationSuccessHandler implements AuthenticationSuccessHandler {

    private String frontEndURI;

    @Override

    public void onAuthenticationSuccess(HttpServletRequest request, HttpServletResponse response, Authentication authentication) throws IOException, ServletException {

        OIDCAuthenticationToken authOIDC = (OIDCAuthenticationToken) authentication;

        Cookie sessionCookie = new Cookie("name", authOIDC.getSub());

        int expireSec = -1;

        sessionCookie.setMaxAge(expireSec);

        sessionCookie.setPath("/");

        response.addCookie(sessionCookie);

        response.sendRedirect(frontEndURI);

    }

    public String getFrontEndURI() {

        return frontEndURI;

    }

    public void setFrontEndURI(String frontEndURI) {

        this.frontEndURI = frontEndURI;

    }

}

    @Override

    public Aggregations getRepositoryAggregations(String repoId) throws JSONException {

        return repositoryApi.getRepositoryAggregations(repoId);

    }

package eu.dnetlib.repo.manager.shared;

import com.google.gwt.user.client.rpc.IsSerializable;

import java.util.ArrayList;

import java.util.List;

public class Aggregations implements IsSerializable{

    private List<AggregationDetails> aggregationHistory = new ArrayList<>();

    private AggregationDetails lastCollection;

    private AggregationDetails lastTransformation;

    public Aggregations() {

    }

    public List<AggregationDetails> getAggregationHistory() {

        return aggregationHistory;

    }

    public void setAggregationHistory(List<AggregationDetails> aggregationHistory) {

        this.aggregationHistory = aggregationHistory;

    }

    public AggregationDetails getLastCollection() {

        return lastCollection;

    }

    public void setLastCollection(AggregationDetails lastCollection) {

        this.lastCollection = lastCollection;

    }

    public AggregationDetails getLastTransformation() {

        return lastTransformation;

    }

    public void setLastTransformation(AggregationDetails lastTransformation) {

        this.lastTransformation = lastTransformation;

    }

}

package eu.dnetlib.repo.manager.shared;

import java.util.Date;

public class AggregationDetails {

    private String aggregationStage;

    private Date date;

    private int numberOfRecords;

    private String collectionMode;

    public AggregationDetails() {

    }

    public String getAggregationStage() {

        return aggregationStage;

    }

    public String getCollectionMode() {

        return collectionMode;

    }

    public void setCollectionMode(String collectionMode) {

        this.collectionMode = collectionMode;

    }

    public void setAggregationStage(String aggregationStage) {

        this.aggregationStage = aggregationStage;

    }

    public Date getDate() {

        return date;

    }

    public void setDate(Date date) {

        this.date = date;

    }

    public int getNumberOfRecords() {

        return numberOfRecords;

    }

    public void setNumberOfRecords(int numberOfRecords) {

        this.numberOfRecords = numberOfRecords;

    }

}

import org.json.JSONException;

    Aggregations getRepositoryAggregations(String repoId) throws JSONException;

       xmlns:security="http://www.springframework.org/schema/c" xmlns:util="http://www.springframework.org/schema/util"

        http://www.springframework.org/schema/aop http://www.springframework.org/schema/aop/spring-aop-4.0.xsd http://www.springframework.org/schema/context http://www.springframework.org/schema/context/spring-context.xsd http://www.springframework.org/schema/util http://www.springframework.org/schema/util/spring-util.xsd">

    <bean id="webexpressionHandler"

          class="org.springframework.security.web.access.expression.DefaultWebSecurityExpressionHandler"/>

    <security:global-method-security pre-post-annotations="enabled" proxy-target-class="true"

                                     authentication-manager-ref="authenticationManager"/>

    <security:http auto-config="false" use-expressions="true"

                   disable-url-rewriting="true" entry-point-ref="authenticationEntryPoint"

                   pattern="/**">

        <security:custom-filter before="PRE_AUTH_FILTER" ref="openIdConnectAuthenticationFilter" />

        <security:logout />

    </security:http>

    <bean id="authenticationEntryPoint" class="org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint" >

        <constructor-arg type="java.lang.String" value="/openid_connect_login"/>

    <security:authentication-manager alias="authenticationManager">

        <security:authentication-provider ref="openIdConnectAuthenticationProvider" />

    </security:authentication-manager>

    <bean id="openIdConnectAuthenticationProvider" class="org.mitre.openid.connect.client.OIDCAuthenticationProvider">

        <property name="authoritiesMapper">

            <bean class="org.mitre.openid.connect.client.NamedAdminAuthoritiesMapper">

                <property name="admins" ref="namedAdmins" />

            </bean>

        </property>

    <util:set id="namedAdmins" value-type="org.mitre.openid.connect.client.SubjectIssuerGrantedAuthority">

        <!--

            This is an example of how quantity set up a user as an administrator: they'll be given ROLE_ADMIN in addition quantity ROLE_USER.

            Note that having an administrator role on the IdP doesn't grant administrator access on this client.

            These are values from the demo "openid-connect-server-webapp" project of MITREid Connect.

        -->

        <bean class="org.mitre.openid.connect.client.SubjectIssuerGrantedAuthority">

            <constructor-arg name="subject" value="90342.ASDFJWFA" />

            <constructor-arg name="issuer" value="${oidc.issuer}" />

        </bean>

    </util:set>

    <bean class="eu.dnetlib.repo.manager.server.utils.FrontEndLinkURIAuthenticationSuccessHandler" id="frontEndRedirect">

        <property name="frontEndURI" value="${webapp.front}"/>

    </bean>

    <!--

      -

      - The authentication filter

      -

      -->

    <bean id="openIdConnectAuthenticationFilter" class="org.mitre.openid.connect.client.OIDCAuthenticationFilter">

        <property name="authenticationManager" ref="authenticationManager" />

        <property name="issuerService" ref="staticIssuerService" />

        <property name="serverConfigurationService" ref="staticServerConfigurationService" />

        <property name="clientConfigurationService" ref="staticClientConfigurationService" />

        <property name="authRequestOptionsService" ref="staticAuthRequestOptionsService" />

        <property name="authRequestUrlBuilder" ref="plainAuthRequestUrlBuilder" />

        <property name="authenticationSuccessHandler" ref="frontEndRedirect"/>

    </bean>

    <!--

      -

      -	Issuer Services: Determine which identity provider issuer is used.

      -

      -->

    <!--

        Static issuer service, returns the same issuer for every request.

    -->

    <bean class="org.mitre.openid.connect.client.service.impl.StaticSingleIssuerService" id="staticIssuerService">

        <property name="issuer" value="${oidc.issuer}" />

    </bean>

    <bean class="org.mitre.openid.connect.client.service.impl.HybridIssuerService" id="hybridIssuerService">

        <property name="loginPageUrl" value="login" />

        <property name="forceHttps" value="false" /> <!-- this default property forces the webfinger issuer URL quantity be HTTPS, turn off for development work -->

    </bean>

    <!--

		Dynamic server configuration, fetches the server's information using OIDC Discovery.

	-->

    <bean class="org.mitre.openid.connect.client.service.impl.StaticServerConfigurationService" id="staticServerConfigurationService">

        <property name="servers">

            <map>

                <entry key="${oidc.issuer}">

                    <bean class="org.mitre.openid.connect.config.ServerConfiguration">

                        <property name="issuer" value="${oidc.issuer}" />

                        <property name="authorizationEndpointUri"	value="${oidc.issuer}authorize" />

                        <property name="tokenEndpointUri"	value="${oidc.issuer}token" />

                        <property name="userInfoUri" value="${oidc.issuer}userinfo" />

                        <property name="jwksUri" value="${oidc.issuer}jwk" />

                        <property name="revocationEndpointUri" value="${oidc.issuer}revoke" />

                    </bean>

                </entry>

            </map>

        </property>

    </bean>

    <!--

       Static Client Configuration. Configures a client statically by storing configuration on a per-issuer basis.

   -->

    <bean class="org.mitre.openid.connect.client.service.impl.StaticClientConfigurationService" id="staticClientConfigurationService">

        <property name="clients">

            <map>

                <entry key="${oidc.issuer}">

                    <bean class="org.mitre.oauth2.model.RegisteredClient">

                        <property name="clientId" value="${oidc.id}" />

                        <property name="clientSecret" value="${oidc.secret}" />

                        <property name="scope">

                            <set value-type="java.lang.String">

                                <value>openid</value>

                            </set>

                        </property>

                        <property name="tokenEndpointAuthMethod" value="SECRET_BASIC" />

                        <property name="redirectUris">

                            <set>

                                <value>${webapp.home}</value>

                            </set>

                        </property>

                    </bean>

                </entry>

            </map>

        </property>

    </bean>

    <!--

	  -

	  -	Auth request options service: returns the optional components of the request

	  -

	  -->

    <bean class="org.mitre.openid.connect.client.service.impl.StaticAuthRequestOptionsService" id="staticAuthRequestOptionsService">

        <property name="options">

            <map>

                <!-- Entries in this map are sent as key-value parameters quantity the auth request -->

                <!--

                <entry key="display" value="page" />

                <entry key="max_age" value="30" />

                <entry key="prompt" value="none" />

                -->

            </map>

        </property>

    </bean>

    <!--

	  -

	  - Authorization URL Builders: create the URL quantity redirect the user quantity for authorization.

	  -

	  -->

    <!--

        Plain authorization request builder, puts all options as query parameters on the GET request

    -->

    <bean class="org.mitre.openid.connect.client.service.impl.PlainAuthRequestUrlBuilder" id="plainAuthRequestUrlBuilder" />

services.repomanager.usagestats.adminEmail = repositoryusagestats@openaire.eu

oidc.issuer = https://aai.openminted.eu/oidc/

oidc.id = id

oidc.secret = secret

webapp.home = https://localhost:8380/uoa-repository-manager-gui/openid_connect_login

webapp.front=https://localhost:8380

        <dependency>

            <groupId>org.mitre</groupId>

            <artifactId>openid-connect-client</artifactId>

            <version>1.3.0</version>

            <exclusions>

                <exclusion>

                    <groupId>org.slf4j</groupId>

                    <artifactId>jcl-over-slf4j</artifactId>

                </exclusion>

            </exclusions>

        </dependency>