i have embedded activemq broker in spring boot application, current solution for authentication is SimpleAuthentication plugin, but i need some solution that use spring security for activemq authentication. I can't find what i need, did someone know how to resolve this problem?
ActiveMQ leverages Apache Shiro for advanced security configurations.
You always write your own authentication plugin that uses Spring security
Related
I want to use Spring Cloud Gateway with SAML. Is this possible?
It seems that the Saml extension for spring security is based on the old Spring Stack and won't work with Gateway.
Has anybody got any experience on this?
I'm afraid SAML is not supported as of time of writing. Spring Cloud Gateway has been redeveloped using Reactive programming and is now based on Spring WebFlux. Only the following authentication methods are currently supported :
OAuth 2.0 or OpenID Connect 1.0
x509 authentication
This is stated on SCG page:
Spring Cloud Gateway is built on Spring Boot 2.x, Spring WebFlux, and
Project Reactor. As a consequence, many of the familiar synchronous
libraries (Spring Data and Spring Security, for example) and patterns
you know may not apply when you use Spring Cloud Gateway. If you are
unfamiliar with these projects, we suggest you begin by reading their
documentation to familiarize yourself with some of the new concepts
before working with Spring Cloud Gateway.
The previous gateway spring-cloud-netflix-zuul, based on Servlets and which supported SAML, has been removed from Spring Cloud 2020.
Here is an open issue on GitHub, SAML2 for reactive environment, where we can vote for asking for this to be implemented.
I am trying to migrate my existing spring boot 1.5 resource server (oauth2) to spring boot 2.x, while do so i am facing difficulties in providing reactive support for the same. It looks like i can not use reactive webflux when i use pring-cloud-starter-oauth2, i have few questions:
does spring boot 2.0.3 supports webflux + oauth2 resource servers using #EnableResourceServer, is yes then what is right way to implement it?
If it does not support, what are other possible options? Spring 5 security documentations says that it does not support authorization server and resource server at this moment.
Thank you in advance
Short answer: no.
There's no support to implement your own Authorization nor Resource server using webflux.
I'm planning to write an application using spring boot where you can create users from that application. I'm wondering whether there's a possibility of updating the user list of Apache ActiveMQ Artemis broker with the credentials of the user created by the spring boot application? I couldn't find any reference on internet addressing this issue
The default security configuration for Apache ActiveMQ Artemis users properties files for user and role information. Either of these files can be updated at runtime and the broker will pick up those changes.
My microservices are using the latest releases of Spring Boot, Spring WebFlux (Undertow), Spring Data MongoDB, Spring Cloud Netflix, and Kotlin...
Now I've setup a demo project to use the new functional interface instead of the annotations in Spring WebFlux. Using Netty with HTTP works fine. However, I cannot find any information how to configure Netty with TLS resp. HTTPS. Any hint is appreciated!
At the time of writing, configuration of TLS with Netty hasn't been implemented. The work is being tracked by this issue.
I have a running Spring based Apache CXF web service. I want to use Spring Security Oauth2 to secure the existing service. I have done this for SpringREST service but i am not able to find any help for securing CXF with Spring security Oauth2. Can some one please help me.