dalbodeule/snap-admin
1
0
Fork 0
mirror of https://github.com/dalbodeule/snap-admin.git synced 2025-06-09 05:48:20 +00:00
Code Issues Packages Projects Releases Wiki Activity

Startup auth check for #32

Browse Source
This commit is contained in:
Francesco 2023-11-07 09:40:38 +01:00
parent 283835f206
commit da8fc10414
1 changed files with 63 additions and 16 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

75
src/main/java/tech/ailef/snapadmin/external/StartupAuthCheckRunner.java vendored
View File

@ -1,31 +1,78 @@
/*
* SnapAdmin - An automatically generated CRUD admin UI for Spring Boot apps
* Copyright (C) 2023 Ailef (http://ailef.tech)
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program. If not, see <https://www.gnu.org/licenses/>.
*/
package tech.ailef.snapadmin.external; package tech.ailef.snapadmin.external;
import java.io.IOException;
import java.net.URI; import java.net.URI;
import java.net.http.HttpClient; import java.net.http.HttpClient;
import java.net.http.HttpRequest; import java.net.http.HttpRequest;
import java.net.http.HttpResponse; import java.net.http.HttpResponse;
import java.net.http.HttpResponse.BodyHandlers; import java.net.http.HttpResponse.BodyHandlers;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.beans.factory.annotation.Autowired; import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.boot.CommandLineRunner; import org.springframework.boot.web.servlet.context.ServletWebServerInitializedEvent;
import org.springframework.stereotype.Component; import org.springframework.context.ApplicationListener;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
/**
* Runs at startup to determine if SnapAdmin is protected with authentication.
* If this is not the case, it sets a flag that will display a warning in the
* UI.
*/
@Configuration
public class StartupAuthCheckRunner {
private static final Logger logger = LoggerFactory.getLogger(StartupAuthCheckRunner.class);
@Component
public class StartupAuthCheckRunner implements CommandLineRunner {
@Autowired @Autowired
private SnapAdmin snapAdmin; private SnapAdmin snapAdmin;
@Override @Autowired
public void run(String...args) throws Exception { private SnapAdminProperties properties;
HttpRequest request = HttpRequest.newBuilder()
.uri(URI.create("http://localhost:8080/admin"))
.build();
HttpResponse<String> response = HttpClient
.newBuilder()
.build()
.send(request, BodyHandlers.ofString());
String body = response.body(); @Bean
ApplicationListener<ServletWebServerInitializedEvent> serverPortListenerBean() {
return event -> {
int serverPort = event.getWebServer().getPort();
String url = "http://localhost:" + serverPort + "/" + properties.getBaseUrl();
logger.info("Checking if SnapAdmin is protected with authentication at " + url);
HttpRequest request = HttpRequest.newBuilder().uri(URI.create(url)).build();
try {
HttpResponse<String> response = HttpClient.newBuilder().build().send(request, BodyHandlers.ofString());
int statusCode = response.statusCode();
if (statusCode == 200) {
logger.warn("It seems SnapAdmin routes are not protected with authentication. The URL "
+ url + " is publicly accessible: be careful!");
snapAdmin.setAuthenticated(false);
}
} catch (IOException | InterruptedException e) {
logger.warn("Unable to connect to server at " + url);
}
};
} }
} }