pekko/akka-samples-security/src/main/scala/SimpleService.scala

/**
 * Copyright (C) 2009 Scalable Solutions.
 */

package se.scalablesolutions.akka.security.samples

import se.scalablesolutions.akka.actor.{SupervisorFactory, Actor}
import se.scalablesolutions.akka.config.ScalaConfig._
import se.scalablesolutions.akka.util.Logging
import se.scalablesolutions.akka.security.{DigestAuthenticationActor, UserInfo}
import se.scalablesolutions.akka.state.TransactionalState

class Boot {

  object factory extends SupervisorFactory {

    override def getSupervisorConfig: SupervisorConfig = {
      SupervisorConfig(
        RestartStrategy(OneForOne, 3, 100),
        // Dummy implementations of all authentication actors
        // see akka.conf to enable one of these for the AkkaSecurityFilterFactory
        Supervise(
          new BasicAuthenticationService,
          LifeCycle(Permanent, 100)) ::
       /**
        Supervise(
          new DigestAuthenticationService,
          LifeCycle(Permanent, 100)) ::
        Supervise(
          new SpnegoAuthenticationService,
          LifeCycle(Permanent, 100)) ::
        **/
        Supervise(
          new SecureTickActor,
          LifeCycle(Permanent, 100)):: Nil)
    }

  }

  val supervisor = factory.newSupervisor
  supervisor.startSupervisor
}

/*
 * In akka.conf you can set the FQN of any AuthenticationActor of your wish, under the property name: akka.rest.authenticator
 */
class DigestAuthenticationService extends DigestAuthenticationActor {
    //If you want to have a distributed nonce-map, you can use something like below,
    //don't forget to configure your standalone Cassandra instance
    //
    //makeTransactionRequired
    //override def mkNonceMap = PersistentState.newMap(CassandraStorageConfig()).asInstanceOf[scala.collection.mutable.Map[String,Long]]

    //Use an in-memory nonce-map as default
    override def mkNonceMap = new scala.collection.mutable.HashMap[String,Long]

    //Change this to whatever you want
    override def realm = "test"

    //Dummy method that allows you to log on with whatever username with the password "bar"
    override def userInfo(username : String) : Option[UserInfo] = Some(UserInfo(username,"bar","ninja" :: "chef" :: Nil))
}

class BasicAuthenticationService extends BasicAuthenticationActor {

    //Change this to whatever you want
    override def realm = "test"

    //Dummy method that allows you to log on with whatever username
    def verify(odc : Option[BasicCredentials]) : Option[UserInfo] = odc match {
        case Some(dc) => userInfo(dc.username)
        case _ => None
    }

    //Dummy method that allows you to log on with whatever username with the password "bar"
    def userInfo(username : String) : Option[UserInfo] = Some(UserInfo(username,"bar","ninja" :: "chef" :: Nil))

}

class SpnegoAuthenticationService extends SpnegoAuthenticationActor {

    def rolesFor(user: String) = "ninja" :: "chef" :: Nil

}

/**
 * a REST Actor with class level paranoia settings to deny all access
 *
 * The interesting part is
 *  @RolesAllowed
 *  @PermitAll
 *  @DenyAll
 */
import java.lang.Integer
import javax.annotation.security.{RolesAllowed, DenyAll, PermitAll}
import javax.ws.rs.{GET, Path, Produces}
@Path("/secureticker")
@DenyAll
class SecureTickActor extends Actor with Logging {

  makeTransactionRequired

  case object Tick
  private val KEY = "COUNTER";
  private var hasStartedTicking = false;
  private val storage = TransactionalState.newMap[String, Integer]

  /**
   * allow access for any user to the resource "/secureticker/public"
   */
  @GET
  @Produces(Array("text/xml"))
  @Path("/public")
  @PermitAll
  def publicTick = tick

  /**
   * restrict access to resource "/secureticker/chef" users with "chef" role
   */
  @GET
  @Path("/chef")
  @Produces(Array("text/xml"))
  @RolesAllowed(Array("chef"))
  def chefTick = tick

  /**
   * access denied because of the class level annotation for any user
   */
  @GET
  @Produces(Array("text/xml"))
  def paranoiaTick = tick

  def tick = (this !! Tick) match {
    case(Some(counter)) => (<success>Tick: {counter}</success>)
    case _ => (<error>Error in counter</error>)
  }

  override def receive: PartialFunction[Any, Unit] = {
    case Tick => if (hasStartedTicking) {
      val counter = storage.get(KEY).get.intValue
      storage.put(KEY, counter + 1)
      reply(new Integer(counter + 1))
    } else {
      storage.put(KEY, 0)
      hasStartedTicking = true
      reply(new Integer(0))
    }
  }
}
Added HTTP Security and samples 2009-09-07 18:42:15 +02:00			`/**`
			`* Copyright (C) 2009 Scalable Solutions.`
			`*/`

added a sample webapp for the security actors including examples for all authentication actors 2009-10-22 21:38:42 +02:00			`package se.scalablesolutions.akka.security.samples`
Added HTTP Security and samples 2009-09-07 18:42:15 +02:00
finalized new STM with Multiverse backend + cleaned up Active Object config and factory classes 2009-10-17 00:37:56 +02:00			`import se.scalablesolutions.akka.actor.{SupervisorFactory, Actor}`
			`import se.scalablesolutions.akka.config.ScalaConfig._`
			`import se.scalablesolutions.akka.util.Logging`
			`import se.scalablesolutions.akka.security.{DigestAuthenticationActor, UserInfo}`
			`import se.scalablesolutions.akka.state.TransactionalState`

Added HTTP Security and samples 2009-09-07 18:42:15 +02:00			`class Boot {`
added a sample webapp for the security actors including examples for all authentication actors 2009-10-22 21:38:42 +02:00
Added HTTP Security and samples 2009-09-07 18:42:15 +02:00			`object factory extends SupervisorFactory {`
added a sample webapp for the security actors including examples for all authentication actors 2009-10-22 21:38:42 +02:00
Added HTTP Security and samples 2009-09-07 18:42:15 +02:00			`override def getSupervisorConfig: SupervisorConfig = {`
			`SupervisorConfig(`
			`RestartStrategy(OneForOne, 3, 100),`
added a sample webapp for the security actors including examples for all authentication actors 2009-10-22 21:38:42 +02:00			`// Dummy implementations of all authentication actors`
			`// see akka.conf to enable one of these for the AkkaSecurityFilterFactory`
			`Supervise(`
			`new BasicAuthenticationService,`
			`LifeCycle(Permanent, 100)) ::`
			`/**`
			`Supervise(`
			`new DigestAuthenticationService,`
			`LifeCycle(Permanent, 100)) ::`
Added HTTP Security and samples 2009-09-07 18:42:15 +02:00			`Supervise(`
added a sample webapp for the security actors including examples for all authentication actors 2009-10-22 21:38:42 +02:00			`new SpnegoAuthenticationService,`
Added HTTP Security and samples 2009-09-07 18:42:15 +02:00			`LifeCycle(Permanent, 100)) ::`
added a sample webapp for the security actors including examples for all authentication actors 2009-10-22 21:38:42 +02:00			`**/`
Added HTTP Security and samples 2009-09-07 18:42:15 +02:00			`Supervise(`
added a sample webapp for the security actors including examples for all authentication actors 2009-10-22 21:38:42 +02:00			`new SecureTickActor,`
Added HTTP Security and samples 2009-09-07 18:42:15 +02:00			`LifeCycle(Permanent, 100)):: Nil)`
			`}`
added a sample webapp for the security actors including examples for all authentication actors 2009-10-22 21:38:42 +02:00
Added HTTP Security and samples 2009-09-07 18:42:15 +02:00			`}`

			`val supervisor = factory.newSupervisor`
			`supervisor.startSupervisor`
			`}`

			`/*`
			`* In akka.conf you can set the FQN of any AuthenticationActor of your wish, under the property name: akka.rest.authenticator`
			`*/`
added a sample webapp for the security actors including examples for all authentication actors 2009-10-22 21:38:42 +02:00			`class DigestAuthenticationService extends DigestAuthenticationActor {`
Added HTTP Security and samples 2009-09-07 18:42:15 +02:00			`//If you want to have a distributed nonce-map, you can use something like below,`
			`//don't forget to configure your standalone Cassandra instance`
			`//`
			`//makeTransactionRequired`
			`//override def mkNonceMap = PersistentState.newMap(CassandraStorageConfig()).asInstanceOf[scala.collection.mutable.Map[String,Long]]`

			`//Use an in-memory nonce-map as default`
			`override def mkNonceMap = new scala.collection.mutable.HashMap[String,Long]`
added a sample webapp for the security actors including examples for all authentication actors 2009-10-22 21:38:42 +02:00
Added HTTP Security and samples 2009-09-07 18:42:15 +02:00			`//Change this to whatever you want`
			`override def realm = "test"`

			`//Dummy method that allows you to log on with whatever username with the password "bar"`
			`override def userInfo(username : String) : Option[UserInfo] = Some(UserInfo(username,"bar","ninja" :: "chef" :: Nil))`
			`}`

added a sample webapp for the security actors including examples for all authentication actors 2009-10-22 21:38:42 +02:00			`class BasicAuthenticationService extends BasicAuthenticationActor {`

			`//Change this to whatever you want`
			`override def realm = "test"`

			`//Dummy method that allows you to log on with whatever username`
			`def verify(odc : Option[BasicCredentials]) : Option[UserInfo] = odc match {`
			`case Some(dc) => userInfo(dc.username)`
			`case _ => None`
			`}`

			`//Dummy method that allows you to log on with whatever username with the password "bar"`
			`def userInfo(username : String) : Option[UserInfo] = Some(UserInfo(username,"bar","ninja" :: "chef" :: Nil))`

			`}`

			`class SpnegoAuthenticationService extends SpnegoAuthenticationActor {`

			`def rolesFor(user: String) = "ninja" :: "chef" :: Nil`

			`}`

Added HTTP Security and samples 2009-09-07 18:42:15 +02:00			`/**`
added a sample webapp for the security actors including examples for all authentication actors 2009-10-22 21:38:42 +02:00			`* a REST Actor with class level paranoia settings to deny all access`
Added HTTP Security and samples 2009-09-07 18:42:15 +02:00			`*`
			`* The interesting part is`
			`* @RolesAllowed`
			`* @PermitAll`
			`* @DenyAll`
			`*/`
added a sample webapp for the security actors including examples for all authentication actors 2009-10-22 21:38:42 +02:00			`import java.lang.Integer`
			`import javax.annotation.security.{RolesAllowed, DenyAll, PermitAll}`
			`import javax.ws.rs.{GET, Path, Produces}`
			`@Path("/secureticker")`
			`@DenyAll`
			`class SecureTickActor extends Actor with Logging {`
Added HTTP Security and samples 2009-09-07 18:42:15 +02:00
			`makeTransactionRequired`

			`case object Tick`
			`private val KEY = "COUNTER";`
			`private var hasStartedTicking = false;`
added a sample webapp for the security actors including examples for all authentication actors 2009-10-22 21:38:42 +02:00			`private val storage = TransactionalState.newMap[String, Integer]`

			`/**`
			`* allow access for any user to the resource "/secureticker/public"`
			`*/`
			`@GET`
			`@Produces(Array("text/xml"))`
			`@Path("/public")`
			`@PermitAll`
			`def publicTick = tick`
Added HTTP Security and samples 2009-09-07 18:42:15 +02:00
added a sample webapp for the security actors including examples for all authentication actors 2009-10-22 21:38:42 +02:00			`/**`
			`* restrict access to resource "/secureticker/chef" users with "chef" role`
			`*/`
Added HTTP Security and samples 2009-09-07 18:42:15 +02:00			`@GET`
added a sample webapp for the security actors including examples for all authentication actors 2009-10-22 21:38:42 +02:00			`@Path("/chef")`
			`@Produces(Array("text/xml"))`
Added HTTP Security and samples 2009-09-07 18:42:15 +02:00			`@RolesAllowed(Array("chef"))`
added a sample webapp for the security actors including examples for all authentication actors 2009-10-22 21:38:42 +02:00			`def chefTick = tick`

			`/**`
			`* access denied because of the class level annotation for any user`
			`*/`
			`@GET`
			`@Produces(Array("text/xml"))`
			`def paranoiaTick = tick`

			`def tick = (this !! Tick) match {`
			`case(Some(counter)) => (<success>Tick: {counter}</success>)`
			`case _ => (<error>Error in counter</error>)`
			`}`
Added HTTP Security and samples 2009-09-07 18:42:15 +02:00
			`override def receive: PartialFunction[Any, Unit] = {`
			`case Tick => if (hasStartedTicking) {`
fixed sample problem 2009-10-19 10:52:18 +02:00			`val counter = storage.get(KEY).get.intValue`
added a sample webapp for the security actors including examples for all authentication actors 2009-10-22 21:38:42 +02:00			`storage.put(KEY, counter + 1)`
			`reply(new Integer(counter + 1))`
Added HTTP Security and samples 2009-09-07 18:42:15 +02:00			`} else {`
added a sample webapp for the security actors including examples for all authentication actors 2009-10-22 21:38:42 +02:00			`storage.put(KEY, 0)`
Added HTTP Security and samples 2009-09-07 18:42:15 +02:00			`hasStartedTicking = true`
added a sample webapp for the security actors including examples for all authentication actors 2009-10-22 21:38:42 +02:00			`reply(new Integer(0))`
Added HTTP Security and samples 2009-09-07 18:42:15 +02:00			`}`
			`}`
			`}`