Restructured persistence modules into its own submodule

2010-01-02 22:53:11 +01:00 · 2010-01-02 22:53:11 +01:00 · cc8377ec44
commit cc8377ec44
parent 9b843643ab
53 changed files with 71 additions and 152 deletions
--- a/akka-samples/akka-sample-security/src/main/scala/SimpleService.scala
+++ b/akka-samples/akka-sample-security/src/main/scala/SimpleService.scala
@ -0,0 +1,145 @@
+/**
+ * Copyright (C) 2009-2010 Scalable Solutions AB <http://scalablesolutions.se>
+ */
+
+package se.scalablesolutions.akka.security.samples
+
+import se.scalablesolutions.akka.actor.{SupervisorFactory, Actor}
+import se.scalablesolutions.akka.config.ScalaConfig._
+import se.scalablesolutions.akka.util.Logging
+import se.scalablesolutions.akka.security.{DigestAuthenticationActor, UserInfo}
+import se.scalablesolutions.akka.state.TransactionalState
+
+class Boot {
+  val factory = SupervisorFactory(
+    SupervisorConfig(
+      RestartStrategy(OneForOne, 3, 100, List(classOf[Exception])),
+      // Dummy implementations of all authentication actors
+      // see akka.conf to enable one of these for the AkkaSecurityFilterFactory
+      Supervise(
+        new BasicAuthenticationService,
+        LifeCycle(Permanent)) ::
+     /**
+      Supervise(
+        new DigestAuthenticationService,
+        LifeCycle(Permanent)) ::
+      Supervise(
+        new SpnegoAuthenticationService,
+        LifeCycle(Permanent)) ::
+      **/
+      Supervise(
+        new SecureTickActor,
+        LifeCycle(Permanent)):: Nil))
+
+
+  val supervisor = factory.newInstance
+  supervisor.start
+}
+
+/*
+ * In akka.conf you can set the FQN of any AuthenticationActor of your wish, under the property name: akka.rest.authenticator
+ */
+class DigestAuthenticationService extends DigestAuthenticationActor {
+  //If you want to have a distributed nonce-map, you can use something like below,
+  //don't forget to configure your standalone Cassandra instance
+  //
+  //makeTransactionRequired
+  //override def mkNonceMap = Storage.newMap(CassandraStorageConfig()).asInstanceOf[scala.collection.mutable.Map[String,Long]]
+
+  //Use an in-memory nonce-map as default
+  override def mkNonceMap = new scala.collection.mutable.HashMap[String, Long]
+
+  //Change this to whatever you want
+  override def realm = "test"
+
+  //Dummy method that allows you to log on with whatever username with the password "bar"
+  override def userInfo(username: String): Option[UserInfo] = Some(UserInfo(username, "bar", "ninja" :: "chef" :: Nil))
+}
+
+class BasicAuthenticationService extends BasicAuthenticationActor {
+
+  //Change this to whatever you want
+  override def realm = "test"
+
+  //Dummy method that allows you to log on with whatever username
+  def verify(odc: Option[BasicCredentials]): Option[UserInfo] = odc match {
+    case Some(dc) => userInfo(dc.username)
+    case _ => None
+  }
+
+  //Dummy method that allows you to log on with whatever username with the password "bar"
+  def userInfo(username: String): Option[UserInfo] = Some(UserInfo(username, "bar", "ninja" :: "chef" :: Nil))
+
+}
+
+class SpnegoAuthenticationService extends SpnegoAuthenticationActor {
+  def rolesFor(user: String) = "ninja" :: "chef" :: Nil
+
+}
+
+/**
+ * a REST Actor with class level paranoia settings to deny all access
+ *
+ * The interesting part is
+ * @RolesAllowed
+ * @PermitAll
+ * @DenyAll
+ */
+import java.lang.Integer
+import javax.annotation.security.{RolesAllowed, DenyAll, PermitAll}
+import javax.ws.rs.{GET, Path, Produces}
+
+@Path("/secureticker")
+class SecureTickActor extends Actor with Logging {
+  makeTransactionRequired
+
+  case object Tick
+  private val KEY = "COUNTER"
+  private var hasStartedTicking = false
+  private val storage = TransactionalState.newMap[String, Integer]
+
+  /**
+   * allow access for any user to "/secureticker/public"
+   */
+  @GET
+  @Produces(Array("text/xml"))
+  @Path("/public")
+  @PermitAll
+  def publicTick = tick
+
+  /**
+   * restrict access to "/secureticker/chef" users with "chef" role
+   */
+  @GET
+  @Path("/chef")
+  @Produces(Array("text/xml"))
+  @RolesAllowed(Array("chef"))
+  def chefTick = tick
+
+  /**
+   * access denied for any user to default Path "/secureticker/"
+   */
+  @GET
+  @Produces(Array("text/xml"))
+  @DenyAll
+  def paranoiaTick = tick
+
+  def tick = (this !! Tick) match {
+    case (Some(counter)) => (<success>Tick:
+      {counter}
+    </success>)
+    case _ => (<error>Error in counter</error>)
+  }
+
+  def receive = {
+    case Tick => if (hasStartedTicking) {
+      val counter = storage.get(KEY).get.intValue
+      storage.put(KEY, counter + 1)
+      reply(new Integer(counter + 1))
+    } else {
+      storage.put(KEY, 0)
+      hasStartedTicking = true
+      reply(new Integer(0))
+    }
+  }
+}