chore: disable LDAP auth for now

e0620e33 · Hamza Remmal · 1818fa45 · e0620e33 · e0620e33
Unverified Commit e0620e33 authored 6 months ago by Hamza Remmal
--- a/autograde-service/pom.xml
+++ b/autograde-service/pom.xml
@@ -57,7 +57,8 @@
            <groupId>org.springframework.boot</groupId>
            <artifactId>spring-boot-starter-actuator</artifactId>
        </dependency>
-      		<dependency>
+		<!-- TODO: UNCOMMENT THIS TO ENABLE THE LDAP AUTH
+      	<dependency>
 			<groupId>org.springframework.ldap</groupId>
 			<artifactId>spring-ldap-core</artifactId>
 		</dependency>
@@ -65,7 +66,7 @@
 			<groupId>org.springframework.security</groupId>
 			<artifactId>spring-security-ldap</artifactId>
 		</dependency>
+		-->
 	</dependencies>
 	<build>

--- a/autograde-service/src/main/java/ch/epfl/autograde/config/SecurityConfig.java
+++ b/autograde-service/src/main/java/ch/epfl/autograde/config/SecurityConfig.java
@@ -3,26 +3,15 @@ package ch.epfl.autograde.config;
 import ch.epfl.autograde.auth.token.ShareSecretAuthenticationProvider;
 import ch.epfl.autograde.auth.token.SharedSecretConfigurer;
 import lombok.RequiredArgsConstructor;
-import org.springframework.beans.factory.annotation.Qualifier;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
-import org.springframework.core.Ordered;
 import org.springframework.core.annotation.Order;
-import org.springframework.ldap.core.support.BaseLdapPathContextSource;
-import org.springframework.security.authentication.AuthenticationManager;
 import org.springframework.security.authentication.ProviderManager;
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
 import org.springframework.security.config.annotation.web.configurers.AbstractHttpConfigurer;
 import org.springframework.security.config.annotation.web.configurers.RequestCacheConfigurer;
-import org.springframework.security.config.ldap.LdapBindAuthenticationManagerFactory;
-import org.springframework.security.ldap.DefaultSpringSecurityContextSource;
 import org.springframework.security.web.SecurityFilterChain;
-import org.springframework.security.web.servlet.util.matcher.MvcRequestMatcher;
-import org.springframework.security.web.util.matcher.NegatedRequestMatcher;
-import org.springframework.web.servlet.handler.HandlerMappingIntrospector;
-import static org.springframework.security.config.Customizer.withDefaults;
 /**
 * Security configuration and setup of the autograde service.
@@ -44,7 +33,7 @@ public class SecurityConfig {
    @Bean
    @Order(1)
    public SecurityFilterChain filterChain(HttpSecurity http, ShareSecretAuthenticationProvider provider) throws Exception {
-        http.apply(new SharedSecretConfigurer());
+        http.apply(new SharedSecretConfigurer<>());
        return http
                .securityMatcher("/api/**")
                .authenticationManager(new ProviderManager(provider))
@@ -77,10 +66,14 @@ public class SecurityConfig {
                .httpBasic(AbstractHttpConfigurer::disable)
                .formLogin(AbstractHttpConfigurer::disable)
                .sessionManagement(AbstractHttpConfigurer::disable)
-                .authorizeHttpRequests(auth -> auth.anyRequest().permitAll())
+                .authorizeHttpRequests(auth -> {
+                    auth.requestMatchers("/actuator/heath").permitAll();
+                    auth.anyRequest().authenticated();
+                })
                .build();
    }
+    /* TODO: UNCOMMENT THIS TO ENABLE THE LDAP AUTH
    @Bean
    @Order(Ordered.LOWEST_PRECEDENCE)
    public SecurityFilterChain defaultSecurityFilterChain(HttpSecurity http, @Qualifier("ldapAuthenticationManager") AuthenticationManager manager, HandlerMappingIntrospector introspector) throws Exception {
@@ -120,6 +113,7 @@ public class SecurityConfig {
    public BaseLdapPathContextSource contextSource() {
 	    return new DefaultSpringSecurityContextSource("ldaps://ldap.epfl.ch");
    }
+    */
 }