The spring boot admin console displays only two options in details. How to make sure all other details are displayed like environment,JMX,logging,etc
Image of display button
If you use Spring Boot 2.0 you need to explicitly expose the actuator endpoint via setting management.endpoints.web.exposure.include property
Related
I am new to Spring Boot and Firebase. I have generated REST endpoints from my model and repositories using spring-boot-starter-data-rest.
I also created a front-end application (front is a SPA written in React - back works with Spring boot - these are 2 separate apps).
My front-end app contains a login form and I use the Firebase JS SDK to authenticate the user and get an ID token for him.
Now I would like to add authentication to my endpoints so only authorized users can reach them, using the token I get in the front-end app.
I can put the token in the Authorization header of each request, but I dont't know how to:
Extract and check the token in Spring Boot, in order to get user information. I saw this, is this ok?
Pass the user information to the endpoint methods (currently I got no controller, since they are generated from the repositories (they extend PagingAndSortingRepository or CrudRepository))
Specify which endpoints are public and which are private (using WebSecurityConfigurerAdapter I guess).
Also, some endpoints could be accessible only by some users. But I saw nothing in Firebase that allows me to distinct user grants.
I have read several tutorials but I have not enough details to understand everything, and they do not answer all my questions.
Thanks
I am using the Spring Boot Admin plugin for my project.
The application that i would like to monitor using my Spring Boot Admin project has been deployed behind a Gateway, and hence to access the Actuator end-points i need to pass certain headers as a part of the request. Is there any way i can configure these additional headers.
Configuring Spring Boot Admin with HTTP Authentication does not suffice.
If anyone else searching for an answer for this try referring the documentation
I'm new to Vaadin Flow and I'm trying to port an android application, in which Firebase is used as the only authentication provider. My (dumb) problem is that I can't find any resource or binding to Firebase API. Have some of you succeeded in using Firebase auth in a flow project ?
I created this example application couple of weeks ago. It user Firebase Authentication and it's JavaScript library to do authentication. Then the JWT token is sent to the Vaadin Flow server, validated and stored so that it can be used to detect who the active user is.
https://github.com/mstahv/vaadin-firebase-auth-example
Are you using Spring for security, or your own solution?
If you're using a custom solution, maybe the reply in this thread is of use
Firebase user authentication for java application (Not Android)
The token can be saved in the session and used as you wish.
Here's a question that might be relevant if you're using Spring boot
How to use Firebase with Spring boot REST Application?
I have created a backend server using Java Servlet in PC for an application.
I would like to know if a mobile can use that URL and access the same in the mobile?
If you can access to your servlet from your browser, therefor you can access it programmatically. For example in this link you can see how you can access to a servlet from android project. You just need to create an GET/POST HTTP request.
I've got the Spring Security preauthentication sample configured and working with JBoss. The next step is to somehow get the user information into a flex client GUI.
What are some methods that will let me get the Authentication or UserDetails object that's created by spring-security on http access into the flex client? Since I'm logging in externally, I can't use channelset.login(), right? All the examples I've seen so far assume that the user logs in manually through the flex client, but the requirement is for container-based authentication.
Using flex3, spring 3.0.4, spring-security-3.0.3
If you use spring-flex together with blazeds for the flex to java http plumbing,
then what you have to do is to :
enable the Spring Security filter chain in web.xml
secure your blazeds service with your expected security constraints
make your spring-security AuthenticationProvider use your authentication mechanism
There is an article on Adobe DevNet covering this topic:
http://www.adobe.com/devnet/flex/articles/flex_security.html
Use PreAuthenticatedAuthenticationProvider as your authentication provider. Flex sessions will automatically map 1:1 with HTTP sessions, and you can access the authentication object using a session-scoped call to SecurityContextHolder.getContext().getAuthentication()