thetekst · October 18, 2018 12:24
diff --git a/MyController.java b/MyController.java
 @RestController
 @Slf4j
 @RequiredArgsConstructor
 @RequestMapping("channel")
 public class MyController {

    // Если бы мы в UserPrincipal добавили public final static String ROLE_ADMIN_NAME = ROLE_PREFIX + Role.ADMIN; 
    // или Role.ADMIN.name(),
    // то при использовании @Secured(UserPrincipal.ROLE_ADMIN_NAME) мы бы получили: Attribute value must be constant.
    // Т.к. здесь используется вызов функции Role. или Role.ADMIN., а это уже не константа
    @Secured(Role.ROLE_ADMIN_NAME)
    @GetMapping("all")
    public List<Animal> getAll() {
        return AnimalService.getAll();
    }

 }
diff --git a/Role1.java b/Role1.java
 // Before
 @Getter
 @AllArgsConstructor
 @ToString
 public enum Role1 {

    ADMIN("Administrator"), OPERATOR("Operator");

    private final String title;

    public static Role getType(final String title) {
        return Arrays.stream(values()).filter(e -> title.equals(e.title)).findFirst().orElse(null);
    }

 }
diff --git a/Role2.java b/Role2.java
 // After
 @Getter
 @AllArgsConstructor
 @ToString
 public enum Role2 {

    ADMIN("Administrator"), OPERATOR("Operator");

    public final static String ROLE_PREFIX = "ROLE_"; // ADD

    public final static String ROLE_ADMIN_NAME = ROLE_PREFIX + "ADMIN"; // ADD

    public final static String ROLE_OPERATOR_NAME = ROLE_PREFIX + "OPERATOR"; // ADD

    private final String title;

    public static Role getType(final String title) {
        return Arrays.stream(values()).filter(e -> title.equals(e.title)).findFirst().orElse(null);
    }

 }
diff --git a/SecurityConfig.java b/SecurityConfig.java
 @Slf4j
 @Configuration
 @EnableWebSecurity
 @RequiredArgsConstructor
 @EnableGlobalMethodSecurity(securedEnabled = true) // add for @Secured
 public class SecurityConfig extends WebSecurityConfigurerAdapter {
 }
diff --git a/UserPrincipal1.java b/UserPrincipal1.java
 // Before
 @Data
 @ToString(exclude = {"password"})
 public class UserPrincipal1 implements UserDetails {
  
    private final static String ROLE_PREFIX = "ROLE_";

    private Long id;

    private String email;

    @JsonIgnore
    private String password;

    private Boolean disabled;

    private Map<Workspace, Role> workspaces;

    @JsonIgnore
    @Override
    public Collection<? extends GrantedAuthority> getAuthorities() {
        final Set<GrantedAuthority> authorities = new HashSet<>();
        workspaces.forEach((k, v) -> authorities.add(new SimpleGrantedAuthority(ROLE_PREFIX + v.name())));
        return authorities;
    }

    @JsonIgnore
    @Override
    public String getPassword() {
        return password;
    }

    @JsonIgnore
    @Override
    public String getUsername() {
        return email;
    }

    @JsonIgnore
    @Override
    public boolean isAccountNonExpired() {
        return !disabled;
    }

    @JsonIgnore
    @Override
    public boolean isAccountNonLocked() {
        return !disabled;
    }

    @JsonIgnore
    @Override
    public boolean isCredentialsNonExpired() {
        return !disabled;
    }

    @JsonIgnore
    @Override
    public boolean isEnabled() {
        return !disabled;
    }

 }
diff --git a/UserPrincipal2.java b/UserPrincipal2.java
 // After
 @Data
 @ToString(exclude = {"password"})
 public class UserPrincipal2 implements UserDetails {
    
    // moved to Role private final static String ROLE_PREFIX = "ROLE_"; and change access level modifiers to public

    private Long id;

    private String email;

    @JsonIgnore
    private String password;

    private Boolean disabled;

    private Map<Workspace, Role> workspaces;

    @JsonIgnore
    @Override
    public Collection<? extends GrantedAuthority> getAuthorities() {
        final Set<GrantedAuthority> authorities = new HashSet<>();
        workspaces.forEach((k, v) -> authorities.add(new SimpleGrantedAuthority(Role.ROLE_PREFIX + v.name()))); // change to Role.ROLE_PREFIX
        return authorities;
        // если не используется, то return Collections.emptyList();
    }

    @JsonIgnore
    @Override
    public String getPassword() {
        return password;
    }

    @JsonIgnore
    @Override
    public String getUsername() {
        return email;
    }

    @JsonIgnore
    @Override
    public boolean isAccountNonExpired() {
        return !disabled;
    }

    @JsonIgnore
    @Override
    public boolean isAccountNonLocked() {
        return !disabled;
    }

    @JsonIgnore
    @Override
    public boolean isCredentialsNonExpired() {
        return !disabled;
    }

    @JsonIgnore
    @Override
    public boolean isEnabled() {
        return !disabled;
    }

 }
	@RestController
	@Slf4j
	@RequiredArgsConstructor
	@RequestMapping("channel")
	public class MyController {

	// Если бы мы в UserPrincipal добавили public final static String ROLE_ADMIN_NAME = ROLE_PREFIX + Role.ADMIN;
	// или Role.ADMIN.name(),
	// то при использовании @Secured(UserPrincipal.ROLE_ADMIN_NAME) мы бы получили: Attribute value must be constant.
	// Т.к. здесь используется вызов функции Role. или Role.ADMIN., а это уже не константа
	@Secured(Role.ROLE_ADMIN_NAME)
	@GetMapping("all")
	public List<Animal> getAll() {
	return AnimalService.getAll();
	}

	}
	// Before
	@Getter
	@AllArgsConstructor
	@ToString
	public enum Role1 {

	ADMIN("Administrator"), OPERATOR("Operator");

	private final String title;

	public static Role getType(final String title) {
	return Arrays.stream(values()).filter(e -> title.equals(e.title)).findFirst().orElse(null);
	}

	}
	// After
	@Getter
	@AllArgsConstructor
	@ToString
	public enum Role2 {

	ADMIN("Administrator"), OPERATOR("Operator");

	public final static String ROLE_PREFIX = "ROLE_"; // ADD

	public final static String ROLE_ADMIN_NAME = ROLE_PREFIX + "ADMIN"; // ADD

	public final static String ROLE_OPERATOR_NAME = ROLE_PREFIX + "OPERATOR"; // ADD

	private final String title;

	public static Role getType(final String title) {
	return Arrays.stream(values()).filter(e -> title.equals(e.title)).findFirst().orElse(null);
	}

	}
	@Slf4j
	@Configuration
	@EnableWebSecurity
	@RequiredArgsConstructor
	@EnableGlobalMethodSecurity(securedEnabled = true) // add for @Secured
	public class SecurityConfig extends WebSecurityConfigurerAdapter {
	}
	// Before
	@Data
	@ToString(exclude = {"password"})
	public class UserPrincipal1 implements UserDetails {

	private final static String ROLE_PREFIX = "ROLE_";

	private Long id;

	private String email;

	@JsonIgnore
	private String password;

	private Boolean disabled;

	private Map<Workspace, Role> workspaces;

	@JsonIgnore
	@Override
	public Collection<? extends GrantedAuthority> getAuthorities() {
	final Set<GrantedAuthority> authorities = new HashSet<>();
	workspaces.forEach((k, v) -> authorities.add(new SimpleGrantedAuthority(ROLE_PREFIX + v.name())));
	return authorities;
	}

	@JsonIgnore
	@Override
	public String getPassword() {
	return password;
	}

	@JsonIgnore
	@Override
	public String getUsername() {
	return email;
	}

	@JsonIgnore
	@Override
	public boolean isAccountNonExpired() {
	return !disabled;
	}

	@JsonIgnore
	@Override
	public boolean isAccountNonLocked() {
	return !disabled;
	}

	@JsonIgnore
	@Override
	public boolean isCredentialsNonExpired() {
	return !disabled;
	}

	@JsonIgnore
	@Override
	public boolean isEnabled() {
	return !disabled;
	}

	}