yschimke/test.kt

## test.kt
@Configuration
@EnableRSocketSecurity
@EnableReactiveMethodSecurity
// https://spring.io/blog/2020/06/17/getting-started-with-rsocket-spring-security
class SecurityConfig {
  @Bean
  fun messageHandler(strategies: RSocketStrategies?): RSocketMessageHandler {
    val mh = RSocketMessageHandler()
    mh.argumentResolverConfigurer.addCustomResolver(AuthenticationPrincipalArgumentResolver())
    mh.rSocketStrategies = strategies!!
    return mh
  }

  @Bean fun userDetailsService(jwtDecoder: ReactiveJwtDecoder): ReactiveUserDetailsService {
//    return JwtUserDetailsService(jwtDecoder)
    return ReactiveUserDetailsService {
      just(User.withUsername("yuri").roles("USER").build())
    }
  }

  @Bean
  fun authorizationToken(rsocket: RSocketSecurity): PayloadSocketAcceptorInterceptor {
    return rsocket
        .authorizePayload { authorize: AuthorizePayloadsSpec ->
          authorize
//              .route("runCommand").authenticated()
              .anyExchange().permitAll()
        }
        .jwt { jwtSpec: RSocketSecurity.JwtSpec ->
          jwtSpec.authenticationManager {
            // TODO security disabled
            it.isAuthenticated = true
            just(it)
          }
        }
        .build()
  }

  @Bean fun jwtDecoder(): ReactiveJwtDecoder {
    return ReactiveJwtDecoder {
      just(Jwt.withTokenValue(it).build())
    }
//    return ReactiveJwtDecoders
//        .fromIssuerLocation("https://uaa.run.pivotal.io/oauth/token")
  }

  @Bean fun reactiveAuthenticationManager(): ReactiveAuthenticationManager {
    return ReactiveAuthenticationManager {
      just(it)
    }
  }
}
	@Configuration
	@EnableRSocketSecurity
	@EnableReactiveMethodSecurity
	// https://spring.io/blog/2020/06/17/getting-started-with-rsocket-spring-security
	class SecurityConfig {
	@Bean
	fun messageHandler(strategies: RSocketStrategies?): RSocketMessageHandler {
	val mh = RSocketMessageHandler()
	mh.argumentResolverConfigurer.addCustomResolver(AuthenticationPrincipalArgumentResolver())
	mh.rSocketStrategies = strategies!!
	return mh
	}

	@Bean fun userDetailsService(jwtDecoder: ReactiveJwtDecoder): ReactiveUserDetailsService {
	// return JwtUserDetailsService(jwtDecoder)
	return ReactiveUserDetailsService {
	just(User.withUsername("yuri").roles("USER").build())
	}
	}

	@Bean
	fun authorizationToken(rsocket: RSocketSecurity): PayloadSocketAcceptorInterceptor {
	return rsocket
	.authorizePayload { authorize: AuthorizePayloadsSpec ->
	authorize
	// .route("runCommand").authenticated()
	.anyExchange().permitAll()
	}
	.jwt { jwtSpec: RSocketSecurity.JwtSpec ->
	jwtSpec.authenticationManager {
	// TODO security disabled
	it.isAuthenticated = true
	just(it)
	}
	}
	.build()
	}

	@Bean fun jwtDecoder(): ReactiveJwtDecoder {
	return ReactiveJwtDecoder {
	just(Jwt.withTokenValue(it).build())
	}
	// return ReactiveJwtDecoders
	// .fromIssuerLocation("https://uaa.run.pivotal.io/oauth/token")
	}

	@Bean fun reactiveAuthenticationManager(): ReactiveAuthenticationManager {
	return ReactiveAuthenticationManager {
	just(it)
	}
	}
	}