jcasbin-nutz-plugin is an authorization middleware for Nutz, it's based on https://github.com/casbin/jcasbin. It is developed under the latest Nutz 1.r.65 and Java 8.
<dependency>
<groupId>org.casbin</groupId>
<artifactId>jcasbin-nutz-plugin</artifactId>
<version>1.0.0</version>
</dependency>This project itself is a working Nutz project that integrates with jCasbin. The steps to use jCasbin in your own Nutz project are:
- Copy the JCasbinAuthzFilter class to your own project.
- Copy authz_model.conf and authz_policy.csv to your project. You can modify them to your own jCasbin model and policy (or loading policy from DB), see Model persistence and Policy persistence.
- Replace the HttpBasicAuthnFilter class (which provides HTTP basic authentication) with your own authentication like OAuth, Apache Shiro, Spring Security, etc. Rewrite
JCasbinAuthzFilter's String getUser(HttpServletRequest request) method to make sure jCasbin can get the authenticated user name. - Make sure the
JCasbinAuthzFilterfilter is loaded, so it can filter all your requests. To do this, you can use the following code in yourMainModuleclass:
@Filters({@By(type=JCasbinAuthzFilter.class), @By(type=HttpBasicAuthnFilter.class)})
public class MainModule {
...
}This project is under Apache 2.0 License. See the LICENSE file for the full license text.