src/main/java/de/thm/arsnova/config/PrefixedYamlPropertiesFactoryBean.java

+package de.thm.arsnova.config;
+
+import java.util.Properties;
+import org.springframework.beans.factory.config.YamlPropertiesFactoryBean;
+import org.springframework.core.CollectionFactory;
+
+public class PrefixedYamlPropertiesFactoryBean extends YamlPropertiesFactoryBean {
+	private static final String PREFIX = "arsnova";
+
+	@Override
+	protected Properties createProperties() {
+		final Properties result = CollectionFactory.createStringAdaptingProperties();
+		process((properties, map) -> properties.forEach((k, v) -> {
+			if (k.toString().startsWith(PREFIX + ".")) {
+				result.put(k.toString().substring(PREFIX.length() + 1), v);
+			}
+		}));
+
+		return result;
+	}
+}

src/main/java/de/thm/arsnova/config/SecurityInitializer.java

+/*
+ * This file is part of ARSnova Backend.
+ * Copyright (C) 2012-2019 The ARSnova Team and Contributors
+ *
+ * ARSnova Backend is free software: you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation, either version 3 of the License, or
+ * (at your option) any later version.
+ *
+ * ARSnova Backend is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program.  If not, see <http://www.gnu.org/licenses/>.
+ */
+
+package de.thm.arsnova.config;
+
+import org.springframework.security.web.context.AbstractSecurityWebApplicationInitializer;
+
+public class SecurityInitializer extends AbstractSecurityWebApplicationInitializer {
+}

src/main/java/de/thm/arsnova/config/WebSocketConfig.java

+package de.thm.arsnova.config;
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.boot.context.properties.EnableConfigurationProperties;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.messaging.simp.config.ChannelRegistration;
+import org.springframework.messaging.simp.config.MessageBrokerRegistry;
+import org.springframework.web.socket.config.annotation.EnableWebSocketMessageBroker;
+import org.springframework.web.socket.config.annotation.StompEndpointRegistry;
+import org.springframework.web.socket.config.annotation.WebSocketMessageBrokerConfigurer;
+
+import de.thm.arsnova.config.properties.MessageBrokerProperties;
+import de.thm.arsnova.config.properties.SecurityProperties;
+import de.thm.arsnova.websocket.handler.AuthChannelInterceptorAdapter;
+
+@Configuration
+@EnableWebSocketMessageBroker
+@EnableConfigurationProperties(MessageBrokerProperties.class)
+public class WebSocketConfig implements WebSocketMessageBrokerConfigurer {
+	private static final String MESSAGING_PREFIX = "/backend";
+	private static final String[] DESTINATION_PREFIX = {"/exchange", "/topic", "/queue"};
+	private static final String USER_REGISTRY_BROADCAST = "/topic/log-user-registry";
+	private static final String USER_DESTINATION_BROADCAST = "/queue/log-unresolved-user";
+
+	private final MessageBrokerProperties.Relay relayProperties;
+	private final AuthChannelInterceptorAdapter authChannelInterceptorAdapter;
+	private String[] corsOrigins;
+
+	@Autowired
+	public WebSocketConfig(
+			final MessageBrokerProperties messageBrokerProperties,
+			final SecurityProperties securityProperties,
+			final AuthChannelInterceptorAdapter authChannelInterceptorAdapter) {
+		this.relayProperties = messageBrokerProperties.getRelay();
+		this.corsOrigins = securityProperties.getCorsOrigins().stream().toArray(String[]::new);
+		this.authChannelInterceptorAdapter = authChannelInterceptorAdapter;
+	}
+
+	@Override
+	public void configureMessageBroker(final MessageBrokerRegistry config) {
+		config.setApplicationDestinationPrefixes(MESSAGING_PREFIX);
+
+		if (relayProperties.isEnabled()) {
+			config
+					.enableStompBrokerRelay(DESTINATION_PREFIX)
+					.setUserRegistryBroadcast(USER_REGISTRY_BROADCAST)
+					.setUserDestinationBroadcast(USER_DESTINATION_BROADCAST)
+					.setRelayHost(relayProperties.getHost())
+					.setRelayPort(relayProperties.getPort())
+					.setClientLogin(relayProperties.getUsername())
+					.setClientPasscode(relayProperties.getPassword());
+		} else {
+			config.enableSimpleBroker(DESTINATION_PREFIX);
+		}
+	}
+
+	@Override
+	public void registerStompEndpoints(final StompEndpointRegistry registry) {
+		registry.addEndpoint("/ws").setAllowedOrigins(corsOrigins).withSockJS();
+	}
+
+	@Override
+	public void configureClientInboundChannel(final ChannelRegistration registration) {
+		registration.interceptors(authChannelInterceptorAdapter);
+	}
+}

src/main/java/de/thm/arsnova/config/YamlPropertySourceFactory.java

+package de.thm.arsnova.config;
+
+import java.io.FileNotFoundException;
+import java.io.IOException;
+import java.util.Properties;
+import org.springframework.beans.factory.config.YamlPropertiesFactoryBean;
+import org.springframework.core.env.PropertiesPropertySource;
+import org.springframework.core.env.PropertySource;
+import org.springframework.core.io.support.DefaultPropertySourceFactory;
+import org.springframework.core.io.support.EncodedResource;
+
+public class YamlPropertySourceFactory extends DefaultPropertySourceFactory {
+	@Override
+	public PropertySource<?> createPropertySource(final String name, final EncodedResource resource)
+			throws IOException {
+		try {
+			final YamlPropertiesFactoryBean yamlPropertiesFactoryBean = new PrefixedYamlPropertiesFactoryBean();
+			yamlPropertiesFactoryBean.setResources(resource.getResource());
+			yamlPropertiesFactoryBean.afterPropertiesSet();
+			final Properties properties = yamlPropertiesFactoryBean.getObject();
+
+			return new PropertiesPropertySource(name != null ? name : resource.getResource().getFilename(), properties);
+		} catch (final IllegalStateException e) {
+			if (e.getCause() instanceof FileNotFoundException) {
+				throw (FileNotFoundException) e.getCause();
+			}
+			throw e;
+		}
+	}
+}

src/main/java/de/thm/arsnova/config/package-info.java

+/**
+ * Configuration of Spring's and ARSnova's components.
+ */
+
 package de.thm.arsnova.config;

src/main/java/de/thm/arsnova/config/properties/AuthenticationProviderProperties.java

+/*
+ * This file is part of ARSnova Backend.
+ * Copyright (C) 2012-2019 The ARSnova Team and Contributors
+ *
+ * ARSnova Backend is free software: you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation, either version 3 of the License, or
+ * (at your option) any later version.
+ *
+ * ARSnova Backend is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program.  If not, see <http://www.gnu.org/licenses/>.
+ */
+
+package de.thm.arsnova.config.properties;
+
+import java.util.List;
+import java.util.Map;
+import java.util.Set;
+import org.springframework.boot.context.properties.ConfigurationProperties;
+import org.springframework.core.style.ToStringCreator;
+
+@ConfigurationProperties(AuthenticationProviderProperties.PREFIX)
+public class AuthenticationProviderProperties {
+	public static final String PREFIX = SecurityProperties.PREFIX + ".authentication-providers";
+
+	public abstract static class Provider {
+		public enum Role {
+			MODERATOR,
+			PARTICIPANT
+		}
+
+		private boolean enabled;
+		private String title;
+		private int order;
+		private Set<Role> allowedRoles;
+
+		public boolean isEnabled() {
+			return enabled;
+		}
+
+		public void setEnabled(final boolean enabled) {
+			this.enabled = enabled;
+		}
+
+		public String getTitle() {
+			return title;
+		}
+
+		public void setTitle(final String title) {
+			this.title = title;
+		}
+
+		public int getOrder() {
+			return order;
+		}
+
+		public void setOrder(final int order) {
+			this.order = order;
+		}
+
+		public Set<Role> getAllowedRoles() {
+			return allowedRoles;
+		}
+
+		public void setAllowedRoles(final Set<Role> allowedRoles) {
+			this.allowedRoles = allowedRoles;
+		}
+	}
+
+	public static class Registered extends Provider {
+		private List<String> allowedEmailDomains;
+		private String registrationMailSubject;
+		private String registrationMailBody;
+		private String resetPasswordMailSubject;
+		private String resetPasswordMailBody;
+
+		public List<String> getAllowedEmailDomains() {
+			return allowedEmailDomains;
+		}
+
+		public void setAllowedEmailDomains(final List<String> allowedEmailDomains) {
+			this.allowedEmailDomains = allowedEmailDomains;
+		}
+
+		public String getRegistrationMailSubject() {
+			return registrationMailSubject;
+		}
+
+		public void setRegistrationMailSubject(final String registrationMailSubject) {
+			this.registrationMailSubject = registrationMailSubject;
+		}
+
+		public String getRegistrationMailBody() {
+			return registrationMailBody;
+		}
+
+		public void setRegistrationMailBody(final String registrationMailBody) {
+			this.registrationMailBody = registrationMailBody;
+		}
+
+		public String getResetPasswordMailSubject() {
+			return resetPasswordMailSubject;
+		}
+
+		public void setResetPasswordMailSubject(final String resetPasswordMailSubject) {
+			this.resetPasswordMailSubject = resetPasswordMailSubject;
+		}
+
+		public String getResetPasswordMailBody() {
+			return resetPasswordMailBody;
+		}
+
+		public void setResetPasswordMailBody(final String resetPasswordMailBody) {
+			this.resetPasswordMailBody = resetPasswordMailBody;
+		}
+	}
+
+	public static class Guest extends Provider {
+
+	}
+
+	public static class Ldap extends Provider {
+		private String hostUrl;
+		private String userDnPattern;
+		private String userIdAttribute;
+		private String userSearchFilter;
+		private String userSearchBase;
+		private String managerUserDn;
+		private String managerPassword;
+		private int connectTimeout;
+
+		public String getHostUrl() {
+			return hostUrl;
+		}
+
+		public void setHostUrl(final String hostUrl) {
+			this.hostUrl = hostUrl;
+		}
+
+		public String getUserDnPattern() {
+			return userDnPattern;
+		}
+
+		public void setUserDnPattern(final String userDnPattern) {
+			this.userDnPattern = userDnPattern;
+		}
+
+		public String getUserIdAttribute() {
+			return userIdAttribute;
+		}
+
+		public void setUserIdAttribute(final String userIdAttribute) {
+			this.userIdAttribute = userIdAttribute;
+		}
+
+		public String getUserSearchFilter() {
+			return userSearchFilter;
+		}
+
+		public void setUserSearchFilter(final String userSearchFilter) {
+			this.userSearchFilter = userSearchFilter;
+		}
+
+		public String getUserSearchBase() {
+			return userSearchBase;
+		}
+
+		public void setUserSearchBase(final String userSearchBase) {
+			this.userSearchBase = userSearchBase;
+		}
+
+		public String getManagerUserDn() {
+			return managerUserDn;
+		}
+
+		public void setManagerUserDn(final String managerUserDn) {
+			this.managerUserDn = managerUserDn;
+		}
+
+		public String getManagerPassword() {
+			return managerPassword;
+		}
+
+		public void setManagerPassword(final String managerPassword) {
+			this.managerPassword = managerPassword;
+		}
+
+		public int getConnectTimeout() {
+			return connectTimeout;
+		}
+
+		public void setConnectTimeout(final int connectTimeout) {
+			this.connectTimeout = connectTimeout;
+		}
+	}
+
+	public static class Oidc extends Provider {
+		private String issuer;
+		private String clientId;
+		private String secret;
+
+		public String getIssuer() {
+			return issuer;
+		}
+
+		public void setIssuer(final String issuer) {
+			this.issuer = issuer;
+		}
+
+		public String getClientId() {
+			return clientId;
+		}
+
+		public void setClientId(final String clientId) {
+			this.clientId = clientId;
+		}
+
+		public String getSecret() {
+			return secret;
+		}
+
+		public void setSecret(final String secret) {
+			this.secret = secret;
+		}
+	}
+
+	public static class Saml extends Provider {
+		public static class Idp {
+			private String metaFile;
+
+			public String getMetaFile() {
+				return metaFile;
+			}
+
+			public void setMetaFile(final String metaFile) {
+				this.metaFile = metaFile;
+			}
+		}
+
+		public static class Sp {
+			private String metaFile;
+			private String entityId;
+
+			public String getMetaFile() {
+				return metaFile;
+			}
+
+			public void setMetaFile(final String metaFile) {
+				this.metaFile = metaFile;
+			}
+
+			public String getEntityId() {
+				return entityId;
+			}
+
+			public void setEntityId(final String entityId) {
+				this.entityId = entityId;
+			}
+		}
+
+		public static class Keystore {
+			private String file;
+			private String storePassword;
+			private String keyAlias;
+			private String keyPassword;
+
+			public String getFile() {
+				return file;
+			}
+
+			public void setFile(final String file) {
+				this.file = file;
+			}
+
+			public String getStorePassword() {
+				return storePassword;
+			}
+
+			public void setStorePassword(final String storePassword) {
+				this.storePassword = storePassword;
+			}
+
+			public String getKeyAlias() {
+				return keyAlias;
+			}
+
+			public void setKeyAlias(final String keyAlias) {
+				this.keyAlias = keyAlias;
+			}
+
+			public String getKeyPassword() {
+				return keyPassword;
+			}
+
+			public void setKeyPassword(final String keyPassword) {
+				this.keyPassword = keyPassword;
+			}
+		}
+
+		private boolean enabled;
+		private Idp idp;
+		private Sp sp;
+		private Keystore keystore;
+		private String userIdAttribute;
+		private int assertionConsumerServiceIndex;
+		private int maxAuthenticationLifetime;
+
+		@Override
+		public boolean isEnabled() {
+			return enabled;
+		}
+
+		@Override
+		public void setEnabled(final boolean enabled) {
+			this.enabled = enabled;
+		}
+
+		public Idp getIdp() {
+			return idp;
+		}
+
+		public void setIdp(final Idp idp) {
+			this.idp = idp;
+		}
+
+		public Sp getSp() {
+			return sp;
+		}
+
+		public void setSp(final Sp sp) {
+			this.sp = sp;
+		}
+
+		public Keystore getKeystore() {
+			return keystore;
+		}
+
+		public void setKeystore(final Keystore keystore) {
+			this.keystore = keystore;
+		}
+
+		public String getUserIdAttribute() {
+			return userIdAttribute;
+		}
+
+		public void setUserIdAttribute(final String userIdAttribute) {
+			this.userIdAttribute = userIdAttribute;
+		}
+
+		public int getAssertionConsumerServiceIndex() {
+			return assertionConsumerServiceIndex;
+		}
+
+		public void setAssertionConsumerServiceIndex(final int assertionConsumerServiceIndex) {
+			this.assertionConsumerServiceIndex = assertionConsumerServiceIndex;
+		}
+
+		public int getMaxAuthenticationLifetime() {
+			return maxAuthenticationLifetime;
+		}
+
+		public void setMaxAuthenticationLifetime(final int maxAuthenticationLifetime) {
+			this.maxAuthenticationLifetime = maxAuthenticationLifetime;
+		}
+	}
+
+	public static class Cas extends Provider {
+		private String hostUrl;
+
+		public String getHostUrl() {
+			return hostUrl;
+		}
+
+		public void setHostUrl(final String hostUrl) {
+			this.hostUrl = hostUrl;
+		}
+	}
+
+	public static class Oauth extends Provider {
+		private String key;
+		private String secret;
+
+		public String getKey() {
+			return key;
+		}
+
+		public void setKey(final String key) {
+			this.key = key;
+		}
+
+		public String getSecret() {
+			return secret;
+		}
+
+		public void setSecret(final String secret) {
+			this.secret = secret;
+		}
+
+		@Override
+		public String toString() {
+			return new ToStringCreator(this).append("enabled", isEnabled()).append("key", key).toString();
+		}
+	}
+
+	private Registered registered;
+	private Guest guest;
+	private List<Ldap> ldap;
+	private List<Oidc> oidc;
+	private Saml saml;
+	private Cas cas;
+	private Map<String, Oauth> oauth;
+
+	public Registered getRegistered() {
+		return registered;
+	}
+
+	public void setRegistered(final Registered registered) {
+		this.registered = registered;
+	}
+
+	public Guest getGuest() {
+		return guest;
+	}
+
+	public void setGuest(final Guest guest) {
+		this.guest = guest;
+	}
+
+	public List<Ldap> getLdap() {
+		return ldap;
+	}
+
+	public void setLdap(final List<Ldap> ldap) {
+		this.ldap = ldap;
+	}
+
+	public List<Oidc> getOidc() {
+		return oidc;
+	}
+
+	public void setOidc(final List<Oidc> oidc) {
+		this.oidc = oidc;
+	}
+
+	public Saml getSaml() {
+		return saml;
+	}
+
+	public void setSaml(final Saml saml) {
+		this.saml = saml;
+	}
+
+	public Cas getCas() {
+		return cas;
+	}
+
+	public void setCas(final Cas cas) {
+		this.cas = cas;
+	}
+
+	public Map<String, Oauth> getOauth() {
+		return oauth;
+	}
+
+	public void setOauth(final Map<String, Oauth> oauth) {
+		this.oauth = oauth;
+	}
+}

src/main/java/de/thm/arsnova/config/properties/CouchDbProperties.java

+/*
+ * This file is part of ARSnova Backend.
+ * Copyright (C) 2012-2019 The ARSnova Team and Contributors
+ *
+ * ARSnova Backend is free software: you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation, either version 3 of the License, or
+ * (at your option) any later version.
+ *
+ * ARSnova Backend is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program.  If not, see <http://www.gnu.org/licenses/>.
+ */
+
+package de.thm.arsnova.config.properties;
+
+import org.springframework.boot.context.properties.ConfigurationProperties;
+
+@ConfigurationProperties(CouchDbProperties.PREFIX)
+public class CouchDbProperties {
+	public static final String PREFIX = SystemProperties.PREFIX + ".couchdb";
+	private String host;
+	private int port;
+	private String dbName;
+	private String username;
+	private String password;
+	private String migrateFrom;
+
+	public String getHost() {
+		return host;
+	}
+
+	public void setHost(final String host) {
+		this.host = host;
+	}
+
+	public int getPort() {
+		return port;
+	}
+
+	public void setPort(final int port) {
+		this.port = port;
+	}
+
+	public String getDbName() {
+		return dbName;
+	}
+
+	public void setDbName(final String dbName) {
+		this.dbName = dbName;
+	}
+
+	public String getUsername() {
+		return username;
+	}
+
+	public void setUsername(final String username) {
+		this.username = username;
+	}
+
+	public String getPassword() {
+		return password;
+	}
+
+	public void setPassword(final String password) {
+		this.password = password;
+	}
+
+	public String getMigrateFrom() {
+		return migrateFrom;
+	}
+
+	public void setMigrateFrom(final String migrateFrom) {
+		this.migrateFrom = migrateFrom;
+	}
+}

src/main/java/de/thm/arsnova/config/properties/FeatureProperties.java

+/*
+ * This file is part of ARSnova Backend.
+ * Copyright (C) 2012-2019 The ARSnova Team and Contributors
+ *
+ * ARSnova Backend is free software: you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation, either version 3 of the License, or
+ * (at your option) any later version.
+ *
+ * ARSnova Backend is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program.  If not, see <http://www.gnu.org/licenses/>.
+ */
+
+package de.thm.arsnova.config.properties;
+
+import com.fasterxml.jackson.annotation.JsonView;
+import org.springframework.boot.context.properties.ConfigurationProperties;
+
+import de.thm.arsnova.model.serialization.View;
+
+@ConfigurationProperties(FeatureProperties.PREFIX)
+public class FeatureProperties {
+	public static final String PREFIX = "features";
+
+	public static class Contents {
+		private boolean enabled;
+		private int answerOptionLimit;
+
+		@JsonView(View.Public.class)
+		public boolean isEnabled() {
+			return enabled;
+		}
+
+		public void setEnabled(final boolean enabled) {
+			this.enabled = enabled;
+		}
+
+		@JsonView(View.Public.class)
+		public int getAnswerOptionLimit() {
+			return answerOptionLimit;
+		}
+
+		public void setAnswerOptionLimit(final int answerOptionLimit) {
+			this.answerOptionLimit = answerOptionLimit;
+		}
+	}
+
+	public static class Comments {
+		private boolean enabled;
+
+		@JsonView(View.Public.class)
+		public boolean isEnabled() {
+			return enabled;
+		}
+
+		public void setEnabled(final boolean enabled) {
+			this.enabled = enabled;
+		}
+	}
+
+	public static class LiveFeedback {
+		private boolean enabled;
+		private int resetInterval;
+
+		@JsonView(View.Public.class)
+		public boolean isEnabled() {
+			return enabled;
+		}
+
+		public void setEnabled(final boolean enabled) {
+			this.enabled = enabled;
+		}
+
+		public int getResetInterval() {
+			return resetInterval;
+		}
+
+		public void setResetInterval(final int resetInterval) {
+			this.resetInterval = resetInterval;
+		}
+	}
+
+	public static class ContentPool {
+		private boolean enabled;
+
+		@JsonView(View.Public.class)
+		public boolean isEnabled() {
+			return enabled;
+		}
+
+		public void setEnabled(final boolean enabled) {
+			this.enabled = enabled;
+		}
+	}
+
+	private Contents contents;
+	private Comments comments;
+	private LiveFeedback liveFeedback;
+	private ContentPool contentPool;
+
+	@JsonView(View.Public.class)
+	public Contents getContents() {
+		return contents;
+	}
+
+	public void setContents(final Contents contents) {
+		this.contents = contents;
+	}
+
+	@JsonView(View.Public.class)
+	public Comments getComments() {
+		return comments;
+	}
+
+	public void setComments(final Comments comments) {
+		this.comments = comments;
+	}
+
+	@JsonView(View.Public.class)
+	public LiveFeedback getLiveFeedback() {
+		return liveFeedback;
+	}
+
+	public void setLiveFeedback(final LiveFeedback liveFeedback) {
+		this.liveFeedback = liveFeedback;
+	}
+
+	@JsonView(View.Public.class)
+	public ContentPool getContentPool() {
+		return contentPool;
+	}
+
+	public void setContentPool(final ContentPool contentPool) {
+		this.contentPool = contentPool;
+	}
+}