tessl/maven-org-springframework-security--spring-security-remoting
Spring Security Remoting provides security services for remote method invocation in distributed Spring applications including RMI context propagation, HTTP invoker authentication, and DNS resolution utilities.
- Workspace
- tessl
- Visibility
- Public
- Created
- Last updated
'%3e%3cpath%20d='m7.15%205.779.281.877c-.001.502.003.991.124%201.48l.116-.082.229-1.265c.723%201.422%202.78%203.325%202.53%205.008-.022.154-.082.3-.158.435.349-.014.375-.38.578-.56.187%201.005.17%201.975-.22%202.932l1.428%203.159c-.007.07-.626.285-.744.226-.087-.044-.629-1.506-.742-1.754-.103-.224-.457-1.044-.592-1.165-.592-.534-2.033-.183-2.773-.256l.488-.115.148-.109c-.68-.08-1.363-.34-1.85-.815.531.046%201.052.121%201.592.087.1-.006.378-.02.432-.114-1.338-.016-2.398-.569-3.16-1.62-1.03-1.422-1.646-3.215-2.658-4.662-.203-.289-.474-.68-.776-.847-.015-.092.076-.054.137-.049.375.034.778.157%201.148.234l1.26.462c-.404-.737-1.332-.637-1.984-.994-.759-.416-1.2-1.386-1.487-2.149-.258-.68-.536-1.495-.492-2.217.282.262.529.573.896.73.087-.102-.838-1.102-.867-1.323C-.051.673.656-.051%201.328.003c1.128.09%202.44%201.953%202.87%202.886.074.069.145-.23.149-.25.029-.154.01-.306.054-.452.67.932%201.64%201.722%202.122%202.768l.626%201.778V5.78Z'/%3e%3cpath%20d='m10.851%206.733.626-1.778c.483-1.047%201.451-1.836%202.122-2.769.045.147.025.299.054.452.005.021.075.32.149.25.43-.932%201.742-2.796%202.87-2.885.672-.054%201.38.67%201.294%201.31-.03.22-.954%201.221-.867%201.322.367-.156.614-.467.896-.729.044.722-.234%201.536-.49%202.218-.288.763-.73%201.733-1.488%202.149-.652.356-1.58.256-1.984.993l1.26-.461c.37-.077.772-.2%201.148-.234.06-.006.152-.044.136.049-.301.166-.573.557-.775.847-.794%201.135-1.347%202.488-2.049%203.68-.635%201.081-1.285%202.087-2.613%202.432.148-.768.005-1.562-.173-2.316l-.32-.092c-.219-1.088-.84-2.001-1.466-2.908l.919-1.475.229%201.265.116.082c.12-.489.125-.979.123-1.48l.283-.877v.955ZM8.017%2014.984c-.238.57-.531%201.119-.78%201.686-.089.204-.446%201.24-.518%201.295-.145.114-.622-.087-.777-.2l1.207-2.78h.868ZM12.008%2013.75c-.059.174-.949.7-1.04.617l.12-.5.92-.117Z'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='a'%3e%3cpath%20fill='%23fff'%20d='M0%200h18v18H0z'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e){kind=small}
To install, run
npx @tessl/cli install tessl/maven-org-springframework-security--spring-security-remoting@5.8.00
# Spring Security Remoting
1
2
Spring Security Remoting provides security services for remote method invocation in distributed Spring applications. It includes support for RMI context propagation, HTTP invoker authentication, and DNS resolution utilities that maintain security context across remote calls.
3
4
**Deprecation Notice**: All APIs in this module are deprecated as of Spring Security 5.6.0 with no replacement and will be removed in future versions.
5
6
## Package Information
7
8
- **Package Name**: org.springframework.security:spring-security-remoting
9
- **Package Type**: Maven
10
- **Language**: Java
11
- **Installation**:
12
```xml
13
<dependency>
14
<groupId>org.springframework.security</groupId>
15
<artifactId>spring-security-remoting</artifactId>
16
<version>5.8.16</version>
17
</dependency>
18
```
19
20
## Core Imports
21
22
```java
23
// DNS resolution
24
import org.springframework.security.remoting.dns.DnsResolver;
25
import org.springframework.security.remoting.dns.JndiDnsResolver;
26
import org.springframework.security.remoting.dns.InitialContextFactory;
27
import org.springframework.security.remoting.dns.DnsLookupException;
28
import org.springframework.security.remoting.dns.DnsEntryNotFoundException;
29
30
// HTTP invoker authentication
31
import org.springframework.security.remoting.httpinvoker.AuthenticationSimpleHttpInvokerRequestExecutor;
32
import org.springframework.security.authentication.AuthenticationTrustResolver;
33
34
// RMI context propagation
35
import org.springframework.security.remoting.rmi.ContextPropagatingRemoteInvocationFactory;
36
import org.springframework.security.remoting.rmi.ContextPropagatingRemoteInvocation;
37
import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
38
```
39
40
Required framework imports for DNS resolution:
41
```java
42
import javax.naming.directory.DirContext;
43
import javax.naming.directory.InitialDirContext;
44
```
45
46
## Basic Usage
47
48
### HTTP Invoker with Authentication
49
50
```java
51
import org.springframework.remoting.httpinvoker.HttpInvokerProxyFactoryBean;
52
import org.springframework.security.remoting.httpinvoker.AuthenticationSimpleHttpInvokerRequestExecutor;
53
54
// Configure HTTP invoker with authentication
55
HttpInvokerProxyFactoryBean proxy = new HttpInvokerProxyFactoryBean();
56
proxy.setServiceUrl("http://localhost:8080/remoting/MyService");
57
proxy.setServiceInterface(MyService.class);
58
59
// Add authentication support
60
AuthenticationSimpleHttpInvokerRequestExecutor executor =
61
new AuthenticationSimpleHttpInvokerRequestExecutor();
62
proxy.setHttpInvokerRequestExecutor(executor);
63
64
MyService service = (MyService) proxy.getObject();
65
```
66
67
### RMI with Security Context Propagation
68
69
```java
70
import org.springframework.remoting.rmi.RmiProxyFactoryBean;
71
import org.springframework.security.remoting.rmi.ContextPropagatingRemoteInvocationFactory;
72
73
// Configure RMI proxy with security context propagation
74
RmiProxyFactoryBean proxy = new RmiProxyFactoryBean();
75
proxy.setServiceUrl("rmi://localhost:1099/MyService");
76
proxy.setServiceInterface(MyService.class);
77
proxy.setRefreshStubOnConnectFailure(true);
78
79
// Add security context propagation
80
ContextPropagatingRemoteInvocationFactory factory =
81
new ContextPropagatingRemoteInvocationFactory();
82
proxy.setRemoteInvocationFactory(factory);
83
84
MyService service = (MyService) proxy.getObject();
85
```
86
87
## Architecture
88
89
Spring Security Remoting extends Spring Framework's remoting capabilities to support security context propagation across distributed applications:
90
91
- **HTTP Invoker Integration**: Extends SimpleHttpInvokerRequestExecutor to add BASIC authentication using SecurityContextHolder credentials
92
- **RMI Context Propagation**: Custom RemoteInvocation implementation that carries security principal and credentials from client to server
93
- **DNS Resolution**: JNDI-based DNS resolver for service discovery in distributed environments
94
- **Security Context Management**: Automatic propagation and restoration of Spring Security context across remote boundaries
95
96
## Capabilities
97
98
### DNS Resolution
99
100
DNS resolution utilities for service discovery in distributed environments, supporting both A record and SRV record lookups with JNDI-based implementation.
101
102
```java { .api }
103
public interface DnsResolver {
104
String resolveIpAddress(String hostname) throws DnsEntryNotFoundException, DnsLookupException;
105
String resolveServiceEntry(String serviceType, String domain) throws DnsEntryNotFoundException, DnsLookupException;
106
String resolveServiceIpAddress(String serviceType, String domain) throws DnsEntryNotFoundException, DnsLookupException;
107
}
108
109
public class JndiDnsResolver implements DnsResolver {
110
public void setCtxFactory(InitialContextFactory ctxFactory);
111
public String resolveServiceIpAddressAndPort(String serviceType, String domain);
112
}
113
```
114
115
[DNS Resolution](./dns-resolution.md)
116
117
### HTTP Invoker Authentication
118
119
BASIC authentication support for Spring's HTTP invoker remoting, automatically using credentials from SecurityContextHolder to authenticate remote method calls.
120
121
```java { .api }
122
public class AuthenticationSimpleHttpInvokerRequestExecutor extends SimpleHttpInvokerRequestExecutor {
123
protected void prepareConnection(HttpURLConnection con, int contentLength) throws IOException;
124
protected void doPrepareConnection(HttpURLConnection con, int contentLength) throws IOException;
125
}
126
```
127
128
[HTTP Invoker Authentication](./http-invoker-auth.md)
129
130
### RMI Context Propagation
131
132
Security context propagation for RMI remoting, enabling transparent transmission of authentication information from client to server in distributed RMI applications.
133
134
```java { .api }
135
public class ContextPropagatingRemoteInvocation extends RemoteInvocation {
136
public ContextPropagatingRemoteInvocation(MethodInvocation methodInvocation);
137
public Object invoke(Object targetObject) throws NoSuchMethodException, IllegalAccessException, InvocationTargetException;
138
protected Authentication createAuthenticationRequest(String principal, String credentials);
139
}
140
141
public class ContextPropagatingRemoteInvocationFactory implements RemoteInvocationFactory {
142
public RemoteInvocation createRemoteInvocation(MethodInvocation methodInvocation);
143
}
144
```
145
146
[RMI Context Propagation](./rmi-context-propagation.md)
147
148
## Exception Types
149
150
```java { .api }
151
public class DnsLookupException extends RuntimeException {
152
public DnsLookupException(String msg);
153
public DnsLookupException(String msg, Throwable cause);
154
}
155
156
public class DnsEntryNotFoundException extends DnsLookupException {
157
public DnsEntryNotFoundException(String msg);
158
public DnsEntryNotFoundException(String msg, Throwable cause);
159
}
160
```
161
162
## Integration Dependencies
163
164
This module requires the following Spring Framework components:
165
- `spring-remoting` for HTTP invoker and RMI support
166
- `spring-security-core` for SecurityContextHolder and Authentication
167
- Java Naming API (`javax.naming`) for DNS resolution
168
- Apache Commons Logging for internal logging