tessl/maven-org-springframework-security--spring-security-remoting
Spring Security Remoting provides security services for remote method invocation in distributed Spring applications including RMI context propagation, HTTP invoker authentication, and DNS resolution utilities.
- Workspace
- tessl
- Visibility
- Public
- Created
- Last updated
'%3e%3cpath%20d='m7.15%205.779.281.877c-.001.502.003.991.124%201.48l.116-.082.229-1.265c.723%201.422%202.78%203.325%202.53%205.008-.022.154-.082.3-.158.435.349-.014.375-.38.578-.56.187%201.005.17%201.975-.22%202.932l1.428%203.159c-.007.07-.626.285-.744.226-.087-.044-.629-1.506-.742-1.754-.103-.224-.457-1.044-.592-1.165-.592-.534-2.033-.183-2.773-.256l.488-.115.148-.109c-.68-.08-1.363-.34-1.85-.815.531.046%201.052.121%201.592.087.1-.006.378-.02.432-.114-1.338-.016-2.398-.569-3.16-1.62-1.03-1.422-1.646-3.215-2.658-4.662-.203-.289-.474-.68-.776-.847-.015-.092.076-.054.137-.049.375.034.778.157%201.148.234l1.26.462c-.404-.737-1.332-.637-1.984-.994-.759-.416-1.2-1.386-1.487-2.149-.258-.68-.536-1.495-.492-2.217.282.262.529.573.896.73.087-.102-.838-1.102-.867-1.323C-.051.673.656-.051%201.328.003c1.128.09%202.44%201.953%202.87%202.886.074.069.145-.23.149-.25.029-.154.01-.306.054-.452.67.932%201.64%201.722%202.122%202.768l.626%201.778V5.78Z'/%3e%3cpath%20d='m10.851%206.733.626-1.778c.483-1.047%201.451-1.836%202.122-2.769.045.147.025.299.054.452.005.021.075.32.149.25.43-.932%201.742-2.796%202.87-2.885.672-.054%201.38.67%201.294%201.31-.03.22-.954%201.221-.867%201.322.367-.156.614-.467.896-.729.044.722-.234%201.536-.49%202.218-.288.763-.73%201.733-1.488%202.149-.652.356-1.58.256-1.984.993l1.26-.461c.37-.077.772-.2%201.148-.234.06-.006.152-.044.136.049-.301.166-.573.557-.775.847-.794%201.135-1.347%202.488-2.049%203.68-.635%201.081-1.285%202.087-2.613%202.432.148-.768.005-1.562-.173-2.316l-.32-.092c-.219-1.088-.84-2.001-1.466-2.908l.919-1.475.229%201.265.116.082c.12-.489.125-.979.123-1.48l.283-.877v.955ZM8.017%2014.984c-.238.57-.531%201.119-.78%201.686-.089.204-.446%201.24-.518%201.295-.145.114-.622-.087-.777-.2l1.207-2.78h.868ZM12.008%2013.75c-.059.174-.949.7-1.04.617l.12-.5.92-.117Z'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='a'%3e%3cpath%20fill='%23fff'%20d='M0%200h18v18H0z'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e){kind=small}
To install, run
npx @tessl/cli install tessl/maven-org-springframework-security--spring-security-remoting@5.8.0index.mddocs/
Spring Security Remoting
Spring Security Remoting provides security services for remote method invocation in distributed Spring applications. It includes support for RMI context propagation, HTTP invoker authentication, and DNS resolution utilities that maintain security context across remote calls.
Deprecation Notice: All APIs in this module are deprecated as of Spring Security 5.6.0 with no replacement and will be removed in future versions.
Package Information
- Package Name: org.springframework.security:spring-security-remoting
- Package Type: Maven
- Language: Java
- Installation:
<dependency> <groupId>org.springframework.security</groupId> <artifactId>spring-security-remoting</artifactId> <version>5.8.16</version> </dependency>
Core Imports
// DNS resolution
import org.springframework.security.remoting.dns.DnsResolver;
import org.springframework.security.remoting.dns.JndiDnsResolver;
import org.springframework.security.remoting.dns.InitialContextFactory;
import org.springframework.security.remoting.dns.DnsLookupException;
import org.springframework.security.remoting.dns.DnsEntryNotFoundException;
// HTTP invoker authentication
import org.springframework.security.remoting.httpinvoker.AuthenticationSimpleHttpInvokerRequestExecutor;
import org.springframework.security.authentication.AuthenticationTrustResolver;
// RMI context propagation
import org.springframework.security.remoting.rmi.ContextPropagatingRemoteInvocationFactory;
import org.springframework.security.remoting.rmi.ContextPropagatingRemoteInvocation;
import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;Required framework imports for DNS resolution:
import javax.naming.directory.DirContext;
import javax.naming.directory.InitialDirContext;Basic Usage
HTTP Invoker with Authentication
import org.springframework.remoting.httpinvoker.HttpInvokerProxyFactoryBean;
import org.springframework.security.remoting.httpinvoker.AuthenticationSimpleHttpInvokerRequestExecutor;
// Configure HTTP invoker with authentication
HttpInvokerProxyFactoryBean proxy = new HttpInvokerProxyFactoryBean();
proxy.setServiceUrl("http://localhost:8080/remoting/MyService");
proxy.setServiceInterface(MyService.class);
// Add authentication support
AuthenticationSimpleHttpInvokerRequestExecutor executor =
new AuthenticationSimpleHttpInvokerRequestExecutor();
proxy.setHttpInvokerRequestExecutor(executor);
MyService service = (MyService) proxy.getObject();RMI with Security Context Propagation
import org.springframework.remoting.rmi.RmiProxyFactoryBean;
import org.springframework.security.remoting.rmi.ContextPropagatingRemoteInvocationFactory;
// Configure RMI proxy with security context propagation
RmiProxyFactoryBean proxy = new RmiProxyFactoryBean();
proxy.setServiceUrl("rmi://localhost:1099/MyService");
proxy.setServiceInterface(MyService.class);
proxy.setRefreshStubOnConnectFailure(true);
// Add security context propagation
ContextPropagatingRemoteInvocationFactory factory =
new ContextPropagatingRemoteInvocationFactory();
proxy.setRemoteInvocationFactory(factory);
MyService service = (MyService) proxy.getObject();Architecture
Spring Security Remoting extends Spring Framework's remoting capabilities to support security context propagation across distributed applications:
- HTTP Invoker Integration: Extends SimpleHttpInvokerRequestExecutor to add BASIC authentication using SecurityContextHolder credentials
- RMI Context Propagation: Custom RemoteInvocation implementation that carries security principal and credentials from client to server
- DNS Resolution: JNDI-based DNS resolver for service discovery in distributed environments
- Security Context Management: Automatic propagation and restoration of Spring Security context across remote boundaries
Capabilities
DNS Resolution
DNS resolution utilities for service discovery in distributed environments, supporting both A record and SRV record lookups with JNDI-based implementation.
public interface DnsResolver {
String resolveIpAddress(String hostname) throws DnsEntryNotFoundException, DnsLookupException;
String resolveServiceEntry(String serviceType, String domain) throws DnsEntryNotFoundException, DnsLookupException;
String resolveServiceIpAddress(String serviceType, String domain) throws DnsEntryNotFoundException, DnsLookupException;
}
public class JndiDnsResolver implements DnsResolver {
public void setCtxFactory(InitialContextFactory ctxFactory);
public String resolveServiceIpAddressAndPort(String serviceType, String domain);
}HTTP Invoker Authentication
BASIC authentication support for Spring's HTTP invoker remoting, automatically using credentials from SecurityContextHolder to authenticate remote method calls.
public class AuthenticationSimpleHttpInvokerRequestExecutor extends SimpleHttpInvokerRequestExecutor {
protected void prepareConnection(HttpURLConnection con, int contentLength) throws IOException;
protected void doPrepareConnection(HttpURLConnection con, int contentLength) throws IOException;
}RMI Context Propagation
Security context propagation for RMI remoting, enabling transparent transmission of authentication information from client to server in distributed RMI applications.
public class ContextPropagatingRemoteInvocation extends RemoteInvocation {
public ContextPropagatingRemoteInvocation(MethodInvocation methodInvocation);
public Object invoke(Object targetObject) throws NoSuchMethodException, IllegalAccessException, InvocationTargetException;
protected Authentication createAuthenticationRequest(String principal, String credentials);
}
public class ContextPropagatingRemoteInvocationFactory implements RemoteInvocationFactory {
public RemoteInvocation createRemoteInvocation(MethodInvocation methodInvocation);
}Exception Types
public class DnsLookupException extends RuntimeException {
public DnsLookupException(String msg);
public DnsLookupException(String msg, Throwable cause);
}
public class DnsEntryNotFoundException extends DnsLookupException {
public DnsEntryNotFoundException(String msg);
public DnsEntryNotFoundException(String msg, Throwable cause);
}Integration Dependencies
This module requires the following Spring Framework components:
spring-remotingfor HTTP invoker and RMI supportspring-security-corefor SecurityContextHolder and Authentication- Java Naming API (
javax.naming) for DNS resolution - Apache Commons Logging for internal logging