Merge pull request #252 from FlorianWege-IESE/mongodb-access-control-boot-up-fix

FrankSchnicke · web-flow · commit a8513774b3d3 · 2023-02-07T10:21:44.000+01:00
Fix access control preventing mongodb boot up loading
diff --git a/basyx.components/basyx.components.docker/basyx.components.AASServer/src/main/java/org/eclipse/basyx/components/aas/AASServerComponent.java b/basyx.components/basyx.components.docker/basyx.components.AASServer/src/main/java/org/eclipse/basyx/components/aas/AASServerComponent.java
@@ -540,7 +540,9 @@ private VABHTTPInterface<?> createAggregatorServlet() {
 
 	private IAASAggregator createAASAggregator() {
 		if (isMongoDBBackend()) {
-			return new MongoDBAASServerComponentFactory(createMongoDbConfiguration(), createAASServerDecoratorList(), registry).create();
+			try (final var ignored = ElevatedCodeAuthentication.enterElevatedCodeAuthenticationArea()) {
+				return new MongoDBAASServerComponentFactory(createMongoDbConfiguration(), createAASServerDecoratorList(), registry).create();
+			}
 		}
 		return new InMemoryAASServerComponentFactory(createAASServerDecoratorList(), registry).create();
 	}
diff --git a/basyx.components/basyx.components.docker/basyx.components.registry/src/main/java/org/eclipse/basyx/components/registry/RegistryComponent.java b/basyx.components/basyx.components.docker/basyx.components.registry/src/main/java/org/eclipse/basyx/components/registry/RegistryComponent.java
@@ -52,6 +52,7 @@
 import org.eclipse.basyx.components.security.authorization.internal.IJwtBearerTokenAuthenticationConfigurationProvider;
 import org.eclipse.basyx.extensions.aas.directory.tagged.api.IAASTaggedDirectory;
 import org.eclipse.basyx.extensions.aas.directory.tagged.map.MapTaggedDirectory;
+import org.eclipse.basyx.extensions.shared.authorization.internal.ElevatedCodeAuthentication;
 import org.eclipse.basyx.extensions.shared.encoding.Base64URLEncoder;
 import org.eclipse.basyx.extensions.shared.encoding.URLEncoder;
 import org.eclipse.basyx.vab.protocol.http.server.BaSyxContext;
@@ -263,7 +264,9 @@ private HttpServlet createTaggedRegistryServlet() {
 		logger.info("Enable tagged directory functionality");
 		IAASTaggedDirectory taggedDirectory;
 		if (registryConfig.getRegistryBackend().equals(RegistryBackend.MONGODB)) {
-			taggedDirectory = new MongoDBTaggedDirectory(loadMongoDBConfiguration(), new HashMap<>());
+			try (final var ignored = ElevatedCodeAuthentication.enterElevatedCodeAuthenticationArea()) {
+				taggedDirectory = new MongoDBTaggedDirectory(loadMongoDBConfiguration(), new HashMap<>());
+			}
 		} else {
 			taggedDirectory = new MapTaggedDirectory(new HashedMap<>(), new HashedMap<>());
 		}
@@ -336,7 +339,9 @@ private IAASRegistry createSQLRegistryBackend() {
 	private IAASRegistry createMongoDBRegistryBackend() {
 		logger.info("Creating MongoDBRegistry");
 		final BaSyxMongoDBConfiguration mongoDBConfiguration = loadMongoDBConfiguration();
-		return new MongoDBRegistry(mongoDBConfiguration);
+		try (final var ignored = ElevatedCodeAuthentication.enterElevatedCodeAuthenticationArea()) {
+			return new MongoDBRegistry(mongoDBConfiguration);
+		}
 	}
 
 	private IAASRegistry decorate(IAASRegistry aasRegistry) {

Original file line number	Diff line number	Diff line change
`@@ -540,7 +540,9 @@ private VABHTTPInterface<?> createAggregatorServlet() {`
`540`	`540`
`541`	`541`	`private IAASAggregator createAASAggregator() {`
`542`	`542`	`if (isMongoDBBackend()) {`
`543`		`- return new MongoDBAASServerComponentFactory(createMongoDbConfiguration(), createAASServerDecoratorList(), registry).create();`
	`543`	`+ try (final var ignored = ElevatedCodeAuthentication.enterElevatedCodeAuthenticationArea()) {`
	`544`	`+ return new MongoDBAASServerComponentFactory(createMongoDbConfiguration(), createAASServerDecoratorList(), registry).create();`
	`545`	`+ }`
`544`	`546`	`}`
`545`	`547`	`return new InMemoryAASServerComponentFactory(createAASServerDecoratorList(), registry).create();`
`546`	`548`	`}`