Assecutor/votianlt
3
0
Fork 0
Code Issues 1 Pull Requests Actions Packages Projects 1 Releases Wiki Activity

Erweiterungen

Browse Source
This commit is contained in:
Sven Carstensen
2025-09-11 10:25:34 +02:00
parent cb95857f58
commit 127eee4e73
3 changed files with 36 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

30
src/main/java/de/assecutor/votianlt/pages/view/LoginView.java
View File

@@ -25,6 +25,7 @@ import org.springframework.security.core.Authentication;
import org.springframework.security.core.context.SecurityContextHolder; import org.springframework.security.core.context.SecurityContextHolder;
import org.springframework.security.web.context.HttpSessionSecurityContextRepository; import org.springframework.security.web.context.HttpSessionSecurityContextRepository;
import com.vaadin.flow.server.VaadinSession; import com.vaadin.flow.server.VaadinSession;
import org.springframework.beans.factory.annotation.Value;
@Route("login") @Route("login")
@PageTitle("Bei VotianLT anmelden") @PageTitle("Bei VotianLT anmelden")
@@ -42,6 +43,9 @@ public class LoginView extends VerticalLayout implements BeforeEnterObserver, Af
@Autowired @Autowired
private AuthenticationManager authenticationManager; private AuthenticationManager authenticationManager;
@Value("${app.security.two-factor.enabled:false}")
private boolean twoFactorEnabled;
private Authentication pendingAuth; private Authentication pendingAuth;
public LoginView() { public LoginView() {
@@ -96,13 +100,27 @@ public class LoginView extends VerticalLayout implements BeforeEnterObserver, Af
private void handlePasswordLogin(String username, String password) { private void handlePasswordLogin(String username, String password) {
try { try {
// Prüfe Benutzername/Passwort, aber setze Benutzer noch nicht in den SecurityContext // Prüfe Benutzername/Passwort
Authentication auth = authenticationManager.authenticate(new UsernamePasswordAuthenticationToken(username, password)); Authentication auth = authenticationManager.authenticate(new UsernamePasswordAuthenticationToken(username, password));
this.pendingAuth = auth;
twoFaField.setVisible(true); if (twoFactorEnabled) {
verify2faButton.setVisible(true); // 2FA aktiviert: Benutzer noch nicht in SecurityContext setzen
twoFactorService.initiateTwoFactorFor(username); this.pendingAuth = auth;
Notification.show("2FA-Code per E-Mail gesendet.", 3000, Notification.Position.BOTTOM_CENTER); twoFaField.setVisible(true);
verify2faButton.setVisible(true);
twoFactorService.initiateTwoFactorFor(username);
Notification.show("2FA-Code per E-Mail gesendet.", 3000, Notification.Position.BOTTOM_CENTER);
} else {
// 2FA deaktiviert: Direkt anmelden
SecurityContextHolder.getContext().setAuthentication(auth);
var vaadinSession = VaadinSession.getCurrent();
if (vaadinSession != null) {
var wrappedSession = vaadinSession.getSession();
wrappedSession.setAttribute(HttpSessionSecurityContextRepository.SPRING_SECURITY_CONTEXT_KEY,
SecurityContextHolder.getContext());
}
UI.getCurrent().getPage().setLocation("/dashboard");
}
} catch (Exception ex) { } catch (Exception ex) {
loginForm.setError(true); loginForm.setError(true);
this.pendingAuth = null; this.pendingAuth = null;

8
src/main/resources/application-prod.properties Normal file
View File

@@ -0,0 +1,8 @@
# Production Configuration
# 2FA Configuration - Aktiviert für Produktion
app.security.two-factor.enabled=true
# Production-specific settings
logging.level.root=WARN
logging.level.de.assecutor.votianlt=INFO

3
src/main/resources/application.properties
View File

@@ -30,3 +30,6 @@ spring.websocket.stomp.enabled=true
# STOMP heartbeat settings (in milliseconds) # STOMP heartbeat settings (in milliseconds)
spring.websocket.stomp.heartbeat.outgoing=10000 spring.websocket.stomp.heartbeat.outgoing=10000
spring.websocket.stomp.heartbeat.incoming=10000 spring.websocket.stomp.heartbeat.incoming=10000
# 2FA Configuration
app.security.two-factor.enabled=false