Merge branch 'release/0.0.2'

README.md

@@ -2,22 +2,23 @@
 
 *Auto-login feature for development*
 
+[![stable](https://img.shields.io/badge/lifecycle-STABLE-green.svg)](https://github.com/holisticon#open-source-lifecycle)
 [![Build Status](https://github.com/holunda-io/camunda-platform-7-autologin/workflows/Development%20branches/badge.svg)](https://github.com/holunda-io/camunda-platform-7-autologin/actions)
 [![sponsored](https://img.shields.io/badge/sponsoredBy-Holisticon-RED.svg)](https://holisticon.de/)
-[![Maven Central](https://maven-badges.herokuapp.com/maven-central/io.holunda/camunda-platform-7-autologin/badge.svg)](https://maven-badges.herokuapp.com/maven-central/holunda-io/camunda-platform-7-autologin)
+[![Maven Central](https://maven-badges.herokuapp.com/maven-central/io.holunda/camunda-platform-7-autologin/badge.svg)](https://maven-badges.herokuapp.com/maven-central/io.holunda/camunda-platform-7-autologin)
 ![Compatible with: Camunda Platform 7](https://img.shields.io/badge/Compatible%20with-Camunda%20Platform%207-26d07c)
 
 ## Why should you use it?
 
 Because otherwise, you need to type again and again "admin/admin" or "demo/demo" when developing locally and trying to log-in to local Camunda Webapp.
 
-## Main Features
+## Feature
 
-Allows auto-login by the user configured in the properties.
+Allows Camunda WebApp auto-login by the user configured in the application properties.
 
 ## Usage
 
-Put the following dependency on your classpath:
+Assuming you are using Camunda Spring Boot Starter, put the following dependency on your classpath:
 
 ```xml
 <dependency>
@@ -49,9 +50,10 @@ camunda:
     login:
       enabled: true                     # enables the feature, disabled by default
       user-id: admin                    # user id of the user, defaults to 'nobody'
-      camunda-context-path: /some-path  # path camunda webapp bound to, defaults to /camunda
-      create-if-absent: true            # will create a dummy user using internal identity service, defaults to false
-      random-password: false            # flag to control the password of the auto-generated-user, defaults to true. If false is selected, the password is equals to user id.             
+      camunda-context-path: /some-path  # path camunda webapp bound to, defaults to '/camunda'
+      create-if-absent: true            # will create a dummy user using internal identity service, defaults to 'false'
+      random-password: false            # flag to control the password of the auto-generated-user, defaults to 'true'. 
+                                        # If false is selected, the password is equals to user id.             
 ```
 
 ## License
@@ -62,6 +64,4 @@ This library is developed under Apache 2.0 License.
 
 ## Contribution
 
-If you want to contribute to this project, feel free to do so. 
-Start with [Contributing guide](http://holunda.io/camunda-bpm-correlate/snapshot/developer-guide/contribution.html).
-
+If you are missing a feature, you are welcome to contribute by filing an issue or providing a pull-request.

pom.xml

@@ -4,7 +4,7 @@
 
   <groupId>io.holunda</groupId>
   <artifactId>camunda-platform-7-autologin</artifactId>
-  <version>0.0.1</version>
+  <version>0.0.2</version>
   <packaging>jar</packaging>
   <name>${project.artifactId}</name>
   <url>https://github.com/holunda-io/camunda-platform-7-autologin/</url>
@@ -15,7 +15,7 @@
     <java.version>11</java.version>
     <kotlin.version>1.6.21</kotlin.version>
     <spring-boot.version>2.6.7</spring-boot.version>
-    <camunda.version>7.17.0</camunda.version>
+    <camunda.version>7.19.0</camunda.version>
   </properties>
 
   <dependencyManagement>

src/main/kotlin/io/holunda/camunda/platform/login/ExtendedContainerBasedAuthenticationFilter.kt

@@ -1,7 +1,6 @@
 package io.holunda.camunda.platform.login
 
 import org.camunda.bpm.engine.rest.security.auth.AuthenticationProvider
-import org.camunda.bpm.webapp.impl.security.auth.AuthenticationService
 import org.camunda.bpm.webapp.impl.security.auth.ContainerBasedAuthenticationFilter
 import javax.servlet.FilterConfig
 
@@ -14,6 +13,5 @@ open class ExtendedContainerBasedAuthenticationFilter(
 
   override fun init(filterConfig: FilterConfig) {
     super.authenticationProvider = provider
-    super.userAuthentications = AuthenticationService()
   }
 }

src/main/kotlin/io/holunda/camunda/platform/login/SessionBasedAuthenticationProvider.kt

@@ -3,6 +3,7 @@ package io.holunda.camunda.platform.login
 import org.camunda.bpm.engine.ProcessEngine
 import org.camunda.bpm.engine.rest.security.auth.AuthenticationProvider
 import org.camunda.bpm.engine.rest.security.auth.AuthenticationResult
+import org.camunda.bpm.webapp.impl.security.auth.AuthenticationUtil
 import org.camunda.bpm.webapp.impl.security.auth.Authentications
 import javax.servlet.http.HttpServletRequest
 import javax.servlet.http.HttpServletResponse
@@ -19,7 +20,7 @@ class SessionBasedAuthenticationProvider(
   }
 
   override fun extractAuthenticatedUser(request: HttpServletRequest, processEngine: ProcessEngine): AuthenticationResult {
-    val authentications = Authentications.getFromSession(request.session)
+    val authentications = AuthenticationUtil.getAuthsFromSession(request.session)
     val userId = if (authentications != null && authentications.hasAuthenticationForProcessEngine(processEngine.name)) {
       authentications.getAuthenticationForProcessEngine(processEngine.name).name
     } else {