Blame view

src/main/java/fr/plil/sio/web/mvc/ApplicationSecurityConfiguration.java 1.95 KB
322c9502   Julien Cartigny   Ad Spring securit...
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
  package fr.plil.sio.web.mvc;
  
  import org.springframework.beans.factory.annotation.Autowired;
  import org.springframework.context.annotation.Configuration;
  import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
  import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity;
  import org.springframework.security.config.annotation.web.builders.HttpSecurity;
  import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
  import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
  import org.springframework.security.core.userdetails.UserDetailsService;
  import org.springframework.security.crypto.password.PasswordEncoder;
  
  import javax.annotation.Resource;
  
  @Configuration
  @EnableWebSecurity
  @EnableGlobalMethodSecurity(prePostEnabled = true)
  public class ApplicationSecurityConfiguration extends WebSecurityConfigurerAdapter {
  
      @Resource
      private PasswordEncoder passwordEncoder;
  
      @Resource
      private UserDetailsService userDetailsService;
  
      @Override
      protected void configure(HttpSecurity http) throws Exception {
          http
                  .authorizeRequests()
a8656157   Julien Cartigny   Support for boots...
30
                  .antMatchers("/webjars/**").permitAll()
353d9d4f   Zak   désactivation des...
31
                  .antMatchers("/js/**").permitAll()
c1d2852e   Zak   Ajout css
32
                  .antMatchers("/css/**").permitAll()
8a362652   Zak   Ajout css, js et ...
33
                  .antMatchers("/bootstrap/**").permitAll()
95ea306a   Zak   Ajout css, img et...
34
                  .antMatchers("/img/**").permitAll()
322c9502   Julien Cartigny   Ad Spring securit...
35
36
37
38
39
40
41
42
                  .anyRequest().authenticated()
                  .and()
                  .formLogin()
                  .loginPage("/login")
                  .permitAll()
                  .and()
                  .logout()
                  .permitAll();
353d9d4f   Zak   désactivation des...
43
          http.csrf().disable();     
322c9502   Julien Cartigny   Ad Spring securit...
44
45
46
47
48
49
50
      }
  
      @Autowired
      public void configureGlobal(AuthenticationManagerBuilder auth) throws Exception {
          auth.userDetailsService(userDetailsService).passwordEncoder(passwordEncoder);
      }
  }