Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- package com.example.configuration;
- import javax.sql.DataSource;
- import org.springframework.beans.factory.annotation.Autowired;
- import org.springframework.beans.factory.annotation.Value;
- import org.springframework.context.annotation.Bean;
- import org.springframework.context.annotation.ComponentScan;
- import org.springframework.context.annotation.Configuration;
- import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
- import org.springframework.security.config.annotation.web.builders.HttpSecurity;
- import org.springframework.security.config.annotation.web.builders.WebSecurity;
- import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
- import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
- import org.springframework.security.core.userdetails.UserDetailsService;
- import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
- import org.springframework.security.web.util.matcher.AntPathRequestMatcher;
- @Configuration
- @EnableWebSecurity
- public class SecurityConfiguration extends WebSecurityConfigurerAdapter {
- @Autowired
- private BCryptPasswordEncoder bCryptPasswordEncoder;
- @Autowired
- private DataSource dataSource;
- @Value("${spring.queries.users-query}")
- private String usersQuery;
- @Value("${spring.queries.roles-query}")
- private String rolesQuery;
- @Override
- protected void configure(AuthenticationManagerBuilder auth)
- throws Exception {
- auth.
- jdbcAuthentication()
- .usersByUsernameQuery(usersQuery)
- .authoritiesByUsernameQuery(rolesQuery)
- .dataSource(dataSource)
- .passwordEncoder(bCryptPasswordEncoder);
- }
- @Override
- protected void configure(HttpSecurity http) throws Exception {
- http.authorizeRequests()
- .antMatchers("/").permitAll()
- .antMatchers("/login").permitAll()
- .antMatchers("/registration").permitAll()
- .antMatchers("/admin/**")
- .hasAuthority("ADMIN").anyRequest().authenticated()
- .and().csrf().disable().formLogin()
- .loginPage("/login").failureUrl("/login?error=true")
- .defaultSuccessUrl("/admin/home").loginPage("/")
- .usernameParameter("email")
- .passwordParameter("password")
- .failureUrl("/").and().logout()
- .logoutSuccessUrl("/").and()
- .authorizeRequests()
- .antMatchers("/").permitAll()
- .antMatchers("/login").permitAll()
- .antMatchers("/registration").permitAll()
- .antMatchers("/worker/**")
- .hasAuthority("WORKER").anyRequest().authenticated()
- .and().csrf().disable().formLogin()
- .loginPage("/login").failureUrl("/login?error=true")
- .defaultSuccessUrl("/worker/home").loginPage("/")
- .usernameParameter("email")
- .passwordParameter("password")
- .failureUrl("/").and().logout()
- .logoutSuccessUrl("/")
- .and().logout()
- .logoutRequestMatcher(new AntPathRequestMatcher("/logout"))
- .logoutSuccessUrl("/").and().exceptionHandling()
- .accessDeniedPage("/access-denied");
- }
- @Bean
- public BCryptPasswordEncoder passwordEncoder() {
- BCryptPasswordEncoder bCryptPasswordEncoder = new BCryptPasswordEncoder();
- return bCryptPasswordEncoder;
- }
- @Override
- public void configure(WebSecurity web) throws Exception {
- web
- .ignoring()
- .antMatchers("/resources/**", "/static/**", "/css/**", "/js/**", "/images/**");
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
