API tools faq
paste
Advertisement
Guest User

SecurityConfigurer

a guest
Jan 3rd, 2021
46
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Java 2.40 KB | None | 0 0
raw download clone embed print report
  1. package ru.gurzhiy.springsecurityjwt;
  2.  
  3. import org.springframework.context.annotation.Bean;
  4. import org.springframework.security.authentication.AuthenticationManager;
  5. import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
  6. import org.springframework.security.config.annotation.web.builders.HttpSecurity;
  7. import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
  8. import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
  9. import org.springframework.security.config.http.SessionCreationPolicy;
  10. import org.springframework.security.crypto.password.NoOpPasswordEncoder;
  11. import org.springframework.security.crypto.password.PasswordEncoder;
  12. import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
  13. import ru.gurzhiy.springsecurityjwt.filters.JwtRequestFilter;
  14. import ru.gurzhiy.springsecurityjwt.service.MyUserDetailsService;
  15.  
  16.  
  17. @EnableWebSecurity
  18. public class SecurityConfigurer extends WebSecurityConfigurerAdapter {
  19.  
  20.  
  21.     private final MyUserDetailsService myUserDetailsService;
  22.  
  23.      private final JwtRequestFilter jwtRequestFilter;
  24.  
  25.     public SecurityConfigurer(MyUserDetailsService myUserDetailsService, JwtRequestFilter jwtRequestFilter) {
  26.         this.myUserDetailsService = myUserDetailsService;
  27.         this.jwtRequestFilter = jwtRequestFilter;
  28.     }
  29.  
  30.     @Override
  31.     protected void configure(AuthenticationManagerBuilder auth) throws Exception {
  32.         auth.userDetailsService(myUserDetailsService);
  33.     }
  34.  
  35.     @Override
  36.     protected void configure(HttpSecurity http) throws Exception {
  37.  
  38.         http.csrf().disable()
  39.                 .authorizeRequests().antMatchers("/authenticate").permitAll()
  40.                 .anyRequest().authenticated()
  41.                 .and().sessionManagement()
  42.                 .sessionCreationPolicy(SessionCreationPolicy.STATELESS);
  43.  
  44.         http.addFilterBefore(jwtRequestFilter, UsernamePasswordAuthenticationFilter.class);
  45.     }
  46.  
  47.  
  48.     @Bean
  49.     @Override
  50.     protected AuthenticationManager authenticationManager() throws Exception {
  51.         return super.authenticationManager();
  52.     }
  53.  
  54.     //todo я в курсе что это треш, но еду по гайду индуса :)
  55.     @Bean
  56.     public PasswordEncoder passwordEncoder() {
  57.         return NoOpPasswordEncoder.getInstance();
  58.  
  59.  
  60.     }
  61. }
  62.  
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!