Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- package com.techprimers.security.springsecurityauthserver.configurations;
- import com.techprimers.security.springsecurityauthserver.CustomAuthProvider;
- import com.techprimers.security.springsecurityauthserver.TwoFactorAuthenticationFilter;
- import com.techprimers.security.springsecurityauthserver.services.CustomUserDetailsService;
- import org.springframework.beans.factory.annotation.Autowired;
- import org.springframework.context.annotation.Bean;
- import org.springframework.context.annotation.Configuration;
- import org.springframework.core.annotation.Order;
- import org.springframework.security.authentication.AuthenticationManager;
- import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
- import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity;
- import org.springframework.security.config.annotation.web.builders.HttpSecurity;
- import org.springframework.security.config.annotation.web.builders.WebSecurity;
- import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
- import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
- import org.springframework.security.core.userdetails.UserDetailsService;
- import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
- import org.springframework.security.crypto.password.PasswordEncoder;
- import org.springframework.security.oauth2.config.annotation.web.configuration.EnableResourceServer;
- import org.springframework.web.servlet.config.annotation.EnableWebMvc;
- @Configuration
- @EnableWebSecurity
- @EnableGlobalMethodSecurity(prePostEnabled = true)
- @EnableResourceServer
- public class WebSecurityConfig extends WebSecurityConfigurerAdapter {
- @Autowired
- CustomAuthProvider customAuthProvider;
- @Autowired
- UserDetailsService userDetailsService;
- @Bean
- @Override
- public UserDetailsService userDetailsService() {
- return new CustomUserDetailsService();
- }
- @Override
- public void configure(WebSecurity web) throws Exception {
- web.ignoring().antMatchers("/webjars/**");
- web.ignoring().antMatchers("/css/**","/js/**","/libs/**");
- }
- @Override
- protected void configure(HttpSecurity http) throws Exception {
- http.requestMatchers()
- .antMatchers("/login", "/oauth/authorize", "/code")
- .and()
- .authorizeRequests()
- .anyRequest()
- .authenticated()
- .and()
- .formLogin().loginPage("/login")
- .permitAll();
- }
- @Override
- @Autowired
- protected void configure(AuthenticationManagerBuilder authenticationManagerBuilder) throws Exception {
- authenticationManagerBuilder.authenticationProvider(customAuthProvider).userDetailsService(userDetailsService);
- }
- @Override
- @Bean
- public AuthenticationManager authenticationManagerBean() throws Exception {
- return super.authenticationManager();
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement