Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- - name: ACTUATOR_USERNAME
- valueFrom:
- secretKeyRef:
- name: actuator
- key: username
- - name: ACTUATOR_PASSWORD
- valueFrom:
- secretKeyRef:
- name: actuator
- key: password
- security.user.name=${ACTUATOR_USERNAME}
- security.user.password=${ACTUATOR_PASSWORD}
- package com.greenqloud.usage.healthcheck;
- import org.springframework.boot.actuate.autoconfigure.security.servlet.EndpointRequest;
- import org.springframework.context.annotation.Configuration;
- import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
- import org.springframework.security.config.annotation.web.builders.HttpSecurity;
- import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
- import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
- @Configuration
- @EnableWebSecurity
- public class ActuatorSecurity extends WebSecurityConfigurerAdapter {
- @Override
- protected void configure(HttpSecurity http) throws Exception {
- http.requestMatcher(EndpointRequest.toAnyEndpoint()).authorizeRequests()
- .anyRequest().hasRole("USER")
- .and()
- .httpBasic();
- }
- @Override
- public void configure(AuthenticationManagerBuilder auth) throws Exception {
- System.out.println("actuator username: " + System.getenv("ACTUATOR_USERNAME"));
- System.out.println("actuator password: " + System.getenv("ACTUATOR_PASSWORD"));
- auth.inMemoryAuthentication()
- .withUser("actuator").password("{noop}actuator123").roles("USER");
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
