refactor : disabled @EnableWebSecurity

2022-02-07 10:37:01 +09:00
parent 5af5256bd5
commit 1c6fea1412
1 changed files with 21 additions and 0 deletions
--- a/작성)/playground/src/main/kotlin/com/banjjoknim/playground/config/SecurityConfig.java
+++ b/작성)/playground/src/main/kotlin/com/banjjoknim/playground/config/SecurityConfig.java
@@ -0,0 +1,21 @@
+package com.banjjoknim.playground.config;
+
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+
+// @EnableWebSecurity
+public class SecurityConfig extends WebSecurityConfigurerAdapter {
+
+    @Override
+    protected void configure(HttpSecurity http) throws Exception {
+        http.csrf().disable();
+        http.authorizeHttpRequests()
+            .antMatchers("/user/**").authenticated()
+            .antMatchers("/manager/**").hasAnyRole("MANAGER", "ADMIN")
+            .antMatchers("/admin/**").hasRole("ADMIN")
+            .anyRequest().permitAll()
+            .and()
+            .formLogin()
+            .loginPage("/login");
+    }
+}