spring client security

2016-03-19 20:42:08 +02:00
parent 643c4faa3d
commit 212596c8d3
54 changed files with 1753 additions and 0 deletions
--- a/spring-security-client/spring-security-mvc/src/main/java/org/baeldung/config/Application.java
+++ b/spring-security-client/spring-security-mvc/src/main/java/org/baeldung/config/Application.java
@@ -0,0 +1,20 @@
+package org.baeldung.config;
+
+import org.springframework.boot.SpringApplication;
+import org.springframework.boot.autoconfigure.SpringBootApplication;
+import org.springframework.boot.builder.SpringApplicationBuilder;
+import org.springframework.boot.context.web.SpringBootServletInitializer;
+
+@SpringBootApplication
+public class Application extends SpringBootServletInitializer {
+
+    @Override
+    protected SpringApplicationBuilder configure(SpringApplicationBuilder application) {
+        return application.sources(Application.class);
+    }
+
+    public static void main(String[] args) {
+        SpringApplication.run(Application.class, args);
+    }
+
+}
--- a/spring-security-client/spring-security-mvc/src/main/java/org/baeldung/config/SecurityConfig.java
+++ b/spring-security-client/spring-security-mvc/src/main/java/org/baeldung/config/SecurityConfig.java
@@ -0,0 +1,40 @@
+package org.baeldung.config;
+
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.builders.WebSecurity;
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
+import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+
+@Configuration
+@EnableWebSecurity
+public class SecurityConfig extends WebSecurityConfigurerAdapter {
+
+    @Override
+    protected void configure(final AuthenticationManagerBuilder auth) throws Exception {
+        // @formatter:off
+        auth.inMemoryAuthentication()
+            .withUser("john").password("123").roles("USER")
+            .and()
+            .withUser("tom").password("111").roles("ADMIN");
+        // @formatter:on
+    }
+
+    @Override
+    public void configure(WebSecurity web) throws Exception {
+        web.ignoring().antMatchers("/resources/**");
+    }
+
+    @Override
+    protected void configure(final HttpSecurity http) throws Exception {
+        // @formatter:off
+        http.authorizeRequests()
+            .antMatchers("/login").permitAll()
+            .antMatchers("/admin").hasRole("ADMIN")
+            .anyRequest().authenticated()
+            .and().formLogin().permitAll()
+            ;
+        // @formatter:on
+    }
+}
--- a/spring-security-client/spring-security-mvc/src/main/resources/application.properties
+++ b/spring-security-client/spring-security-mvc/src/main/resources/application.properties
@@ -0,0 +1 @@
+server.port: 8081