iSharkFly-Docs/java-tutorials
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

JAVA-14872 Update jee-7-security module under security-modules to remove usage of deprecated WebSecurityConfigurerAdapter (#13008)

Browse Source
This commit is contained in:
anuragkumawat 2022-11-18 00:07:19 +05:30 committed by GitHub
parent de51a5155a
commit 447b0d2f03
2 changed files with 39 additions and 35 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
security-modules/jee-7-security/pom.xml
View File

@ -55,7 +55,7 @@
<properties> <properties>
<javaee_api.version>7.0</javaee_api.version> <javaee_api.version>7.0</javaee_api.version>
<org.springframework.security.version>4.2.3.RELEASE</org.springframework.security.version> <org.springframework.security.version>5.7.5</org.springframework.security.version>
<javax.mvc-api.version>1.0-pr</javax.mvc-api.version> <javax.mvc-api.version>1.0-pr</javax.mvc-api.version>
</properties> </properties>

38
security-modules/jee-7-security/src/main/java/com/baeldung/springsecurity/SpringSecurityConfig.java
View File

@ -1,31 +1,34 @@
package com.baeldung.springsecurity; package com.baeldung.springsecurity;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration; import org.springframework.context.annotation.Configuration;
import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
import org.springframework.security.config.annotation.web.builders.HttpSecurity; import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity; import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter; import org.springframework.security.core.userdetails.User;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.security.provisioning.InMemoryUserDetailsManager;
import org.springframework.security.web.SecurityFilterChain;
@Configuration @Configuration
@EnableWebSecurity @EnableWebSecurity
public class SpringSecurityConfig extends WebSecurityConfigurerAdapter { public class SpringSecurityConfig {
@Override
protected void configure(AuthenticationManagerBuilder auth) throws Exception { @Bean
auth public InMemoryUserDetailsManager userDetailsService() {
.inMemoryAuthentication() UserDetails user = User.withUsername("user1")
.withUser("user1") .password("{noop}user1Pass")
.password("user1Pass")
.roles("USER") .roles("USER")
.and() .build();
.withUser("admin") UserDetails admin = User.withUsername("admin")
.password("adminPass") .password("{noop}adminPass")
.roles("ADMIN"); .roles("ADMIN")
.build();
return new InMemoryUserDetailsManager(user, admin);
} }
@Override @Bean
protected void configure(HttpSecurity http) throws Exception { public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
http http.csrf()
.csrf()
.disable() .disable()
.authorizeRequests() .authorizeRequests()
.antMatchers("/auth/login*") .antMatchers("/auth/login*")
@ -42,5 +45,6 @@ public class SpringSecurityConfig extends WebSecurityConfigurerAdapter {
.and() .and()
.logout() .logout()
.logoutSuccessUrl("/auth/login"); .logoutSuccessUrl("/auth/login");
return http.build();
} }
} }