From 77c5ffbe872392e808d4f738cb98e57f508df7c4 Mon Sep 17 00:00:00 2001 From: tschiman Date: Sat, 5 Nov 2016 10:35:46 -0600 Subject: [PATCH] BAEL-89 remove csrf disable --- .../com/baeldung/spring/session/tomcatex/SecurityConfig.java | 3 +-- .../com/baeldung/spring/session/tomcatex/SecurityConfig.java | 1 - 2 files changed, 1 insertion(+), 3 deletions(-) diff --git a/spring-session/jetty-ex/src/main/java/com/baeldung/spring/session/tomcatex/SecurityConfig.java b/spring-session/jetty-ex/src/main/java/com/baeldung/spring/session/tomcatex/SecurityConfig.java index 3cd2e5e3ca..ef779718cd 100644 --- a/spring-session/jetty-ex/src/main/java/com/baeldung/spring/session/tomcatex/SecurityConfig.java +++ b/spring-session/jetty-ex/src/main/java/com/baeldung/spring/session/tomcatex/SecurityConfig.java @@ -16,7 +16,6 @@ public class SecurityConfig extends WebSecurityConfigurerAdapter { .sessionManagement() .sessionCreationPolicy(SessionCreationPolicy.NEVER) .and() - .authorizeRequests().anyRequest().hasRole("ADMIN").and() - .httpBasic().disable(); + .authorizeRequests().anyRequest().hasRole("ADMIN").and(); } } diff --git a/spring-session/tomcat-ex/src/main/java/com/baeldung/spring/session/tomcatex/SecurityConfig.java b/spring-session/tomcat-ex/src/main/java/com/baeldung/spring/session/tomcatex/SecurityConfig.java index 2af111fe08..91cd749c4c 100644 --- a/spring-session/tomcat-ex/src/main/java/com/baeldung/spring/session/tomcatex/SecurityConfig.java +++ b/spring-session/tomcat-ex/src/main/java/com/baeldung/spring/session/tomcatex/SecurityConfig.java @@ -22,7 +22,6 @@ public class SecurityConfig extends WebSecurityConfigurerAdapter { protected void configure(HttpSecurity http) throws Exception { http .httpBasic().and() -// .csrf().disable() .authorizeRequests() .antMatchers("/").permitAll() .antMatchers("/tomcat").hasRole("USER")