Migrate Application from Spring Security 5 to Spring Security 6

2024-02-24 23:26:33 +00:00 · 2024-02-24 23:26:33 +00:00 · c392fb7021
parent 4288f99d10
commit c392fb7021
2 changed files with 70 additions and 0 deletions
--- a/spring-security-modules/spring-security-core-2/src/main/java/com/baeldung/springsecuritymigration/WebController.java
+++ b/spring-security-modules/spring-security-core-2/src/main/java/com/baeldung/springsecuritymigration/WebController.java
@ -0,0 +1,23 @@
+package com.baeldung.springsecuritymigration;
+
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RestController;
+
+@RestController
+public class WebController {
+
+    @RequestMapping("/")
+    public String home() {
+        return "Home Page";
+    }
+
+    @RequestMapping("/welcome")
+    public String welcome() {
+        return "Welcome User";
+    }
+
+    @RequestMapping("/user-dashboard")
+    public String dashboard() {
+        return "My Dashboard";
+    }
+}
--- a/spring-security-modules/spring-security-core-2/src/main/java/com/baeldung/springsecuritymigration/WebSecurityConfig.java
+++ b/spring-security-modules/spring-security-core-2/src/main/java/com/baeldung/springsecuritymigration/WebSecurityConfig.java
@ -0,0 +1,47 @@
+package com.baeldung.springsecuritymigration;
+
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.config.Customizer;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
+import org.springframework.security.config.annotation.web.configuration.WebSecurityCustomizer;
+import org.springframework.security.config.annotation.web.configurers.AbstractHttpConfigurer;
+import org.springframework.security.core.userdetails.User;
+import org.springframework.security.core.userdetails.UserDetails;
+import org.springframework.security.core.userdetails.UserDetailsService;
+import org.springframework.security.provisioning.InMemoryUserDetailsManager;
+import org.springframework.security.web.SecurityFilterChain;
+
+@Configuration
+@EnableWebSecurity
+public class WebSecurityConfig {
+
+    @Bean
+    public WebSecurityCustomizer webSecurityCustomizer() {
+        return (web) -> web.ignoring().requestMatchers("/js/**", "/css/**");
+    }
+
+    @Bean
+    SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
+        http.cors(AbstractHttpConfigurer::disable)
+            .authorizeHttpRequests(request -> request.requestMatchers("/")
+                .permitAll()
+                .anyRequest()
+                .authenticated())
+            .formLogin(form -> form.defaultSuccessUrl("/welcome"))
+            .httpBasic(Customizer.withDefaults());
+        return http.build();
+    }
+
+    @Bean
+    public UserDetailsService userDetailsService() {
+        UserDetails user = User.withDefaultPasswordEncoder()
+            .username("User")
+            .password("password")
+            .roles("USER")
+            .build();
+
+        return new InMemoryUserDetailsManager(user);
+    }
+}