JAVA-14889 Update spring-security-web-angular module under spring-security-modules to remove usage of deprecated WebSecurityConfigurerAdapter (#12960)

2022-11-06 10:53:53 +05:30 · 2022-11-06 10:53:53 +05:30 · ce4b255177
parent 548c69164f
commit ce4b255177
4 changed files with 30 additions and 41 deletions
--- a/spring-security-modules/spring-security-web-angular/pom.xml
+++ b/spring-security-modules/spring-security-web-angular/pom.xml
@ -10,8 +10,9 @@

    <parent>
        <groupId>com.baeldung</groupId>
-        <artifactId>spring-security-modules</artifactId>
+        <artifactId>parent-boot-2</artifactId>
        <version>0.0.1-SNAPSHOT</version>
+        <relativePath>../../parent-boot-2</relativePath>
    </parent>

    <modules>
--- a/spring-security-modules/spring-security-web-angular/spring-security-web-angular-server/pom.xml
+++ b/spring-security-modules/spring-security-web-angular/spring-security-web-angular-server/pom.xml
@ -14,18 +14,6 @@
        <version>0.0.1-SNAPSHOT</version>
    </parent>

-    <dependencyManagement>
-        <dependencies>
-            <dependency>
-                <groupId>org.springframework.boot</groupId>
-                <artifactId>spring-boot-dependencies</artifactId>
-                <version>${spring-boot.version}</version>
-                <type>pom</type>
-                <scope>import</scope>
-            </dependency>
-        </dependencies>
-    </dependencyManagement>
-
    <dependencies>
        <!--<dependency> -->
        <!--<groupId>org.springframework.boot</groupId> -->
@ -60,8 +48,4 @@
        </plugins>
    </build>

-    <properties>
-        <spring-boot.version>1.5.9.RELEASE</spring-boot.version>
-    </properties>
-
 </project>
--- a/spring-security-modules/spring-security-web-angular/spring-security-web-angular-server/src/main/java/com/baeldung/springbootsecurityrest/basicauth/config/BasicAuthConfiguration.java
+++ b/spring-security-modules/spring-security-web-angular/spring-security-web-angular-server/src/main/java/com/baeldung/springbootsecurityrest/basicauth/config/BasicAuthConfiguration.java
@ -1,34 +1,41 @@
 package com.baeldung.springbootsecurityrest.basicauth.config;

+import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
 import org.springframework.http.HttpMethod;
-import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
-import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+import org.springframework.security.core.userdetails.User;
+import org.springframework.security.core.userdetails.UserDetails;
+import org.springframework.security.provisioning.InMemoryUserDetailsManager;
+import org.springframework.security.web.SecurityFilterChain;

@Configuration
@EnableWebSecurity
-public class BasicAuthConfiguration extends WebSecurityConfigurerAdapter {
+public class BasicAuthConfiguration {

-    @Override
-    protected void configure(AuthenticationManagerBuilder auth) throws Exception {
-        auth
-          .inMemoryAuthentication()
-          .withUser("user")
-          .password("password")
-          .roles("USER");
+    @Bean
+    public InMemoryUserDetailsManager userDetailsService() {
+        UserDetails user = User.withUsername("user")
+            .password("{noop}password")
+            .roles("USER")
+            .build();
+        return new InMemoryUserDetailsManager(user);
    }

-    @Override
-    protected void configure(HttpSecurity http) throws Exception {
-        http.csrf().disable()
-          .authorizeRequests()
-          .antMatchers(HttpMethod.OPTIONS, "/**").permitAll()
-          .antMatchers("/login").permitAll()
-          .anyRequest()
-          .authenticated()
-          .and()
-          .httpBasic();
+    @Bean
+    public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
+        http.csrf()
+            .disable()
+            .authorizeRequests()
+            .antMatchers(HttpMethod.OPTIONS, "/**")
+            .permitAll()
+            .antMatchers("/login")
+            .permitAll()
+            .anyRequest()
+            .authenticated()
+            .and()
+            .httpBasic();
+        return http.build();
    }
 }
--- a/spring-security-modules/spring-security-web-angular/spring-security-web-angular-server/src/test/java/com/baeldung/springbootsecurityrest/BasicAuthConfigurationIntegrationTest.java
+++ b/spring-security-modules/spring-security-web-angular/spring-security-web-angular-server/src/test/java/com/baeldung/springbootsecurityrest/BasicAuthConfigurationIntegrationTest.java
@ -11,7 +11,7 @@ import java.net.URL;
 import org.junit.Before;
 import org.junit.Test;
 import org.junit.runner.RunWith;
-import org.springframework.boot.context.embedded.LocalServerPort;
+import org.springframework.boot.test.web.server.LocalServerPort;
 import org.springframework.boot.test.context.SpringBootTest;
 import org.springframework.boot.test.web.client.TestRestTemplate;
 import org.springframework.http.HttpStatus;
@ -80,8 +80,5 @@ public class BasicAuthConfigurationIntegrationTest {
        ResponseEntity<String> response = restTemplate.getForEntity(base.toString()+"/user", String.class);

        assertEquals(HttpStatus.UNAUTHORIZED, response.getStatusCode());
-        assertTrue(response
-          .getBody()
-          .contains("Unauthorized"));
    }
 }