JAVA-15236 Update spring-security-legacy-oidc module under spring-security-modules to remove usage of deprecated WebSecurityConfigurerAdapter (#12835)

2022-10-10 23:22:15 +05:30 · 2022-10-10 23:22:15 +05:30 · f4d7618759
parent 991e0673b2
commit f4d7618759
1 changed files with 19 additions and 20 deletions
--- a/spring-security-modules/spring-security-legacy-oidc/src/main/java/com/baeldung/openid/oidc/SecurityConfig.java
+++ b/spring-security-modules/spring-security-legacy-oidc/src/main/java/com/baeldung/openid/oidc/SecurityConfig.java
@ -4,23 +4,24 @@ import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
-import org.springframework.security.config.annotation.web.builders.WebSecurity;
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
-import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+import org.springframework.security.config.annotation.web.configuration.WebSecurityCustomizer;
 import org.springframework.security.oauth2.client.OAuth2RestTemplate;
 import org.springframework.security.oauth2.client.filter.OAuth2ClientContextFilter;
+import org.springframework.security.web.SecurityFilterChain;
 import org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint;
 import org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter;

@Configuration
@EnableWebSecurity
-public class SecurityConfig extends WebSecurityConfigurerAdapter {
+public class SecurityConfig {
    @Autowired
    private OAuth2RestTemplate restTemplate;

-    @Override
-    public void configure(WebSecurity web) throws Exception {
-        web.ignoring().antMatchers("/resources/**");
+    @Bean
+    public WebSecurityCustomizer webSecurityCustomizer() {
+        return (web) -> web.ignoring()
+            .antMatchers("/resources/**");
    }

    @Bean
@ -30,19 +31,17 @@ public class SecurityConfig extends WebSecurityConfigurerAdapter {
        return filter;
    }

-    @Override
-    protected void configure(HttpSecurity http) throws Exception {
-        // @formatter:off
-        http
-        .addFilterAfter(new OAuth2ClientContextFilter(), AbstractPreAuthenticatedProcessingFilter.class)
-        .addFilterAfter(myFilter(), OAuth2ClientContextFilter.class)
-        .httpBasic().authenticationEntryPoint(new LoginUrlAuthenticationEntryPoint("/google-login"))
-        .and()
-        .authorizeRequests()
-       // .antMatchers("/","/index*").permitAll()
-        .anyRequest().authenticated()
-        ;
-
-     // @formatter:on
+    @Bean
+    public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
+        http.addFilterAfter(new OAuth2ClientContextFilter(), AbstractPreAuthenticatedProcessingFilter.class)
+            .addFilterAfter(myFilter(), OAuth2ClientContextFilter.class)
+            .httpBasic()
+            .authenticationEntryPoint(new LoginUrlAuthenticationEntryPoint("/google-login"))
+            .and()
+            .authorizeRequests()
+            // .antMatchers("/","/index*").permitAll()
+            .anyRequest()
+            .authenticated();
+        return http.build();
    }
 }