Java-Based Spring Security Configuration: Difference between revisions
Jump to navigation
Jump to search
| Line 32: | Line 32: | ||
=Securing Web Requests= | =Securing Web Requests= | ||
[WebSecurityConfigurerAdapter | [https://docs.spring.io/spring-security/site/docs/current/api/org/springframework/security/config/annotation/web/configuration/WebSecurityConfigurerAdapter.html WebSecurityConfigurerAdapter] can be used t specify which web request should be secured and which not. This configuration is specified using the following method: | ||
Revision as of 21:21, 10 November 2018
External
Internal
Overview
This article describes Java-based Spring Security configuration. This method can be used to configure the following security aspects:
- one of the available user stores, such as the in-memory user store, JDBC user store or LDAP-backed user store, or alternatively, a custom user details service.
- what web requests should be secured.
Configuration Class
import org.springframework.context.annotation.Configuration;
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
@Configuration
@EnableWebSecurity
public class SecurityConfiguration extends WebSecurityConfigurerAdapter {
@Override
protected void configure(AuthenticationManagerBuilder auth) throws Exception {
...
}
}
Securing Web Requests
WebSecurityConfigurerAdapter can be used t specify which web request should be secured and which not. This configuration is specified using the following method: