add login

2023-06-13 16:06:42 +04:00 · 2023-06-13 16:06:42 +04:00 · c510efa6c7
commit c510efa6c7
parent 8396e20146
2 changed files with 24 additions and 25 deletions
--- a/data.mv.db
+++ b/data.mv.db
--- a/src/main/java/com/example/demo/speaker/SecurityConfiguration.java
+++ b/src/main/java/com/example/demo/speaker/SecurityConfiguration.java
@ -1,24 +1,26 @@
 package com.example.demo.speaker;
 import com.example.demo.speaker.controller.MVCController.UserSignupMvcController;
 import com.example.demo.speaker.model.UserRole;
 import com.example.demo.speaker.service.UserService;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
 import org.springframework.http.HttpMethod;
-import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
+import org.springframework.security.config.annotation.method.configuration.EnableMethodSecurity;
 import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity;
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 import org.springframework.security.config.annotation.web.builders.WebSecurity;
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
-import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+import org.springframework.security.config.annotation.web.configuration.WebSecurityCustomizer;
-import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+import org.springframework.security.web.SecurityFilterChain;
@Configuration
@EnableWebSecurity
-@EnableGlobalMethodSecurity(securedEnabled = true)
+@EnableMethodSecurity(
-public class SecurityConfiguration extends WebSecurityConfigurerAdapter {
+        securedEnabled = true
 )
 public class SecurityConfiguration {
    private final Logger log = LoggerFactory.getLogger(SecurityConfiguration.class);
    private static final String LOGIN_URL = "/login";
    private final UserService userService;
@ -36,34 +38,31 @@ public class SecurityConfiguration extends WebSecurityConfigurerAdapter {
        }
    }
-    @Override
+    @Bean
-    protected void configure(HttpSecurity http) throws Exception {
+    public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
        http.headers().frameOptions().sameOrigin().and()
                .cors().and()
                .csrf().disable()
-                .authorizeRequests()
+                .authorizeHttpRequests()
-                .antMatchers(UserSignupMvcController.SIGNUP_URL).permitAll()
+                .requestMatchers(UserSignupMvcController.SIGNUP_URL).permitAll()
-                .antMatchers(HttpMethod.GET, LOGIN_URL).permitAll()
+                .requestMatchers(HttpMethod.GET, LOGIN_URL).permitAll()
                .anyRequest().authenticated()
                .and()
                .formLogin()
                .loginPage(LOGIN_URL).permitAll()
                .defaultSuccessUrl("/appointment", true)
                .and()
                .logout().permitAll();
        return http.userDetailsService(userService).build();
    }
    @Override
    protected void configure(AuthenticationManagerBuilder auth) throws Exception {
        auth.userDetailsService(userService);
    }
-    @Override
+    @Bean
-    public void configure(WebSecurity web) {
+    public WebSecurityCustomizer webSecurityCustomizer() {
-        web.ignoring()
+        return (web) -> web.ignoring()
-                .antMatchers("/css/**")
+                .requestMatchers("/css/**")
-                .antMatchers("/images/**")
+                .requestMatchers("/js/**")
-                .antMatchers("/js/**")
+                .requestMatchers("/templates/**")
-                .antMatchers("/templates/**")
+                .requestMatchers("/webjars/**");
                .antMatchers("/webjars/**");
    }
 }