Another fixation.
This commit is contained in:
parent
1205d4125f
commit
1ba8b942ea
@ -2,26 +2,23 @@ package premium_store.configuration;
|
|||||||
|
|
||||||
import org.slf4j.Logger;
|
import org.slf4j.Logger;
|
||||||
import org.slf4j.LoggerFactory;
|
import org.slf4j.LoggerFactory;
|
||||||
import org.springframework.context.annotation.Bean;
|
import org.springframework.beans.factory.annotation.Autowired;
|
||||||
import org.springframework.context.annotation.Configuration;
|
import org.springframework.context.annotation.Configuration;
|
||||||
import org.springframework.http.HttpMethod;
|
import org.springframework.http.HttpMethod;
|
||||||
import org.springframework.security.authentication.AuthenticationManager;
|
|
||||||
import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
|
import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
|
||||||
import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity;
|
import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity;
|
||||||
import org.springframework.security.config.annotation.method.configuration.EnableMethodSecurity;
|
|
||||||
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
|
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
|
||||||
import org.springframework.security.config.annotation.web.builders.WebSecurity;
|
import org.springframework.security.config.annotation.web.builders.WebSecurity;
|
||||||
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
|
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
|
||||||
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
|
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
|
||||||
import org.springframework.security.config.annotation.web.configuration.WebSecurityCustomizer;
|
import org.springframework.security.core.userdetails.UserDetailsService;
|
||||||
import org.springframework.security.web.SecurityFilterChain;
|
|
||||||
import premium_store.controller.controller.UserSignupMvcController;
|
import premium_store.controller.controller.UserSignupMvcController;
|
||||||
import premium_store.model.UserRole;
|
import premium_store.model.UserRole;
|
||||||
import premium_store.service.GameClientService;
|
import premium_store.service.GameClientService;
|
||||||
|
|
||||||
@Configuration
|
@Configuration
|
||||||
@EnableWebSecurity
|
@EnableWebSecurity
|
||||||
@EnableMethodSecurity(
|
@EnableGlobalMethodSecurity(
|
||||||
securedEnabled = true
|
securedEnabled = true
|
||||||
)
|
)
|
||||||
public class SecurityConfiguration extends WebSecurityConfigurerAdapter {
|
public class SecurityConfiguration extends WebSecurityConfigurerAdapter {
|
||||||
@ -29,6 +26,9 @@ public class SecurityConfiguration extends WebSecurityConfigurerAdapter {
|
|||||||
private static final String LOGIN_URL = "/login";
|
private static final String LOGIN_URL = "/login";
|
||||||
private final GameClientService clientService;
|
private final GameClientService clientService;
|
||||||
|
|
||||||
|
@Autowired
|
||||||
|
private UserDetailsService userDetailsService;
|
||||||
|
|
||||||
public SecurityConfiguration(GameClientService clientService) {
|
public SecurityConfiguration(GameClientService clientService) {
|
||||||
this.clientService = clientService;
|
this.clientService = clientService;
|
||||||
createAdminOnStartup();
|
createAdminOnStartup();
|
||||||
@ -38,7 +38,7 @@ public class SecurityConfiguration extends WebSecurityConfigurerAdapter {
|
|||||||
final String admin = "admin";
|
final String admin = "admin";
|
||||||
if (clientService.findByLogin(admin) == null) {
|
if (clientService.findByLogin(admin) == null) {
|
||||||
log.info("Admin user successfully created");
|
log.info("Admin user successfully created");
|
||||||
clientService.addClient(admin, "adminemail@gmail.com", admin, 0, admin, UserRole.ADMIN);
|
clientService.addClient(admin, "adminemail@gmail.com", admin, 100, admin, UserRole.ADMIN);
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -47,7 +47,7 @@ public class SecurityConfiguration extends WebSecurityConfigurerAdapter {
|
|||||||
http.headers().frameOptions().sameOrigin().and()
|
http.headers().frameOptions().sameOrigin().and()
|
||||||
.cors().and()
|
.cors().and()
|
||||||
.csrf().disable()
|
.csrf().disable()
|
||||||
.authorizeHttpRequests()
|
.authorizeRequests()
|
||||||
.antMatchers(UserSignupMvcController.SIGNUP_URL).permitAll()
|
.antMatchers(UserSignupMvcController.SIGNUP_URL).permitAll()
|
||||||
.antMatchers(HttpMethod.GET, LOGIN_URL).permitAll()
|
.antMatchers(HttpMethod.GET, LOGIN_URL).permitAll()
|
||||||
.anyRequest().authenticated()
|
.anyRequest().authenticated()
|
||||||
|
|||||||
@ -1,13 +1,7 @@
|
|||||||
package premium_store.configuration;
|
package premium_store.configuration;
|
||||||
|
|
||||||
import org.springframework.boot.web.server.ErrorPage;
|
|
||||||
import org.springframework.boot.web.server.WebServerFactoryCustomizer;
|
|
||||||
import org.springframework.boot.web.servlet.server.ConfigurableServletWebServerFactory;
|
|
||||||
import org.springframework.context.annotation.Bean;
|
|
||||||
import org.springframework.context.annotation.Configuration;
|
import org.springframework.context.annotation.Configuration;
|
||||||
import org.springframework.http.HttpStatus;
|
|
||||||
import org.springframework.web.servlet.config.annotation.CorsRegistry;
|
import org.springframework.web.servlet.config.annotation.CorsRegistry;
|
||||||
import org.springframework.web.servlet.config.annotation.ViewControllerRegistration;
|
|
||||||
import org.springframework.web.servlet.config.annotation.ViewControllerRegistry;
|
import org.springframework.web.servlet.config.annotation.ViewControllerRegistry;
|
||||||
import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
|
import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
|
||||||
|
|
||||||
@ -18,7 +12,6 @@ public class WebConfiguration implements WebMvcConfigurer {
|
|||||||
@Override
|
@Override
|
||||||
public void addViewControllers(ViewControllerRegistry registry) {
|
public void addViewControllers(ViewControllerRegistry registry) {
|
||||||
WebMvcConfigurer.super.addViewControllers(registry);
|
WebMvcConfigurer.super.addViewControllers(registry);
|
||||||
registry.addViewController("rest-test");
|
|
||||||
registry.addViewController("login");
|
registry.addViewController("login");
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|||||||
@ -106,6 +106,7 @@ public class ClientMvcController {
|
|||||||
}
|
}
|
||||||
|
|
||||||
@GetMapping(value = {"/tanksOfClient", "/tanksOfClient/{id}"})
|
@GetMapping(value = {"/tanksOfClient", "/tanksOfClient/{id}"})
|
||||||
|
@Secured({UserRole.AsString.ADMIN})
|
||||||
public String editTanksOfClient(@PathVariable(required = false) Long id, Model model){
|
public String editTanksOfClient(@PathVariable(required = false) Long id, Model model){
|
||||||
if(id == null || id <= 0){
|
if(id == null || id <= 0){
|
||||||
model.addAttribute("clientDTO", new ClientDTO());
|
model.addAttribute("clientDTO", new ClientDTO());
|
||||||
|
|||||||
@ -34,7 +34,7 @@ public class UserSignupMvcController {
|
|||||||
}
|
}
|
||||||
|
|
||||||
@PostMapping
|
@PostMapping
|
||||||
public String signup(@ModelAttribute("userDto") @Valid UserSignupDto userSignupDto,
|
public String signup(@ModelAttribute("clientDto") @Valid UserSignupDto userSignupDto,
|
||||||
BindingResult bindingResult, Model model) {
|
BindingResult bindingResult, Model model) {
|
||||||
if (bindingResult.hasErrors()) {
|
if (bindingResult.hasErrors()) {
|
||||||
model.addAttribute("errors", bindingResult.getAllErrors());
|
model.addAttribute("errors", bindingResult.getAllErrors());
|
||||||
|
|||||||
@ -1,5 +1,7 @@
|
|||||||
|
#Server
|
||||||
spring.main.banner-mode=off
|
spring.main.banner-mode=off
|
||||||
server.port=8080
|
server.port=8080
|
||||||
|
#JPA
|
||||||
server.tomcat.relaxed-query-chars=|,{,},[,]
|
server.tomcat.relaxed-query-chars=|,{,},[,]
|
||||||
spring.datasource.url=jdbc:h2:file:./data
|
spring.datasource.url=jdbc:h2:file:./data
|
||||||
spring.datasource.driverClassName=org.h2.Driver
|
spring.datasource.driverClassName=org.h2.Driver
|
||||||
@ -10,5 +12,3 @@ spring.jpa.hibernate.ddl-auto=update
|
|||||||
spring.h2.console.enabled=true
|
spring.h2.console.enabled=true
|
||||||
spring.h2.console.settings.trace=false
|
spring.h2.console.settings.trace=false
|
||||||
spring.h2.console.settings.web-allow-others=false
|
spring.h2.console.settings.web-allow-others=false
|
||||||
# Security
|
|
||||||
spring.security.user.password=user
|
|
||||||
|
|||||||
@ -17,7 +17,7 @@ import premium_store.service.exception.ClientNotFoundException;
|
|||||||
import java.util.*;
|
import java.util.*;
|
||||||
|
|
||||||
@SpringBootTest
|
@SpringBootTest
|
||||||
class PremiumStoreApplicationTests {
|
public class PremiumStoreApplicationTests {
|
||||||
private static final Logger log = LoggerFactory.getLogger(PremiumStoreApplicationTests.class);
|
private static final Logger log = LoggerFactory.getLogger(PremiumStoreApplicationTests.class);
|
||||||
|
|
||||||
@Autowired
|
@Autowired
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user