| 123456789101112131415161718192021222324252627282930313233343536 |
- package org.activiti.conf;
- import com.izouma.awesomeadmin.activiti.CustomAuthenticationProvider;
- import com.izouma.awesomeadmin.activiti.RestFilter;
- import org.springframework.beans.factory.annotation.Autowired;
- import org.springframework.context.annotation.Bean;
- import org.springframework.context.annotation.Configuration;
- import org.springframework.security.authentication.AuthenticationProvider;
- import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
- import org.springframework.security.config.annotation.web.builders.HttpSecurity;
- import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
- import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
- import org.springframework.security.config.annotation.web.servlet.configuration.EnableWebMvcSecurity;
- import org.springframework.security.config.http.SessionCreationPolicy;
- import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
- @Configuration
- @EnableWebSecurity
- @EnableWebMvcSecurity
- public class SecurityConfiguration extends WebSecurityConfigurerAdapter {
- @Bean
- public AuthenticationProvider authenticationProvider() {
- return new CustomAuthenticationProvider();
- }
- @Override
- protected void configure(HttpSecurity http) throws Exception {
- http.authenticationProvider(authenticationProvider())
- .sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS).and()
- .csrf().disable()
- .addFilterBefore(new RestFilter(), UsernamePasswordAuthenticationFilter.class)
- .authorizeRequests()
- .anyRequest().permitAll();
- }
- }
|
