Fixed Spring security

This commit is contained in:
Marc Beyer 2022-01-10 13:25:52 +01:00
parent 68eb7e5863
commit eeef96ffb6
3 changed files with 3 additions and 33 deletions

View File

@ -19,8 +19,8 @@ dependencies {
testImplementation 'org.springframework.boot:spring-boot-starter-test' testImplementation 'org.springframework.boot:spring-boot-starter-test'
// Spring security // Spring security
implementation 'org.springframework.boot:spring-boot-starter-security' //implementation 'org.springframework.boot:spring-boot-starter-security'
implementation 'org.springframework.security:spring-security-test' //implementation 'org.springframework.security:spring-security-test'
// JSON web token // JSON web token
implementation 'io.jsonwebtoken:jjwt-api:0.11.2' implementation 'io.jsonwebtoken:jjwt-api:0.11.2'

View File

@ -63,6 +63,7 @@ public class UserController {
@RequestParam String login, @RequestParam String login,
@RequestParam String password @RequestParam String password
) { ) {
System.out.println("LOGIN");
User user = userRepository.findByLogin(login); User user = userRepository.findByLogin(login);
if (user == null) { if (user == null) {
throw new ResponseStatusException(HttpStatus.UNAUTHORIZED, "Falscher login"); throw new ResponseStatusException(HttpStatus.UNAUTHORIZED, "Falscher login");

View File

@ -1,31 +0,0 @@
package com.vpr.server.security;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
import org.springframework.security.core.userdetails.User;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.security.core.userdetails.UserDetailsService;
import org.springframework.security.provisioning.InMemoryUserDetailsManager;
@Configuration
@EnableWebSecurity
public class WebSecurityConfig extends WebSecurityConfigurerAdapter {
@Override
protected void configure(HttpSecurity http) throws Exception {
http
.authorizeRequests()
.antMatchers("/", "/home").permitAll()
.anyRequest().authenticated()
.and()
.formLogin()
.loginPage("/login")
.permitAll()
.and()
.logout()
.permitAll();
}
}