SecurityConfiguration.java example

Explorer

omh-dsu-ri-master
- authorization-server
  - src
    - main
      - java
        org
        openmhealth
        dsu
        configuration
        Application.java
        OAuth2AuthorizationServerConfiguration.java
        SecurityConfiguration.java
        controller
        EndUserController.java
        repository
        EndUserRepository.java
        service
        EndUserService.java
        EndUserServiceImpl.java
        EndUserUserDetailsServiceImpl.java
    - test
      - java
        org
        openmhealth
        dsu
        configuration
        IntegrationTestConfiguration.java
        controller
        EndUserControllerIntegrationTests.java
        repository
        EndUserRepositoryIntegrationTests.java
        MongoEndUserRepositoryIntegrationTests.java
- resource-server
  - src
    - main
      - java
        org
        openmhealth
        dsu
        configuration
        Application.java
        MethodSecurityConfiguration.java
        OAuth2ResourceServerConfiguration.java
        SecurityConfiguration.java
        controller
        ApiController.java
        DataPointController.java
        GenericExceptionHandlingControllerAdvice.java
        domain
        DataPointSearchCriteria.java
        SimpleClientDetails.java
        repository
        ClientDetailsRepository.java
        CustomDataPointRepository.java
        DataPointRepository.java
        MongoDataPointRepository.java
        MongoDataPointRepositoryImpl.java
        service
        DataPointService.java
        DataPointServiceImpl.java
        SpringDataClientDetailsServiceImpl.java
    - test
      - java
        org
        openmhealth
        dsu
        configuration
        IntegrationTestConfiguration.java
        controller
        DataPointControllerIntegrationTests.java
        domain
        DataPointBuilder.java
        DataPointSearchCriteriaBuilder.java
        factory
        DataPointFactory.java
        repository
        ClientDetailsRepositoryIntegrationTests.java
        DataPointRepositoryIntegrationTests.java
        MongoClientDetailsRepositoryIntegrationTests.java
        MongoDataPointRepositoryIntegrationTests.java
- shared
  - src
    - main
      - java
        org
        openmhealth
        dsu
        configuration
        JacksonConfiguration.java
        JdbcOAuth2SupportConfiguration.java
        MongoPersistenceConfiguration.java
        OAuth2Properties.java
        TestConfiguration.java
        ValidationConfiguration.java
        converter
        OffsetDateTimeToStringConverter.java
        StringToOffsetDateTimeConverter.java
        domain
        EndUser.java
        EndUserRegistrationData.java
        EndUserRegistrationException.java
        EndUserUserDetails.java
        springframework
        data
        mapping
        model
        JsonPropertyPreservingFieldNamingStrategy.java

/*
 * Copyright 2014 Open mHealth
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package org.openmhealth.dsu.configuration;

import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.authentication.AuthenticationManager;
import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
import org.springframework.security.core.userdetails.UserDetailsService;
import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;


/**
 * A Spring Security configuration that provides an authentication manager for user accounts and disables
 * Spring Boot's security configuration.
 *
 * @author Emerson Farrugia
 */
@Configuration
@EnableWebSecurity
public class SecurityConfiguration extends WebSecurityConfigurerAdapter {

    @Autowired
    private UserDetailsService userDetailsService;

    @Override
    public void configure(AuthenticationManagerBuilder auth) throws Exception {

        auth.userDetailsService(userDetailsService)
                .passwordEncoder(new BCryptPasswordEncoder());
    }

    @Bean(name = "authenticationManager")
    @Override
    public AuthenticationManager authenticationManagerBean() throws Exception {

        return super.authenticationManagerBean();
    }

    @Override
    protected void configure(HttpSecurity http) throws Exception {
        http.csrf().disable();
    }
}