mirror of https://github.com/bvn13/VoidForum.git
68 lines
2.4 KiB
Java
68 lines
2.4 KiB
Java
package ru.bvn13.voidforum;
|
|
|
|
import org.springframework.context.annotation.Bean;
|
|
import org.springframework.context.annotation.Configuration;
|
|
import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
|
|
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
|
|
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
|
|
import org.springframework.security.crypto.password.PasswordEncoder;
|
|
import org.springframework.security.crypto.password.StandardPasswordEncoder;
|
|
import org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices;
|
|
import ru.bvn13.voidforum.services.PrivilegeService;
|
|
import ru.bvn13.voidforum.services.UserService;
|
|
|
|
/**
|
|
* @author bvn13 <mail4bvn@gmail.com>
|
|
*/
|
|
|
|
@Configuration
|
|
public class SecurityConfig extends WebSecurityConfigurerAdapter {
|
|
|
|
@Bean
|
|
public UserService userService() {
|
|
return new UserService();
|
|
}
|
|
|
|
@Bean
|
|
public TokenBasedRememberMeServices rememberMeServices() {
|
|
return new TokenBasedRememberMeServices("remember-me-key", userService());
|
|
}
|
|
|
|
@Bean
|
|
public PasswordEncoder passwordEncoder() {
|
|
return new StandardPasswordEncoder();
|
|
}
|
|
|
|
@Override
|
|
protected void configure(AuthenticationManagerBuilder auth) throws Exception {
|
|
auth
|
|
.eraseCredentials(true)
|
|
.userDetailsService(userService())
|
|
.passwordEncoder(passwordEncoder());
|
|
}
|
|
|
|
@Override
|
|
protected void configure(HttpSecurity http) throws Exception {
|
|
http
|
|
.authorizeRequests()
|
|
.antMatchers("/admin/**").hasAnyAuthority(PrivilegeService.PRIVILEGE_ADMIN, PrivilegeService.PRIVILEGE_OWNER)
|
|
.antMatchers("/account/**").hasAnyAuthority(PrivilegeService.PRIVILEGE_WRITE, PrivilegeService.PRIVILEGE_ADMIN, PrivilegeService.PRIVILEGE_OWNER)
|
|
.anyRequest().permitAll()
|
|
.and()
|
|
.formLogin()
|
|
.loginPage("/signin")
|
|
.permitAll()
|
|
.failureUrl("/signin?error=1")
|
|
.loginProcessingUrl("/authenticate")
|
|
.and()
|
|
.logout()
|
|
.logoutUrl("/logout")
|
|
.permitAll()
|
|
.logoutSuccessUrl("/signin?logout")
|
|
.and()
|
|
.rememberMe()
|
|
.rememberMeServices(rememberMeServices())
|
|
.key("remember-me-key");
|
|
}
|
|
}
|