christoph/lecture-professional-software-development
1
Fork 0
Code Activity

add initial simplified schema + h2-console spring-security + h2 password

Browse Source
This commit is contained in:
Christoph
2020-03-05 13:24:58 +01:00
parent ca28f041f5
commit 2d729686bb
4 changed files with 38 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
src/main/java/mops/gruppen2/security/SecurityConfig.java
View File

@ -1,17 +1,12 @@
package mops.gruppen2.security;
import javax.servlet.http.HttpServletRequest;
import org.keycloak.KeycloakPrincipal;
import org.keycloak.adapters.springsecurity.KeycloakSecurityComponents;
import org.keycloak.adapters.springsecurity.authentication.KeycloakAuthenticationProvider;
import org.keycloak.adapters.springsecurity.config.KeycloakWebSecurityConfigurerAdapter;
import org.keycloak.representations.AccessToken;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.ComponentScan;
import org.springframework.context.annotation.Configuration;
import org.springframework.context.annotation.Scope;
import org.springframework.context.annotation.ScopedProxyMode;
import org.springframework.context.annotation.*;
import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity;
import org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration;
@ -25,6 +20,8 @@ import org.springframework.web.context.WebApplicationContext;
import org.springframework.web.context.request.RequestContextHolder;
import org.springframework.web.context.request.ServletRequestAttributes;
import javax.servlet.http.HttpServletRequest;
@Configuration
@EnableWebSecurity
@ComponentScan(basePackageClasses = KeycloakSecurityComponents.class)
@ -62,6 +59,10 @@ class SecurityConfig extends KeycloakWebSecurityConfigurerAdapter {
http.authorizeRequests()
.antMatchers("/actuator/**")
.hasRole("monitoring")
.and()
.authorizeRequests()
.antMatchers("h2-console/**")
.permitAll()
.anyRequest()
.permitAll();
}
@ -81,4 +82,4 @@ class SecurityConfig extends KeycloakWebSecurityConfigurerAdapter {
public static class MethodSecurityConfig
extends GlobalMethodSecurityConfiguration {
}
}
}