| Class | Description |
|---|---|
| WebSecurityConfiguration |
Uses a
WebSecurity to create the FilterChainProxy that
performs the web based security for Spring Security. |
| WebSecurityConfigurerAdapter |
Provides a convenient base class for creating a
WebSecurityConfigurer
instance. |
| Annotation Type | Description |
|---|---|
| EnableWebSecurity |
Add this annotation to an
@Configuration class to have the Spring Security
configuration defined in any WebSecurityConfigurer or more likely by extending the
WebSecurityConfigurerAdapter base class and overriding individual methods:
@Configuration
@EnableWebSecurity
public class MyWebSecurityConfiguration extends WebSecurityConfigurerAdapter {
@Override
public void configure(WebSecurity web) throws Exception {
web
.ignoring()
// Spring Security should completely ignore URLs starting with /resources/
.antMatchers("/resources/**");
}
@Override
protected void configure(HttpSecurity http) throws Exception {
http
.authorizeRequests()
.antMatchers("/public/**").permitAll()
.anyRequest().hasRole("USER")
.and()
// Possibly more configuration ... |