package de.juplo.yourshouter;
-import javax.inject.Inject;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
@EnableWebSecurity
public class WebSecurityConfig extends WebSecurityConfigurerAdapter
{
- @Inject
- AuthenticationEntryPoint authenticationEntryPoint;
-
-
/**
* @{@inheritDoc}
*
*/
.ignoringAntMatchers("/canvas/*", "/h2-console/*")
.and()
- .exceptionHandling()
- .authenticationEntryPoint(authenticationEntryPoint)
- .and()
.headers()
/**
* All pages must be allowed, to be displayed inside a frame.
.frameOptions().disable()
.and()
.authorizeRequests()
- .antMatchers("/signin.html", "/signin/*", "/canvas/*").permitAll()
+ .antMatchers("/canvas/*").permitAll()
.anyRequest().authenticated();
}