25 lines
1.2 KiB
Java
25 lines
1.2 KiB
Java
package com.example.scaffold.security;
|
|
|
|
import org.springframework.boot.autoconfigure.condition.ConditionalOnProperty;
|
|
import org.springframework.context.annotation.Bean;
|
|
import org.springframework.context.annotation.Configuration;
|
|
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
|
|
import org.springframework.security.config.annotation.web.configurers.AbstractHttpConfigurer;
|
|
import org.springframework.security.config.http.SessionCreationPolicy;
|
|
import org.springframework.security.web.SecurityFilterChain;
|
|
|
|
@Configuration
|
|
@ConditionalOnProperty(name = "auth.type", havingValue = "none", matchIfMissing = true)
|
|
public class LearningPermitAllSecurityConfig {
|
|
|
|
@Bean
|
|
public SecurityFilterChain permitAllSecurityFilterChain(HttpSecurity http) throws Exception {
|
|
http
|
|
.csrf(AbstractHttpConfigurer::disable)
|
|
.sessionManagement(session -> session.sessionCreationPolicy(SessionCreationPolicy.STATELESS))
|
|
.authorizeHttpRequests(auth -> auth.anyRequest().permitAll())
|
|
.headers(headers -> headers.frameOptions(frame -> frame.sameOrigin()));
|
|
return http.build();
|
|
}
|
|
}
|