From d6ff4c9b0eea4a8087ae8c2d19cf281ac446d608 Mon Sep 17 00:00:00 2001 From: jleroy2023 Date: Wed, 16 Jul 2025 12:00:18 +0200 Subject: [PATCH] spring security finally --- src/main/java/fr/eni/demo/bll/JwtService.java | 1 + src/main/java/fr/eni/demo/bo/User.java | 2 +- .../java/fr/eni/demo/controller/AuthenticationController.java | 2 +- src/main/java/fr/eni/demo/security/SecurityConfig.java | 4 +++- 4 files changed, 6 insertions(+), 3 deletions(-) diff --git a/src/main/java/fr/eni/demo/bll/JwtService.java b/src/main/java/fr/eni/demo/bll/JwtService.java index c739dff..05b6cd7 100644 --- a/src/main/java/fr/eni/demo/bll/JwtService.java +++ b/src/main/java/fr/eni/demo/bll/JwtService.java @@ -4,6 +4,7 @@ import io.jsonwebtoken.JwtException; import io.jsonwebtoken.Jwts; import io.jsonwebtoken.SignatureAlgorithm; import io.jsonwebtoken.security.Keys; +import org.springframework.security.core.userdetails.UserDetails; import org.springframework.stereotype.Service; import java.security.Key; diff --git a/src/main/java/fr/eni/demo/bo/User.java b/src/main/java/fr/eni/demo/bo/User.java index df73ac9..b647375 100644 --- a/src/main/java/fr/eni/demo/bo/User.java +++ b/src/main/java/fr/eni/demo/bo/User.java @@ -20,6 +20,6 @@ public class User { private String username; @Field(name = "PASSWORD") - private String pasword; + private String password; } diff --git a/src/main/java/fr/eni/demo/controller/AuthenticationController.java b/src/main/java/fr/eni/demo/controller/AuthenticationController.java index 1e1754a..3d6232d 100644 --- a/src/main/java/fr/eni/demo/controller/AuthenticationController.java +++ b/src/main/java/fr/eni/demo/controller/AuthenticationController.java @@ -31,7 +31,7 @@ public class AuthenticationController { public ResponseEntity login(@RequestBody User user) { try { Authentication auth = authManager.authenticate( - new UsernamePasswordAuthenticationToken(user.getUsername(), user.getPasword()) + new UsernamePasswordAuthenticationToken(user.getUsername(), user.getPassword()) ); String token = jwtService.generateToken(user.getUsername()); diff --git a/src/main/java/fr/eni/demo/security/SecurityConfig.java b/src/main/java/fr/eni/demo/security/SecurityConfig.java index f9eefe1..fd4e34a 100644 --- a/src/main/java/fr/eni/demo/security/SecurityConfig.java +++ b/src/main/java/fr/eni/demo/security/SecurityConfig.java @@ -7,6 +7,7 @@ import org.springframework.security.authentication.AuthenticationManager; import org.springframework.security.config.annotation.authentication.configuration.AuthenticationConfiguration; import org.springframework.security.config.annotation.web.builders.HttpSecurity; import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity; +import org.springframework.security.config.annotation.web.configurers.AbstractHttpConfigurer; import org.springframework.security.config.http.SessionCreationPolicy; import org.springframework.security.core.userdetails.User; import org.springframework.security.core.userdetails.UserDetails; @@ -33,8 +34,9 @@ public class SecurityConfig { JwtAuthFilter jwtFilter = new JwtAuthFilter(jwtService, userDetailsService); http + .csrf(AbstractHttpConfigurer::disable) .authorizeHttpRequests(auth -> auth - .requestMatchers("/auth/**").permitAll() + .requestMatchers("/api/auth/login").permitAll() .anyRequest().authenticated() ) .sessionManagement(sess -> sess.sessionCreationPolicy(SessionCreationPolicy.STATELESS))