johanleroy/ENI-Ludotheque
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

spring security finally

Browse Source
This commit is contained in:
jleroy2023
2025-07-16 12:00:18 +02:00
parent 1cdd1e9d05
commit d6ff4c9b0e
4 changed files with 6 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
src/main/java/fr/eni/demo/bll/JwtService.java
View File

@@ -4,6 +4,7 @@ import io.jsonwebtoken.JwtException;
import io.jsonwebtoken.Jwts; import io.jsonwebtoken.Jwts;
import io.jsonwebtoken.SignatureAlgorithm; import io.jsonwebtoken.SignatureAlgorithm;
import io.jsonwebtoken.security.Keys; import io.jsonwebtoken.security.Keys;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.stereotype.Service; import org.springframework.stereotype.Service;
import java.security.Key; import java.security.Key;

2
src/main/java/fr/eni/demo/bo/User.java
View File

@@ -20,6 +20,6 @@ public class User {
private String username; private String username;
@Field(name = "PASSWORD") @Field(name = "PASSWORD")
private String pasword; private String password;
} }

2
src/main/java/fr/eni/demo/controller/AuthenticationController.java
View File

@@ -31,7 +31,7 @@ public class AuthenticationController {
public ResponseEntity<?> login(@RequestBody User user) { public ResponseEntity<?> login(@RequestBody User user) {
try { try {
Authentication auth = authManager.authenticate( Authentication auth = authManager.authenticate(
new UsernamePasswordAuthenticationToken(user.getUsername(), user.getPasword()) new UsernamePasswordAuthenticationToken(user.getUsername(), user.getPassword())
); );
String token = jwtService.generateToken(user.getUsername()); String token = jwtService.generateToken(user.getUsername());

4
src/main/java/fr/eni/demo/security/SecurityConfig.java
View File

@@ -7,6 +7,7 @@ import org.springframework.security.authentication.AuthenticationManager;
import org.springframework.security.config.annotation.authentication.configuration.AuthenticationConfiguration; import org.springframework.security.config.annotation.authentication.configuration.AuthenticationConfiguration;
import org.springframework.security.config.annotation.web.builders.HttpSecurity; import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity; import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
import org.springframework.security.config.annotation.web.configurers.AbstractHttpConfigurer;
import org.springframework.security.config.http.SessionCreationPolicy; import org.springframework.security.config.http.SessionCreationPolicy;
import org.springframework.security.core.userdetails.User; import org.springframework.security.core.userdetails.User;
import org.springframework.security.core.userdetails.UserDetails; import org.springframework.security.core.userdetails.UserDetails;
@@ -33,8 +34,9 @@ public class SecurityConfig {
JwtAuthFilter jwtFilter = new JwtAuthFilter(jwtService, userDetailsService); JwtAuthFilter jwtFilter = new JwtAuthFilter(jwtService, userDetailsService);
http http
.csrf(AbstractHttpConfigurer::disable)
.authorizeHttpRequests(auth -> auth .authorizeHttpRequests(auth -> auth
.requestMatchers("/auth/**").permitAll() .requestMatchers("/api/auth/login").permitAll()
.anyRequest().authenticated() .anyRequest().authenticated()
) )
.sessionManagement(sess -> sess.sessionCreationPolicy(SessionCreationPolicy.STATELESS)) .sessionManagement(sess -> sess.sessionCreationPolicy(SessionCreationPolicy.STATELESS))