Connexion page

2024-04-23 08:55:19 +02:00
parent b253aa55b0
commit 0a156ee2f7
8 changed files with 41 additions and 13 deletions
--- a/src/main/java/fr/eni/enchere/security/WebSecurityConfig.java
+++ b/src/main/java/fr/eni/enchere/security/WebSecurityConfig.java
@@ -15,12 +15,10 @@ public class WebSecurityConfig {

    @Bean
    public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
-        http.authorizeHttpRequests((requests) -> requests.requestMatchers("/", "/films", "/filmotheque", "/film").permitAll()
-                        .requestMatchers("/filmLogout", "/login").permitAll()
-                        .requestMatchers("/css/**", "/images/**").permitAll()
-                        .requestMatchers("/genres").hasRole("ADMIN")
-                        .requestMatchers("/ajoutFilm")
-                        .hasAnyRole("MEMBRE", "ADMIN")
+        http.authorizeHttpRequests((requests) -> requests.requestMatchers("/", "/accueil").permitAll()
+                        .requestMatchers("/accueil", "/login", "/inscription").permitAll()
+                        .requestMatchers("/css/**", "/images/**", "/assets/**", "/img/**", "/js/**").permitAll()
+                        .requestMatchers("/admin").hasRole("ADMIN")
                        .anyRequest().authenticated())
                .formLogin((form) -> form.loginPage("/login").defaultSuccessUrl("/", true))
                .logout((logout) -> logout.clearAuthentication(true).invalidateHttpSession(true)