conflict done
This commit is contained in:
Parpaillax
@@ -2,13 +2,10 @@ package fr.eni.enchere.security;
|
||||
|
||||
import fr.eni.enchere.bo.UserProfil;
|
||||
import fr.eni.enchere.dal.UserRepository;
|
||||
import org.springframework.beans.factory.annotation.Autowired;
|
||||
import org.springframework.security.core.userdetails.User;
|
||||
import org.springframework.security.core.userdetails.User.UserBuilder;
|
||||
import org.springframework.security.core.userdetails.UserDetails;
|
||||
import org.springframework.security.core.userdetails.UserDetailsService;
|
||||
import org.springframework.security.core.userdetails.UsernameNotFoundException;
|
||||
import org.springframework.security.crypto.password.PasswordEncoder;
|
||||
import org.springframework.stereotype.Component;
|
||||
|
||||
@Component
|
||||
@@ -16,7 +13,6 @@ public class LoginService implements UserDetailsService {
|
||||
|
||||
private UserRepository userRep;
|
||||
|
||||
@Autowired
|
||||
public LoginService(UserRepository userRep) {
|
||||
this.userRep = userRep;
|
||||
}
|
||||
@@ -24,20 +20,19 @@ public class LoginService implements UserDetailsService {
|
||||
@Override
|
||||
public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {
|
||||
// Charger l'utilisateur depuis la base de données
|
||||
UserProfil utilisateur = userRep.findByUsername(username);
|
||||
UserProfil utilisateur = this.userRep.findByUsername(username);
|
||||
UserDetails userDetails = null;
|
||||
// Créer un nouvel objet UserBuilder
|
||||
UserBuilder userBuilder = User.builder()
|
||||
.username(utilisateur.getPseudo())
|
||||
.password(utilisateur.getPassword());
|
||||
// Ajouter les rôles en fonction de isAdmin()
|
||||
if(utilisateur.isAdmin()) {
|
||||
userBuilder.roles("ADMIN", "MEMBRE");
|
||||
if (utilisateur != null) {
|
||||
userDetails = User.builder()
|
||||
.username(utilisateur.getPseudo())
|
||||
.password(utilisateur.getPassword())
|
||||
.roles(utilisateur.isAdmin() ? "ADMIN" : "MEMBRE")
|
||||
.build();
|
||||
} else {
|
||||
userBuilder.roles("MEMBRE");
|
||||
throw new UsernameNotFoundException("Les identifiants sont incorrect !");
|
||||
}
|
||||
|
||||
// Retourner l'utilisateur UserDetails construit
|
||||
return userBuilder.build();
|
||||
return userDetails;
|
||||
}
|
||||
|
||||
}
|
||||
}
|
||||
@@ -8,9 +8,9 @@ import org.springframework.security.crypto.password.PasswordEncoder;
|
||||
@Configuration
|
||||
public class SecurityConfig {
|
||||
|
||||
@Bean
|
||||
public PasswordEncoder passwordEncoder() {
|
||||
return new BCryptPasswordEncoder();
|
||||
}
|
||||
// @Bean
|
||||
// public PasswordEncoder passwordEncoder() {
|
||||
// return new BCryptPasswordEncoder();
|
||||
// }
|
||||
|
||||
}
|
||||
|
||||
@@ -4,27 +4,39 @@ import org.springframework.context.annotation.Bean;
|
||||
import org.springframework.context.annotation.Configuration;
|
||||
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
|
||||
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
|
||||
import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
|
||||
import org.springframework.security.crypto.factory.PasswordEncoderFactories;
|
||||
import org.springframework.security.crypto.password.PasswordEncoder;
|
||||
import org.springframework.security.web.SecurityFilterChain;
|
||||
import org.springframework.security.web.util.matcher.AntPathRequestMatcher;
|
||||
|
||||
@Configuration
|
||||
@EnableWebSecurity
|
||||
public class WebSecurityConfig {
|
||||
public class WebSecurityConfig{
|
||||
|
||||
@Bean
|
||||
public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
|
||||
http.authorizeHttpRequests((requests) -> requests
|
||||
.requestMatchers("/", "/accueil").permitAll()
|
||||
.requestMatchers("/accueil", "/login", "/inscription/**", "/searchArticle", "/profile/**").permitAll()
|
||||
http.authorizeHttpRequests((requests) -> requests.requestMatchers("/", "/accueil").permitAll()
|
||||
.requestMatchers("/login").permitAll()
|
||||
.requestMatchers("/css/**", "/images/**", "/assets/**", "/img/**", "/js/**").permitAll()
|
||||
.requestMatchers("/admin").hasRole("ADMIN")
|
||||
.anyRequest().authenticated())
|
||||
.formLogin((form) -> form.loginPage("/login").defaultSuccessUrl("/", true))
|
||||
.logout((logout) -> logout.clearAuthentication(true).invalidateHttpSession(true)
|
||||
.deleteCookies("JSESSIONID").logoutSuccessUrl("/logout")
|
||||
.logout((logout) -> logout.clearAuthentication(true).invalidateHttpSession(true).deleteCookies("JSESSIONID").logoutSuccessUrl("/filmLogout")
|
||||
.logoutRequestMatcher(new AntPathRequestMatcher("/logout")).permitAll());
|
||||
|
||||
return http.build();
|
||||
}
|
||||
|
||||
@Bean
|
||||
public PasswordEncoder passwordEncoder() {
|
||||
return new BCryptPasswordEncoder();
|
||||
|
||||
}
|
||||
|
||||
// @Bean
|
||||
// public PasswordEncoder passwordEncoder() {
|
||||
// return PasswordEncoderFactories.createDelegatingPasswordEncoder();
|
||||
// }
|
||||
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user