root
/
spring-boot
mirror of https://github.com/spring-projects/spring-boot.git
1
0
Fork 0
Code Issues Actions Packages Projects Releases Wiki Activity

Fix invalid security example in doc 

Closes gh-8580
This commit is contained in:
lexandro 2017-03-13 20:07:50 +01:00 committed by Stephane Nicoll
parent cd76da9a4c
commit 36b28540ee
2 changed files with 52 additions and 16 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
spring-boot-docs/src/main/asciidoc/spring-boot-features.adoc
View File

@ -2685,26 +2685,12 @@ annotation will cause it to be decorated and enhanced with the necessary pieces
the `/login` path working. For example, here we simply allow unauthenticated access the `/login` path working. For example, here we simply allow unauthenticated access
to the home page at "/" and keep the default for everything else: to the home page at "/" and keep the default for everything else:
[source,java,indent=0] [source,java,indent=0]
---- ----
@Configuration include::{code-examples}/web/security/UnAuthenticatedAccessExample.java[tag=configuration]
public class WebSecurityConfiguration extends WebSecurityConfigurerAdapter {
@Override
public void init(WebSecurity web) {
web.ignore("/");
}
@Override
protected void configure(HttpSecurity http) throws Exception {
http.antMatcher("/**").authorizeRequests().anyRequest().authenticated();
}
}
---- ----
[[boot-features-security-actuator]] [[boot-features-security-actuator]]
=== Actuator Security === Actuator Security
If the Actuator is also in use, you will find: If the Actuator is also in use, you will find:

50
spring-boot-docs/src/main/java/org/springframework/boot/web/security/UnAuthenticatedAccessExample.java Normal file
View File

@ -0,0 +1,50 @@
/*
* Copyright 2012-2016 the original author or authors.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.springframework.boot.web.security;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.builders.WebSecurity;
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
/**
* Example configuration for using a {@link WebSecurityConfigurerAdapter} to configure unauthenticated access
* to the home page at "/"
*
* @author Robert Stern
*/
public class UnAuthenticatedAccessExample {
// tag::configuration[]
/**
* {@link WebSecurityConfigurerAdapter} that provides init to configure
* {@link WebSecurity} argument to customize access rules
*/
@Configuration
static class WebSecurityConfiguration extends WebSecurityConfigurerAdapter {
@Override
public void init(WebSecurity web) {
web.ignoring().antMatchers("/");
}
@Override
protected void configure(HttpSecurity http) throws Exception {
http.antMatcher("/**").authorizeRequests().anyRequest().authenticated();
}
}
}