• Home
• net.guerlab
• guerlab-spring-commons
• 2.1.3
• source code
• SecurityAutoconfigure.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

net.guerlab.spring.commons.autoconfigure.SecurityAutoconfigure Maven / Gradle / Ivy

package net.guerlab.spring.commons.autoconfigure;

import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
import org.springframework.web.cors.CorsConfiguration;

/**
 * @author guer
 *
 */
@Configuration
public class SecurityAutoconfigure extends WebSecurityConfigurerAdapter {

    @Autowired(required = false)
    private CorsConfiguration config;

    private static final CorsConfiguration DEFAULT_CONFIG = new CorsConfiguration();

    static {
        DEFAULT_CONFIG.addAllowedHeader(CorsConfiguration.ALL);
        DEFAULT_CONFIG.addAllowedMethod(CorsConfiguration.ALL);
        DEFAULT_CONFIG.addAllowedOrigin(CorsConfiguration.ALL);
        DEFAULT_CONFIG.setMaxAge(1800L);
        DEFAULT_CONFIG.setAllowCredentials(true);
    }

    @Override
    protected void configure(HttpSecurity http) throws Exception {
        http.httpBasic();

        http.csrf().disable();

        http.cors().configurationSource(request -> config == null ? DEFAULT_CONFIG : config);
    }

}