Spring Security

Aus Tutorials
Zur Navigation springen Zur Suche springen

Noch in Bearbeitung


CORS (Cross Over Resource Sharing)

@Configuration
@EnableWebSecurity
public class SecurityConfig extends WebSecurityConfigurerAdapter {
  ...
  @Override
  protected void configure(final HttpSecurity http) throws Exception {    
    http.cors() /* CORS filter must be enabled */
      .and()
      ...
  }

  ...

  @Bean
  CorsConfigurationSource corsConfigurationSource() {
    CorsConfiguration configuration = new CorsConfiguration();
    configuration.setAllowCredentials(true);
    configuration.setAllowedHeaders(Arrays.asList("Authorization", "Content-Type"));
    configuration.setAllowedOrigins(Arrays.asList("http://localhost:4200"));
    configuration.setAllowedMethods(Arrays.asList("GET","POST"));
    UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
    source.registerCorsConfiguration("/**", configuration);
    return source;
  }
  ...
}

Registrierung und Login

Links

https://www.baeldung.com/registration-with-spring-mvc-and-spring-security

https://www.baeldung.com/securing-a-restful-web-service-with-spring-security

https://www.baeldung.com/spring-security-session

https://docs.spring.io/spring-session/docs/current/reference/html5/guides/java-rest.html

https://gist.github.com/thomasdarimont/8d6bc243d3b504439e67d57cb0d0bb72

https://www.sedooe.com/2016/04/rest-authentication-using-spring-security-and-spring-session/


Zurück zu Spring