Class SecurityAutoConfiguration
java.lang.Object
com.broadleafcommerce.auth.user.autoconfigure.SecurityAutoConfiguration
@AutoConfiguration(before=org.springframework.boot.autoconfigure.security.oauth2.server.servlet.OAuth2AuthorizationServerAutoConfiguration.class)
@EnableConfigurationProperties({AuthorizationServerProperties.class,UserLoginProperties.class,VerifyRedirectCookieProperties.class,UserLockoutProperties.class,UserPasswordProperties.class,TokenProperties.class})
public class SecurityAutoConfiguration
extends Object
This is the main security configuration that engages Spring Authorization Server support and the
authentication filters.
Security on 'resource' endpoints is applied by OAuth2ResourceWebSecurityConfiguration
.
- Author:
- Jeff Fischer, Samarth Dhruva (samarthd), Cade Rea (cade-rea)
-
Nested Class Summary
Modifier and TypeClassDescriptionstatic class
This configuration is specifically responsible for enabling authentication-related components.static class
This configuration is specifically responsible for enabling Spring Authorization Server and its related components. -
Constructor Summary
-
Method Summary
Modifier and TypeMethodDescriptionorg.springframework.security.config.annotation.web.configuration.WebSecurityCustomizer
-
Constructor Details
-
SecurityAutoConfiguration
public SecurityAutoConfiguration()
-
-
Method Details
-
staticFilesIgnoringWebSecurityCustomizer
@Bean("staticFilesIgnoringWebSecurityCustomizer") @ConditionalOnMissingBean(name="staticFilesIgnoringWebSecurityCustomizer") public org.springframework.security.config.annotation.web.configuration.WebSecurityCustomizer staticFilesIgnoringWebSecurityCustomizer()
-