Package org.frankframework.lifecycle.servlets

Class HttpSecurityConfigurer

java.lang.Object

org.frankframework.lifecycle.servlets.HttpSecurityConfigurer

All Implemented Interfaces:

org.springframework.beans.factory.InitializingBean, org.springframework.security.config.annotation.SecurityConfigurer<jakarta.servlet.Filter,org.springframework.security.config.annotation.web.builders.WebSecurity>, org.springframework.security.config.annotation.web.WebSecurityConfigurer<org.springframework.security.config.annotation.web.builders.WebSecurity>

@Order(2147483647)
@Configuration
@EnableWebSecurity
@EnableMethodSecurity(jsr250Enabled=true,
                      prePostEnabled=false)
public class HttpSecurityConfigurer
extends Object
implements org.springframework.security.config.annotation.web.WebSecurityConfigurer<org.springframework.security.config.annotation.web.builders.WebSecurity>, org.springframework.beans.factory.InitializingBean

The default SecurityFilterChain will be added by SecurityFilterChainConfigurer. All SecurityFilterChain are added to the root WebApplicationContext which is stored under WebApplicationContext.ROOT_WEB_APPLICATION_CONTEXT_ATTRIBUTE. In newer versions of Spring Boot the boot context overwrites this key, using the 'old' context as a parent. By not unregistering the SecurityFilterChain they can be picked up by the new context (which may add their own filters). This indirectly means that the default 'FilterChainProxy' (which collects all SecurityFilters) will not NOT be used. Instead a new one, created in the sub-context, will be used.

Author:

Niels Meijer

Constructor Summary

Constructors

Constructor	Description
HttpSecurityConfigurer()

Method Summary

Modifier and Type	Method	Description
void	afterPropertiesSet()
void	configure(org.springframework.security.config.annotation.web.builders.WebSecurity webSecurity)
void	init(org.springframework.security.config.annotation.web.builders.WebSecurity webSecurity)
void	setBeanFactory(org.springframework.beans.factory.BeanFactory beanFactory)
void	setServletContext(jakarta.servlet.ServletContext servletContext)
void	setServletManager(ServletManager servletManager)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

HttpSecurityConfigurer

public HttpSecurityConfigurer()

Method Details

afterPropertiesSet

public void afterPropertiesSet()
                        throws Exception

Specified by:

afterPropertiesSet in interface org.springframework.beans.factory.InitializingBean

Throws:

Exception

init

public void init(org.springframework.security.config.annotation.web.builders.WebSecurity webSecurity)

Specified by:

init in interface org.springframework.security.config.annotation.SecurityConfigurer<jakarta.servlet.Filter,org.springframework.security.config.annotation.web.builders.WebSecurity>

configure

public void configure(org.springframework.security.config.annotation.web.builders.WebSecurity webSecurity)
               throws Exception

Specified by:

configure in interface org.springframework.security.config.annotation.SecurityConfigurer<jakarta.servlet.Filter,org.springframework.security.config.annotation.web.builders.WebSecurity>

Throws:

Exception

setServletManager

public void setServletManager(ServletManager servletManager)

setBeanFactory

public void setBeanFactory(org.springframework.beans.factory.BeanFactory beanFactory)

setServletContext

public void setServletContext(jakarta.servlet.ServletContext servletContext)