| | |
|---|
| | | @EnableWebSecurity |
|---|
| | | public class WebSecurityConfig extends WebSecurityConfigurerAdapter { |
|---|
| | | public static final String AUTHENTICATION_HEADER_NAME = "X-Authorization"; |
|---|
| | | public static final String AUTHENTICATION_PARAM_NAME = "_token"; |
|---|
| | | public static final String AUTHENTICATION_URL = "/auth/login"; |
|---|
| | | public static final String REFRESH_TOKEN_URL = "/auth/token"; |
|---|
| | | public static final String API_ROOT_URL = "/*/**"; |
|---|
| | | public static final String API_ROOT_URL = "/**/*"; |
|---|
| | | |
|---|
| | | @Autowired |
|---|
| | | private RestAuthenticationEntryPoint authenticationEntryPoint; |
|---|
| | |
|---|
| | | protected void configure(HttpSecurity http) throws Exception { |
|---|
| | | List<String> permitAllEndpointList = Arrays.asList( |
|---|
| | | AUTHENTICATION_URL, |
|---|
| | | REFRESH_TOKEN_URL |
|---|
| | | REFRESH_TOKEN_URL, |
|---|
| | | "/screen/**" |
|---|
| | | ); |
|---|
| | | |
|---|
| | | http |
|---|
