usbharu
/
Hideout
mirror of https://github.com/usbharu/Hideout.git
1
0
Fork 0
Code Issues Actions Packages Projects Releases Wiki Activity

fix: #654 Spring Authorization ServerのSecurityFIlterChainの設定方法が変わっている

This commit is contained in:
usbharu 2025-01-21 23:56:36 +09:00
parent 0a8595330b
commit 0e66d5a49a
Signed by: usbharu
GPG Key ID: 95CBCF7046307B77
1 changed files with 12 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
hideout/hideout-core/src/main/kotlin/dev/usbharu/hideout/core/config/SecurityConfig.kt
View File

@ -45,7 +45,7 @@ import org.springframework.security.oauth2.server.authorization.OAuth2Authorizat
import org.springframework.security.oauth2.server.authorization.OAuth2TokenType import org.springframework.security.oauth2.server.authorization.OAuth2TokenType
import org.springframework.security.oauth2.server.authorization.client.JdbcRegisteredClientRepository import org.springframework.security.oauth2.server.authorization.client.JdbcRegisteredClientRepository
import org.springframework.security.oauth2.server.authorization.client.RegisteredClientRepository import org.springframework.security.oauth2.server.authorization.client.RegisteredClientRepository
import org.springframework.security.oauth2.server.authorization.config.annotation.web.configuration.OAuth2AuthorizationServerConfiguration import org.springframework.security.oauth2.server.authorization.config.annotation.web.configurers.OAuth2AuthorizationServerConfigurer
import org.springframework.security.oauth2.server.authorization.settings.AuthorizationServerSettings import org.springframework.security.oauth2.server.authorization.settings.AuthorizationServerSettings
import org.springframework.security.oauth2.server.authorization.token.JwtEncodingContext import org.springframework.security.oauth2.server.authorization.token.JwtEncodingContext
import org.springframework.security.oauth2.server.authorization.token.OAuth2TokenCustomizer import org.springframework.security.oauth2.server.authorization.token.OAuth2TokenCustomizer
@ -65,8 +65,18 @@ class SecurityConfig {
@Bean @Bean
@Order(1) @Order(1)
fun oauth2Provider(http: HttpSecurity): SecurityFilterChain { fun oauth2Provider(http: HttpSecurity): SecurityFilterChain {
OAuth2AuthorizationServerConfiguration.applyDefaultSecurity(http) val authorizationServer = OAuth2AuthorizationServerConfigurer.authorizationServer()
http { http {
securityMatcher(authorizationServer.endpointsMatcher)
with(authorizationServer) {
authorizationEndpoint {
}
}
authorizeHttpRequests {
authorize(anyRequest, authenticated)
}
exceptionHandling { exceptionHandling {
authenticationEntryPoint = LoginUrlAuthenticationEntryPoint("/auth/sign_in") authenticationEntryPoint = LoginUrlAuthenticationEntryPoint("/auth/sign_in")
} }