Coverage Summary for Class: SecurityConfiguration (io.github.mkuchin.security)

1 package io.github.mkuchin.security; 2  3 import io.github.mkuchin.properties.UserCredentialsProperties; 4 import lombok.RequiredArgsConstructor; 5 import org.springframework.context.annotation.Bean; 6 import org.springframework.context.annotation.Configuration; 7 import org.springframework.security.config.annotation.web.builders.HttpSecurity; 8 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity; 9 import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter; 10 import org.springframework.security.config.http.SessionCreationPolicy; 11 import org.springframework.security.core.userdetails.User; 12 import org.springframework.security.core.userdetails.UserDetails; 13 import org.springframework.security.core.userdetails.UserDetailsService; 14 import org.springframework.security.provisioning.InMemoryUserDetailsManager; 15  16 @Configuration 17 @EnableWebSecurity 18 @RequiredArgsConstructor 19 public class SecurityConfiguration extends WebSecurityConfigurerAdapter { 20  21  private final UserCredentialsProperties userCredentials; 22  23  @Bean 24  @Override 25  public UserDetailsService userDetailsService() { 26  UserDetails user = User.withUsername(userCredentials.getUsername()). 27  password(userCredentials.getPassword()). 28  roles("USER"). 29  build(); 30  return new InMemoryUserDetailsManager(user); 31  } 32  33  @Override 34  protected void configure(HttpSecurity http) throws Exception { 35  http. 36  csrf().disable(). 37  sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS).and(). 38  authorizeRequests().anyRequest().authenticated().and(). 39  httpBasic(); 40  } 41 }