Changeset 5306751 for src/main/java/it/finki/charitable/security

Timestamp:

09/04/21 11:14:25 (3 years ago)

Author:

NikolaCenevski <cenevskinikola@…>

Branches:

master

Children:

ab49338

Parents:

194776a

Message:

Dodadeno posts to be approved

File:

• src/main/java/it/finki/charitable/security/SecurityConfig.java (modified) (4 diffs)

src/main/java/it/finki/charitable/security/SecurityConfig.java

@@ -7 +7 @@
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+import org.springframework.security.core.Authentication;
 import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
+import org.springframework.security.web.DefaultRedirectStrategy;
+import org.springframework.security.web.RedirectStrategy;
+import org.springframework.security.web.authentication.AuthenticationSuccessHandler;
 import org.springframework.security.web.util.matcher.AntPathRequestMatcher;
+
+import javax.servlet.ServletException;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.io.IOException;
 
 @Configuration
@@ -40 +49 @@
                 .authorizeRequests()
                 .antMatchers(publicMatchers).permitAll()
-                .antMatchers("/moderator-photos/**").hasAuthority(UserRole.MODERATOR.name())
-                .anyRequest().authenticated();
+                .antMatchers("/moderator-photos/**", "/moderator/**").hasAuthority(UserRole.MODERATOR.name())
+                .anyRequest().hasAuthority(UserRole.USER.name());
 
         http
@@ -47 +56 @@
                 .cors().disable()
                 .formLogin().loginPage("/login")
-                .defaultSuccessUrl("/", true)
+                .successHandler(authenticationSuccessHandler)
                 .and()
                 .logout().logoutRequestMatcher(new AntPathRequestMatcher("/logout"))
@@ -55 +64 @@
     }
 
+    AuthenticationSuccessHandler authenticationSuccessHandler = (httpServletRequest, httpServletResponse, authentication) -> {
+        RedirectStrategy redirectStrategy = new DefaultRedirectStrategy();
+        if(authentication.getAuthorities().toString().contains("MODERATOR")) {
+            redirectStrategy.sendRedirect(httpServletRequest, httpServletResponse, "/moderator/approval");
+        } else {
+            redirectStrategy.sendRedirect(httpServletRequest, httpServletResponse, "/");
+        }
+    };
+
     @Override
     protected void configure(AuthenticationManagerBuilder auth) throws Exception {