[d8b6c91] | 1 | package mk.ukim.finki.predmeti.internettehnologii.jobvistabackend.config;
|
---|
| 2 |
|
---|
| 3 | import lombok.RequiredArgsConstructor;
|
---|
| 4 | import org.springframework.context.annotation.Bean;
|
---|
| 5 | import org.springframework.context.annotation.Configuration;
|
---|
| 6 | import org.springframework.security.authentication.AuthenticationManager;
|
---|
| 7 | import org.springframework.security.authentication.AuthenticationProvider;
|
---|
| 8 | import org.springframework.security.authentication.dao.DaoAuthenticationProvider;
|
---|
| 9 | import org.springframework.security.config.annotation.authentication.configuration.AuthenticationConfiguration;
|
---|
| 10 | import org.springframework.security.config.annotation.web.builders.HttpSecurity;
|
---|
| 11 | import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
|
---|
| 12 | import org.springframework.security.config.annotation.web.configurers.AbstractHttpConfigurer;
|
---|
| 13 | import org.springframework.security.config.http.SessionCreationPolicy;
|
---|
| 14 | import org.springframework.security.core.userdetails.UserDetailsService;
|
---|
| 15 | import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
|
---|
| 16 | import org.springframework.security.crypto.password.PasswordEncoder;
|
---|
| 17 | import org.springframework.security.web.SecurityFilterChain;
|
---|
| 18 | import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
|
---|
| 19 |
|
---|
| 20 | @Configuration
|
---|
| 21 | @EnableWebSecurity
|
---|
| 22 | @RequiredArgsConstructor
|
---|
| 23 | public class SecurityConfiguration {
|
---|
| 24 |
|
---|
| 25 | private final JwtAuthFilter jwtAuthFilter;
|
---|
| 26 | private final UserDetailsService userDetailsService;
|
---|
| 27 |
|
---|
| 28 | @Bean
|
---|
| 29 | public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
|
---|
| 30 | http.csrf(AbstractHttpConfigurer::disable)
|
---|
[19398ad] | 31 | .authorizeHttpRequests(request -> request
|
---|
[28b3398] | 32 | // TO DO: FIX PERMISSIONS
|
---|
| 33 | .requestMatchers("/api/job-advertisements/**","/api/job-advertisements/view/**","/api/recruiter/info/**",
|
---|
[b248810] | 34 | "/api/job-advertisements/apply/**","/api/auth/**", "/api/resume/**", "/api/my-applications/**", "/api/applications/{id}/update", "/api/admin/**").permitAll()
|
---|
[19398ad] | 35 | //.requestMatchers("/api/job-advertisements/**").hasAnyAuthority(Role.ROLE_RECRUITER.name())
|
---|
[d8b6c91] | 36 | .anyRequest().authenticated())
|
---|
| 37 | .sessionManagement(manager -> manager.sessionCreationPolicy(SessionCreationPolicy.STATELESS))
|
---|
| 38 | .authenticationProvider(authenticationProvider()).addFilterBefore(
|
---|
| 39 | jwtAuthFilter, UsernamePasswordAuthenticationFilter.class
|
---|
| 40 | );
|
---|
| 41 | return http.build();
|
---|
| 42 | }
|
---|
| 43 |
|
---|
| 44 | @Bean
|
---|
| 45 | public AuthenticationProvider authenticationProvider() {
|
---|
| 46 | DaoAuthenticationProvider authenticationProvider = new DaoAuthenticationProvider();
|
---|
| 47 | authenticationProvider.setUserDetailsService(userDetailsService);
|
---|
| 48 | authenticationProvider.setPasswordEncoder(passwordEncoder());
|
---|
| 49 | return authenticationProvider;
|
---|
| 50 | }
|
---|
| 51 |
|
---|
| 52 | @Bean
|
---|
| 53 | public PasswordEncoder passwordEncoder() {
|
---|
| 54 | return new BCryptPasswordEncoder();
|
---|
| 55 | }
|
---|
| 56 |
|
---|
| 57 | @Bean
|
---|
| 58 | public AuthenticationManager authenticationManager(AuthenticationConfiguration config) throws Exception {
|
---|
| 59 | return config.getAuthenticationManager();
|
---|
| 60 | }
|
---|
| 61 | }
|
---|