Error in spring security configuration class

Question

Error in spring security configuration class

In my spring application, I am using spring 4.0.4 and spring Security 3.2.3. I copied this code directly from the tutorial on the sprin website, but I have a compilation problem because the method registerAuthenticationcannot be reevaluated from the class WebSecurityConfigurerAdapter, and the class HttpSecuritydoes not have a method authorizeUrls, Do I have a bank? Or is it a version?

import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.authentication.AuthenticationManager;
import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;


@EnableWebSecurity
@Configuration
@EnableGlobalMethodSecurity(prePostEnabled = true)
public class SecurityConfig extends WebSecurityConfigurerAdapter {

    @Override
    protected void registerAuthentication(AuthenticationManagerBuilder auth) throws Exception {
        auth.inMemoryAuthentication()
                .withUser("letsnosh").password("noshing").roles("USER");
    }

    @Override
    protected void configure(HttpSecurity http) throws Exception {
        http.authorizeUrls()
                .antMatchers("/order/**").hasRole("USER")
                .antMatchers("/checkout").hasRole("USER")
                .anyRequest().anonymous()
                .and()
                //This will generate a login form if none is supplied.
                .formLogin();
    }

    @Bean
    @Override
    public AuthenticationManager authenticationManagerBean() throws Exception {
        return super.authenticationManagerBean();
    }
}

+4

java spring spring-mvc spring-security

user2798694 May 11 '14 at 15:02

source share

5 answers

johnjo · Answer 1 · 2014-08-19T03:30:44+0000

It looks like it's now .authorizeRequests()from 3.2.0.RC1 . See https://jira.spring.io/browse/SEC-2202

Supun Dharmarathne · Answer 2 · 2015-04-30T10:04:36+0000

now this .authorizeRequests()

david_ru · Answer 3 · 2014-05-11T18:52:57+0000

, . , spring -security-web spring -security-config ? ( maven).

<!-- Spring security -->
<dependency>
    <groupId>org.springframework.security</groupId>
    <artifactId>spring-security-web</artifactId>
</dependency>
<dependency>
    <groupId>org.springframework.security</groupId>
    <artifactId>spring-security-config</artifactId>
</dependency>

Diver · Answer 4 · 2014-05-20T18:51:18+0000

gradle,

compile 'org.springframework.security:spring-security-web:3.2.0.M2'
compile 'org.springframework.security:spring-security-core:3.2.0.M2'
compile 'org.springframework.security:spring-security-config:3.2.0.M2'

, .

, , .anyRequest().anonymous() , , , . , , .

Hany Sakr · Answer 5 · 2017-08-17T11:18:29+0000

@Autowired
public void configureGlobal(AuthenticationManagerBuilder auth) throws Exception {
    auth.inMemoryAuthentication().withUser("letsnosh").password("noshing").roles("USER");
}

Error in spring security configuration class

More articles: