What is the difference between the configure and configureGlobal methods?

Question

What is the difference between the configure and configureGlobal methods?

I play with Spring's security configuration and find out that the most common way to configure in-memory authentication is through a method configureGlobal():

@Configuration
@EnableWebMvcSecurity
public class WebSecurityConfig extends WebSecurityConfigurerAdapter {

  @Autowired
  public void configureGlobal(AuthenticationManagerBuilder auth) throws Exception{
    auth
      .inMemoryAuthentication()
        .withUser("user").password("userPwd").roles("USER");
  }
}

But there is another way that is used less widely, overriding the method configure()from WebSecurityConfigurerAdapter:

@Configuration
@EnableWebMvcSecurity
public class SecurityConfig extends WebSecurityConfigurerAdapter {

  @Override
  protected void configure(AuthenticationManagerBuilder auth) throws Exception {
    auth
      .inMemoryAuthentication(
        .withUser("user").password("userPwd").roles("USER");
  }
}

I'm just wondering what is the difference between the two and what is the point of using the method configureGlobal()over configure()one?

+4

java spring spring-security

Nathaniele eldritch Jan 26 '16 at 21:02

source share

1 answer

Ali Dehghani · Answer 1 · 2016-01-26T21:30:43+0000

As spring security doc says :

configureGlobal . AuthenticationManagerBuilder @EnableWebSecurity, @EnableGlobalMethodSecurity, @EnableGlobalAuthentication. .

What is the difference between the configure and configureGlobal methods?

More articles: