Skip to content

Commit 8037b17

Browse files
Theo-lbgCopilot
Theo-lbg
and
Copilot
committed
feat(security): enhance security filter chain and add custom exception handling
Co-authored-by: Copilot <copilot@github.com>
1 parent 3ca0012 commit 8037b17

2 files changed

Lines changed: 38 additions & 23 deletions

File tree

src/main/java/com/xpeho/spring_boot_java_random_user/config/SecurityConfig.java

Lines changed: 30 additions & 23 deletions
Original file line numberDiff line numberDiff line change
@@ -20,6 +20,9 @@
2020
@EnableWebSecurity
2121
public class SecurityConfig {
2222

23+
private static final String RANDOM_USERS_PATH = "/random-users/**";
24+
private static final String ADMIN_ROLE = "ADMIN";
25+
2326
@Value("${app.security.admin.username}")
2427
private String adminUsername;
2528

@@ -39,35 +42,39 @@ public class SecurityConfig {
3942
private String testPassword;
4043

4144
@Bean
42-
SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
43-
http
44-
.csrf(csrf -> csrf.ignoringRequestMatchers("/random-users/**"))
45-
.sessionManagement(session -> session.sessionCreationPolicy(SessionCreationPolicy.STATELESS))
46-
.httpBasic(Customizer.withDefaults())
47-
.authorizeHttpRequests(auth -> auth
48-
.requestMatchers(
49-
"/api/**",
50-
"/swagger-ui/**",
51-
"/swagger-ui.html",
52-
"/v3/api-docs/**",
53-
"/actuator/health"
54-
).permitAll()
55-
.requestMatchers(HttpMethod.OPTIONS, "/**").permitAll()
56-
.requestMatchers(HttpMethod.GET, "/random-users/**").hasAnyRole("ADMIN", "USER", "TEST")
57-
.requestMatchers(HttpMethod.POST, "/random-users/**").hasRole("ADMIN")
58-
.requestMatchers(HttpMethod.PUT, "/random-users/**").hasRole("ADMIN")
59-
.requestMatchers(HttpMethod.DELETE, "/random-users/**").hasRole("ADMIN")
60-
.anyRequest().authenticated()
61-
);
62-
63-
return http.build();
45+
SecurityFilterChain securityFilterChain(HttpSecurity http) {
46+
try {
47+
http
48+
.csrf(csrf -> csrf.ignoringRequestMatchers(RANDOM_USERS_PATH))
49+
.sessionManagement(session -> session.sessionCreationPolicy(SessionCreationPolicy.STATELESS))
50+
.httpBasic(Customizer.withDefaults())
51+
.authorizeHttpRequests(auth -> auth
52+
.requestMatchers(
53+
"/api/**",
54+
"/swagger-ui/**",
55+
"/swagger-ui.html",
56+
"/v3/api-docs/**",
57+
"/actuator/health"
58+
).permitAll()
59+
.requestMatchers(HttpMethod.OPTIONS, "/**").permitAll()
60+
.requestMatchers(HttpMethod.GET, RANDOM_USERS_PATH).hasAnyRole(ADMIN_ROLE, "USER", "TEST")
61+
.requestMatchers(HttpMethod.POST, RANDOM_USERS_PATH).hasRole(ADMIN_ROLE)
62+
.requestMatchers(HttpMethod.PUT, RANDOM_USERS_PATH).hasRole(ADMIN_ROLE)
63+
.requestMatchers(HttpMethod.DELETE, RANDOM_USERS_PATH).hasRole(ADMIN_ROLE)
64+
.anyRequest().authenticated()
65+
);
66+
67+
return http.build();
68+
} catch (Exception exception) {
69+
throw new SecurityConfigurationException("Failed to build Spring Security filter chain", exception);
70+
}
6471
}
6572

6673
@Bean
6774
UserDetailsService userDetailsService(PasswordEncoder passwordEncoder) {
6875
UserDetails admin = User.withUsername(adminUsername)
6976
.password(passwordEncoder.encode(adminPassword))
70-
.roles("ADMIN")
77+
.roles(ADMIN_ROLE)
7178
.build();
7279

7380
UserDetails user = User.withUsername(userUsername)

src/main/java/com/xpeho/spring_boot_java_random_user/config/SecurityConfigurationException.java

Lines changed: 8 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,8 @@
1+
package com.xpeho.spring_boot_java_random_user.config;
2+
3+
public class SecurityConfigurationException extends RuntimeException {
4+
5+
public SecurityConfigurationException(String message, Throwable cause) {
6+
super(message, cause);
7+
}
8+
}

0 commit comments

Comments
 (0)