org.springframework.boot.autoconfigure.security

Class SecurityAutoConfiguration

java.lang.Object

org.springframework.boot.autoconfigure.security.SecurityAutoConfiguration

@Configuration
@ConditionalOnClass(value={,})
@EnableConfigurationProperties
@Import(value={SpringBootWebSecurityConfiguration.class,AuthenticationManagerConfiguration.class})
public class SecurityAutoConfiguration
extends Object

Auto-configuration for Spring Security. Provides an AuthenticationManager based on configuration bound to a SecurityProperties bean. There is one user (named "user") whose password is random and printed on the console at INFO level during startup. In a webapp this configuration also secures all web endpoints (except some well-known static resource) locations with HTTP basic security. To replace all the default behaviour in a webapp provide a @Configuration with @EnableWebSecurity. To just add your own layer of application security in front of the defaults, add a @Configuration of type WebSecurityConfigurerAdapter.

Author:

Dave Syer, Andy Wilkinson

Constructor Summary

Constructors

Constructor and Description
SecurityAutoConfiguration()

Method Summary

Methods

Modifier and Type	Method and Description
AuthenticationEventPublisher	authenticationEventPublisher(ApplicationEventPublisher publisher)
SecurityProperties	securityProperties()

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

SecurityAutoConfiguration

public SecurityAutoConfiguration()

Method Detail

authenticationEventPublisher

@Bean
@ConditionalOnMissingBean
public AuthenticationEventPublisher authenticationEventPublisher(ApplicationEventPublisher publisher)

securityProperties

@Bean
@ConditionalOnMissingBean
public SecurityProperties securityProperties()