org.springframework.boot.autoconfigure.security

Class SecurityAutoConfiguration

java.lang.Object

org.springframework.boot.autoconfigure.security.SecurityAutoConfiguration

@Configuration
 @ConditionalOnClass(value={org.springframework.security.authentication.AuthenticationManager.class,org.springframework.security.config.annotation.authentication.configurers.GlobalAuthenticationConfigurerAdapter.class})
 @EnableConfigurationProperties(value=SecurityProperties.class)
 @Import(value={SpringBootWebSecurityConfiguration.class,WebSecurityEnablerConfiguration.class,AuthenticationManagerConfiguration.class,SecurityDataConfiguration.class})
public class SecurityAutoConfiguration
extends Object

Auto-configuration for Spring Security. Provides an AuthenticationManager based on configuration bound to a SecurityProperties bean. There is one user (named "user") whose password is random and printed on the console at INFO level during startup. In a webapp this configuration also secures all web endpoints (except some well-known static resource locations) with HTTP basic security. To replace all the default behaviours in a webapp provide a @Configuration with @EnableWebSecurity. To just add your own layer of application security in front of the defaults, add a @Configuration of type WebSecurityConfigurerAdapter.

Author:

Dave Syer, Andy Wilkinson

Constructor Summary

Constructors

Constructor and Description
SecurityAutoConfiguration()

Method Summary

Modifier and Type	Method and Description
org.springframework.security.authentication.DefaultAuthenticationEventPublisher	authenticationEventPublisher(org.springframework.context.ApplicationEventPublisher publisher)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

SecurityAutoConfiguration

public SecurityAutoConfiguration()

Method Detail

authenticationEventPublisher

@Bean
 @ConditionalOnMissingBean(value=org.springframework.security.authentication.AuthenticationEventPublisher.class)
public org.springframework.security.authentication.DefaultAuthenticationEventPublisher authenticationEventPublisher(org.springframework.context.ApplicationEventPublisher publisher)