org.springframework.boot.actuate.autoconfigure.security.servlet

Class ManagementWebSecurityAutoConfiguration

java.lang.Object

org.springframework.boot.actuate.autoconfigure.security.servlet.ManagementWebSecurityAutoConfiguration

@Configuration(proxyBeanMethods=false)
 @ConditionalOnClass(value={org.springframework.security.web.SecurityFilterChain.class,org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter.class})
 @ConditionalOnMissingBean(value={org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter.class,org.springframework.security.web.SecurityFilterChain.class})
 @ConditionalOnWebApplication(type=SERVLET)
 @AutoConfigureBefore(value=SecurityAutoConfiguration.class)
 @AutoConfigureAfter(value={HealthEndpointAutoConfiguration.class,InfoEndpointAutoConfiguration.class,WebEndpointAutoConfiguration.class,OAuth2ClientAutoConfiguration.class,OAuth2ResourceServerAutoConfiguration.class,Saml2RelyingPartyAutoConfiguration.class})
public class ManagementWebSecurityAutoConfiguration
extends Object

Auto-configuration for Spring Security when actuator is on the classpath. It allows unauthenticated access to the HealthEndpoint and InfoEndpoint. If the user specifies their own WebSecurityConfigurerAdapter or SecurityFilterChain bean, this will back-off completely and the user should specify all the bits that they want to configure as part of the custom security configuration.

Since:

2.1.0

Author:

Madhura Bhave

Constructor Summary

Constructors

Constructor and Description
ManagementWebSecurityAutoConfiguration()

Method Summary

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

ManagementWebSecurityAutoConfiguration

public ManagementWebSecurityAutoConfiguration()