@AutoConfiguration(before=SecurityAutoConfiguration.class, after={HealthEndpointAutoConfiguration.class,InfoEndpointAutoConfiguration.class,WebEndpointAutoConfiguration.class,OAuth2ClientAutoConfiguration.class,OAuth2ResourceServerAutoConfiguration.class,Saml2RelyingPartyAutoConfiguration.class}) @ConditionalOnWebApplication(type=SERVLET) @ConditionalOnDefaultWebSecurity public class ManagementWebSecurityAutoConfiguration extends Object
Auto-configuration
for Spring Security when actuator is
on the classpath. It allows unauthenticated access to the HealthEndpoint
. If
the user specifies their ownSecurityFilterChain
bean, this will back-off
completely and the user should specify all the bits that they want to configure as part
of the custom security configuration.