|
|
@@ -186,23 +186,23 @@ public final class HttpSecurity extends AbstractConfiguredSecurityBuilder<Defaul
|
|
|
* @EnableWebSecurity
|
|
|
* public class CsrfSecurityConfig {
|
|
|
*
|
|
|
- * @Bean
|
|
|
- * public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
|
|
|
- * http
|
|
|
- * .headers()
|
|
|
- * .contentTypeOptions()
|
|
|
- * .and()
|
|
|
- * .xssProtection()
|
|
|
- * .and()
|
|
|
- * .cacheControl()
|
|
|
- * .and()
|
|
|
- * .httpStrictTransportSecurity()
|
|
|
- * .and()
|
|
|
- * .frameOptions()
|
|
|
- * .and()
|
|
|
- * ...;
|
|
|
- * return http.build();
|
|
|
- * }
|
|
|
+ * @Bean
|
|
|
+ * public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
|
|
|
+ * http
|
|
|
+ * .headers()
|
|
|
+ * .contentTypeOptions()
|
|
|
+ * .and()
|
|
|
+ * .xssProtection()
|
|
|
+ * .and()
|
|
|
+ * .cacheControl()
|
|
|
+ * .and()
|
|
|
+ * .httpStrictTransportSecurity()
|
|
|
+ * .and()
|
|
|
+ * .frameOptions()
|
|
|
+ * .and()
|
|
|
+ * ...;
|
|
|
+ * return http.build();
|
|
|
+ * }
|
|
|
* }
|
|
|
* </pre>
|
|
|
*
|
|
|
@@ -213,13 +213,13 @@ public final class HttpSecurity extends AbstractConfiguredSecurityBuilder<Defaul
|
|
|
* @EnableWebSecurity
|
|
|
* public class CsrfSecurityConfig {
|
|
|
*
|
|
|
- * @Bean
|
|
|
- * public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
|
|
|
- * http
|
|
|
- * .headers().disable()
|
|
|
- * ...;
|
|
|
- * return http.build();
|
|
|
- * }
|
|
|
+ * @Bean
|
|
|
+ * public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
|
|
|
+ * http
|
|
|
+ * .headers().disable()
|
|
|
+ * ...;
|
|
|
+ * return http.build();
|
|
|
+ * }
|
|
|
* }
|
|
|
* </pre>
|
|
|
*
|
|
|
@@ -234,18 +234,18 @@ public final class HttpSecurity extends AbstractConfiguredSecurityBuilder<Defaul
|
|
|
* @EnableWebSecurity
|
|
|
* public class CsrfSecurityConfig {
|
|
|
*
|
|
|
- * @Bean
|
|
|
- * public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
|
|
|
- * http
|
|
|
- * .headers()
|
|
|
- * .defaultsDisabled()
|
|
|
- * .cacheControl()
|
|
|
- * .and()
|
|
|
- * .frameOptions()
|
|
|
- * .and()
|
|
|
- * ...;
|
|
|
- * return http.build();
|
|
|
- * }
|
|
|
+ * @Bean
|
|
|
+ * public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
|
|
|
+ * http
|
|
|
+ * .headers()
|
|
|
+ * .defaultsDisabled()
|
|
|
+ * .cacheControl()
|
|
|
+ * .and()
|
|
|
+ * .frameOptions()
|
|
|
+ * .and()
|
|
|
+ * ...;
|
|
|
+ * return http.build();
|
|
|
+ * }
|
|
|
* }
|
|
|
* </pre>
|
|
|
*
|
|
|
@@ -258,16 +258,16 @@ public final class HttpSecurity extends AbstractConfiguredSecurityBuilder<Defaul
|
|
|
* @EnableWebSecurity
|
|
|
* public class CsrfSecurityConfig {
|
|
|
*
|
|
|
- * @Bean
|
|
|
- * public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
|
|
|
- * http
|
|
|
- * .headers()
|
|
|
- * .frameOptions()
|
|
|
- * .disable()
|
|
|
- * .and()
|
|
|
- * ...;
|
|
|
- * return http.build();
|
|
|
- * }
|
|
|
+ * @Bean
|
|
|
+ * public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
|
|
|
+ * http
|
|
|
+ * .headers()
|
|
|
+ * .frameOptions()
|
|
|
+ * .disable()
|
|
|
+ * .and()
|
|
|
+ * ...;
|
|
|
+ * return http.build();
|
|
|
+ * }
|
|
|
* }
|
|
|
* </pre>
|
|
|
* @return the {@link HeadersConfigurer} for further customizations
|
|
|
@@ -403,12 +403,12 @@ public final class HttpSecurity extends AbstractConfiguredSecurityBuilder<Defaul
|
|
|
* @EnableWebSecurity
|
|
|
* public class CorsSecurityConfig {
|
|
|
*
|
|
|
- * @Bean
|
|
|
- * public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
|
|
|
- * http
|
|
|
- * .cors(withDefaults());
|
|
|
- * return http.build();
|
|
|
- * }
|
|
|
+ * @Bean
|
|
|
+ * public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
|
|
|
+ * http
|
|
|
+ * .cors(withDefaults());
|
|
|
+ * return http.build();
|
|
|
+ * }
|
|
|
* }
|
|
|
* </pre>
|
|
|
* @param corsCustomizer the {@link Customizer} to provide more options for the
|
|
|
@@ -1614,13 +1614,13 @@ public final class HttpSecurity extends AbstractConfiguredSecurityBuilder<Defaul
|
|
|
* @EnableWebSecurity
|
|
|
* public class CsrfSecurityConfig {
|
|
|
*
|
|
|
- * @Bean
|
|
|
- * public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
|
|
|
- * http
|
|
|
- * .csrf().disable()
|
|
|
- * ...;
|
|
|
- * return http.build();
|
|
|
- * }
|
|
|
+ * @Bean
|
|
|
+ * public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
|
|
|
+ * http
|
|
|
+ * .csrf().disable()
|
|
|
+ * ...;
|
|
|
+ * return http.build();
|
|
|
+ * }
|
|
|
* }
|
|
|
* </pre>
|
|
|
* @return the {@link CsrfConfigurer} for further customizations
|
|
|
@@ -1640,12 +1640,12 @@ public final class HttpSecurity extends AbstractConfiguredSecurityBuilder<Defaul
|
|
|
* @EnableWebSecurity
|
|
|
* public class CsrfSecurityConfig {
|
|
|
*
|
|
|
- * @Bean
|
|
|
- * public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
|
|
|
- * http
|
|
|
- * .csrf((csrf) -> csrf.disable());
|
|
|
- * return http.build();
|
|
|
- * }
|
|
|
+ * @Bean
|
|
|
+ * public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
|
|
|
+ * http
|
|
|
+ * .csrf((csrf) -> csrf.disable());
|
|
|
+ * return http.build();
|
|
|
+ * }
|
|
|
* }
|
|
|
* </pre>
|
|
|
* @param csrfCustomizer the {@link Customizer} to provide more options for the
|
Steve Riesenberg