added login security on nflow ui
This commit is contained in:
@@ -10,13 +10,14 @@ import org.springframework.security.config.annotation.authentication.configurati
|
||||
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
|
||||
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
|
||||
import org.springframework.security.config.annotation.web.configurers.AbstractHttpConfigurer;
|
||||
import org.springframework.security.config.http.SessionCreationPolicy;
|
||||
import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
|
||||
import org.springframework.security.crypto.password.PasswordEncoder;
|
||||
import org.springframework.security.web.SecurityFilterChain;
|
||||
import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
|
||||
import zw.qantra.tm.domain.services.UserService;
|
||||
|
||||
import static org.springframework.security.config.Customizer.withDefaults;
|
||||
|
||||
@Configuration
|
||||
@EnableWebSecurity
|
||||
@RequiredArgsConstructor
|
||||
@@ -31,17 +32,14 @@ public class SecurityConfig {
|
||||
.authorizeHttpRequests(auth -> auth
|
||||
.requestMatchers("/configs/seed/**").permitAll()
|
||||
.requestMatchers("/test/**").permitAll()
|
||||
.requestMatchers("/explorer/**").permitAll()
|
||||
.requestMatchers("/nflow/**").permitAll()
|
||||
.requestMatchers("/auth/**").permitAll()
|
||||
.requestMatchers("/public/**").permitAll()
|
||||
.anyRequest().authenticated()
|
||||
)
|
||||
.sessionManagement(session -> session
|
||||
.sessionCreationPolicy(SessionCreationPolicy.STATELESS)
|
||||
)
|
||||
.authenticationProvider(authenticationProvider(userService))
|
||||
.addFilterBefore(jwtAuthFilter, UsernamePasswordAuthenticationFilter.class);
|
||||
.addFilterBefore(jwtAuthFilter, UsernamePasswordAuthenticationFilter.class)
|
||||
.formLogin(withDefaults());
|
||||
|
||||
return http.build();
|
||||
}
|
||||
|
||||
@@ -35,6 +35,11 @@ public class OnboardingController {
|
||||
private final WorkflowUtils workflowUtils;
|
||||
private final OtpService otpService;
|
||||
|
||||
@PostMapping("/system-user")
|
||||
public ResponseEntity sys(@RequestBody RegisterRequest request) {
|
||||
return ResponseEntity.ok(userService.register(request));
|
||||
}
|
||||
|
||||
@PostMapping("/check/{username}")
|
||||
public ResponseEntity check(@PathVariable String username) {
|
||||
QueryWorkflowInstances query = new QueryWorkflowInstances.Builder()
|
||||
|
||||
Reference in New Issue
Block a user