working on #155

phasenraum2010 · phasenraum2010 · commit a9d7e6714d91 · 2017-07-28T15:35:26.000+02:00
diff --git a/pom.xml b/pom.xml
@@ -80,12 +80,10 @@
             <groupId>org.springframework.boot</groupId>
             <artifactId>spring-boot-starter-integration</artifactId>
         </dependency>
-        <!--
         <dependency>
             <groupId>org.springframework.boot</groupId>
             <artifactId>spring-boot-starter-security</artifactId>
         </dependency>
-        -->
         <dependency>
             <groupId>org.springframework.boot</groupId>
             <artifactId>spring-boot-starter-mobile</artifactId>
diff --git a/src/main/java/org/woehlke/twitterwall/conf/WebSecurityConfig.java b/src/main/java/org/woehlke/twitterwall/conf/WebSecurityConfig.java
@@ -0,0 +1,36 @@
+package org.woehlke.twitterwall.conf;
+
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
+
+@Configuration
+@EnableWebSecurity
+public class WebSecurityConfig extends WebSecurityConfigurerAdapter {
+
+    @Override
+    protected void configure(HttpSecurity http) throws Exception {
+        http
+                .authorizeRequests()
+                .antMatchers("/", "/tweet/all","/user/tweets","/hashtag/overview","/imprint","/user/*","/hashtag/*","/css/**","/favicon/**","/js","/map-icons","/webjars/**").permitAll()
+                .anyRequest().authenticated()
+                .and()
+                .formLogin()
+                .loginPage("/login")
+                .permitAll()
+                .and()
+                .logout()
+                .permitAll();
+    }
+
+    @Autowired
+    public void configureGlobal(AuthenticationManagerBuilder auth) throws Exception {
+        auth
+                .inMemoryAuthentication()
+                .withUser("user").password("password").roles("USER");
+    }
+}
diff --git a/src/main/java/org/woehlke/twitterwall/frontend/controller/PagesController.java b/src/main/java/org/woehlke/twitterwall/frontend/controller/PagesController.java
@@ -26,6 +26,17 @@ public ModelAndView index(Model model) {
         return new ModelAndView("redirect:/tweet/all");
     }
 
+    @RequestMapping("/login")
+    public String login(Model model) {
+        log.info("-----------------------------------------");
+        String symbol = Symbols.LEAF.toString();
+        String title = "Login";
+        String subtitle = "Enter your Credentials";
+        model = controllerHelper.setupPage(model, title, subtitle, symbol);
+        log.info("-----------------------------------------");
+        return "login";
+    }
+
     @RequestMapping("/imprint")
     public String imprint(Model model) {
         log.info("-----------------------------------------");
diff --git a/src/main/resources/templates/login.html b/src/main/resources/templates/login.html
@@ -0,0 +1,20 @@
+<!DOCTYPE html>
+<html xmlns="http://www.w3.org/1999/xhtml" xmlns:th="http://www.thymeleaf.org"
+      xmlns:sec="http://www.thymeleaf.org/thymeleaf-extras-springsecurity3">
+<head>
+    <title>Spring Security Example </title>
+</head>
+<body>
+<div th:if="${param.error}">
+    Invalid username and password.
+</div>
+<div th:if="${param.logout}">
+    You have been logged out.
+</div>
+<form th:action="@{/login}" method="post">
+    <div><label> User Name : <input type="text" name="username"/> </label></div>
+    <div><label> Password: <input type="password" name="password"/> </label></div>
+    <div><input type="submit" value="Sign In"/></div>
+</form>
+</body>
+</html>
