Spring safe custom filter with java configuration

Question

Spring safe custom filter with java configuration

How to replace default filter with custom filter in java configuration? In XML, it will be, for example:

<bean id="myFilter" class="lalalal.MyFilter">
<property name="authenticationManager" ref="authenticationManager"/>
</bean>

<security:http auto-config="true">     
      <security:custom-filter ref="myFilter" position="FORM_LOGIN_FILTER"/>
</security:http>

About filterBefore, filter.After and the default filter that I know.

+4

spring spring-java-config spring-security servlet-filters

Sobik Apr 30 '15 at 18:33

source share

1 answer

rhinds · Answer 1 · 2015-04-30T18:57:59+0000

Assuming that you generally understand the Java configuration for Spring -security, adding filters is relatively simple (for general information on updating Spring -security config for java here ):

So, in your implementation, WebSecurityConfigurerAdapterdo something like this:

@Configuration
@EnableWebSecurity
class SecurityConfiguration extends WebSecurityConfigurerAdapter {

   @Override protected void configure(HttpSecurity http) throws Exception {

       //Custom security filters
       http.addFilterBefore( myFilter(), BasicAuthenticationFilter.class );

       //Rest of the security configuration goes here
       ...
   }

- , , - (, , csrf, session config etc) myFilter() - , bean, , . addFilterAfter(), , .

API, .

Spring safe custom filter with java configuration

More articles: