java.lang.Object

de.codecamp.vaadin.security.spring.config.VaadinSecurityConfigurer

public class VaadinSecurityConfigurer extends Object

Configures a few security basics for a Vaadin UI and everything required for the standard authentication provided by the VaadinAuthenticationService.

Disables CSRF support for Vaadin-related requests. Vaadin already handles this on its own.
Only URLs below the UI root URL, framework and endpoint requests will pass through the Spring Security filter chain. Unless you add more, that it.
Does NOT restrict access based on URLs or requests. Access control is handled by RouteAccessControl on a per view-basis and by EndpointAccessChecker per endpoint class or method.
If enabled, configures the form login and logout endpoints as needed for the standard authentication.

Constructor Summary

Constructors

Constructor

Description

VaadinSecurityConfigurer()
Method Summary

Modifier and Type

Method

Description

void

configure(org.springframework.security.config.annotation.web.builders.HttpSecurity http)

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details
- VaadinSecurityConfigurer
  
  public VaadinSecurityConfigurer()
Method Details
- configure
  
  public void configure(org.springframework.security.config.annotation.web.builders.HttpSecurity http) throws Exception
  
  Throws:
  
  Exception

Class VaadinSecurityConfigurer

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Details

VaadinSecurityConfigurer

Method Details

configure