eaf40f99ed4b9c6339f4ece82861f630a4ff967c,spring-session/ui/src/main/java/demo/UiApplication.java,SecurityConfiguration,configure,#HttpSecurity#,46
Before Change
http.httpBasic().and().logout().and().authorizeRequests()
.antMatchers("/index.html", "/home.html", "/login.html", "/").permitAll().anyRequest()
.authenticated().and().csrf()
.csrfTokenRepository(csrfTokenRepository()).and()
.addFilterAfter(csrfHeaderFilter(), CsrfFilter.class);
}
private Filter csrfHeaderFilter() {
After Change
.antMatchers("/index.html", "/home.html", "/login.html", "/").permitAll()
.anyRequest().authenticated().and()
.csrf()
.csrfTokenRepository(new CookieCsrfTokenRepository());
// @formatter:on
}
}