This repos is actually just some test-code I have written, to mess about with security when using spring boot.
User(s)
, Role(s)
and Privilege(s)
are all stored in an H2 database, using
JPA (spring-data). Which allows for creation of Users and assignment of Roles
and Privileges can be done at runtime.
This example does not have much in the way of functionality, as it is the security part I'm messing with. In time I SHOULD add functions to create, update and delete users.
for now all is set up when the application is created, credentials and keys are logged.
Features:
/
- A simple 'hello world' page with no bells/rest
- Some simple endpoints, authenticated by the session basedformLogin
/api
- Some very simple endpoints, authenticated by headerX-Auth-Token
. Tokens are pr. user, and@PreAuthorize
can be used in the same was ase if the user was authenticated byformLogin
.