diff --git a/src/main/java/com/example/nto/config/WebSecurityConfig.java b/src/main/java/com/example/nto/config/WebSecurityConfig.java index 350422c..3d477d5 100644 --- a/src/main/java/com/example/nto/config/WebSecurityConfig.java +++ b/src/main/java/com/example/nto/config/WebSecurityConfig.java @@ -5,7 +5,6 @@ import org.springframework.context.annotation.Bean; import org.springframework.context.annotation.Configuration; import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder; import org.springframework.security.config.annotation.web.builders.HttpSecurity; -import org.springframework.security.config.annotation.web.builders.WebSecurity; import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity; import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter; import org.springframework.security.core.userdetails.UserDetailsService; @@ -33,21 +32,13 @@ public class WebSecurityConfig extends WebSecurityConfigurerAdapter { http.csrf().disable() .authorizeRequests() .antMatchers("/h2-console/**").permitAll() - .antMatchers("/api/v1/images/**").permitAll() - .antMatchers("/api/v1/volunteers/login").permitAll() - .antMatchers("/api/v1/volunteers/register").permitAll() - - .antMatchers("/api/v1/**").permitAll() - //.antMatchers("/api/v1/**").hasAnyAuthority("ROLE_USER", "ROLE_ADMIN") + .antMatchers("/api/v1/**").hasAnyAuthority("ROLE_USER", "ROLE_ADMIN") + .antMatchers("/api/v1/authorization/login").permitAll() + .antMatchers("/api/v1/authorization/register").permitAll() .anyRequest().authenticated() .and() .httpBasic() .and() .headers().frameOptions().disable(); } - - @Override - public void configure(WebSecurity web) { - web.ignoring().antMatchers("/api/v1/volunteers/images"); - } } diff --git a/src/main/java/com/example/nto/controller/AuthorizationController.java b/src/main/java/com/example/nto/controller/AuthorizationController.java index 54aa07b..c739503 100644 --- a/src/main/java/com/example/nto/controller/AuthorizationController.java +++ b/src/main/java/com/example/nto/controller/AuthorizationController.java @@ -17,6 +17,7 @@ public class AuthorizationController { @GetMapping("/login") public ResponseEntity login(Authentication authentication) { + return ResponseEntity.ok(employeeService.getByEmail(authentication.getName())); } diff --git a/src/main/java/com/example/nto/controller/EmployeeController.java b/src/main/java/com/example/nto/controller/EmployeeController.java index a43b3ba..194868f 100644 --- a/src/main/java/com/example/nto/controller/EmployeeController.java +++ b/src/main/java/com/example/nto/controller/EmployeeController.java @@ -65,5 +65,4 @@ public class EmployeeController { employeeService.patchBlockEmployee(employeeId, blockStatus); return ResponseEntity.noContent().build(); } - } diff --git a/src/main/java/com/example/nto/domain/entity/Employee.java b/src/main/java/com/example/nto/domain/entity/Employee.java index 3b9c8ad..12e7515 100644 --- a/src/main/java/com/example/nto/domain/entity/Employee.java +++ b/src/main/java/com/example/nto/domain/entity/Employee.java @@ -94,11 +94,6 @@ public class Employee implements UserDetails { return List.of(this.role); } - @Override - public String getPassword() { - return this.password; - } - @Override public String getUsername() { return this.email;