is graphiQL supports spring security ? graphiQL UI is not working after adding spring security

Question

I tried below code for allowing js and css file

@Override
public void configure(WebSecurity web) throws Exception {
    web.ignoring().antMatchers("/v2/api-docs",
                               "/configuration/ui",
                               "/swagger-resources/**",
                               "/configuration/security",
                               "/swagger-ui.html",
                               "/webjars/**",
                               "/graphiql",
                               "/resources/**"
                                );
}



  /*@Override
  public void configure(WebSecurity web) throws Exception {
    web.ignoring().antMatchers("/resources/**"); // #3
  }*/

  @Override
  protected void configure(HttpSecurity http) throws Exception {
    http.authorizeRequests()
        .antMatchers("/resources/**").permitAll()
        .antMatchers("/*.js").permitAll()
        .antMatchers("/*.css").permitAll()
        .antMatchers("/*.html").permitAll()
        .and().csrf().disable();
  }

I feel there is problem with Graphiql UI ? Can anyone please help ?

For reference GraphiQL UI for query GraphiQL UI

score 2 · Answer 1 · answered Jun 30 '20 at 11:40

2

I used the next matchers to allow rendering graphiQl

.antMatchers("/graphiql", "/vendor/**").permitAll()

GraphiQL version is 5.0.2

answered Jun 30 '20 at 11:40

Евгений Рябов

85
8

in which method? on `web.ignoring()` or `http.authorizeRequests()`? – maxxyme Sep 11 '20 at 08:35
http.authorizeRequests() – Евгений Рябов Sep 25 '20 at 14:20

is graphiQL supports spring security ? graphiQL UI is not working after adding spring security

1 Answers1