Questions tagged [spring-boot-security]
49 questions
0
votes
0 answers
spring boot two distinct authentication methods for distinct endpoints
I need to configure two endpoint /secure1 /secure2
with saml2 authentication
with x509 authentication
I don't want that if a session is authorized for an endpoint then it is authorized also for the other.
To access 1) saml2 is mandatory
To access…
frhack
- 4,862
- 2
- 28
- 25
0
votes
1 answer
how to make a specific GraphQL query or mutation as public API in spring boot security?
how to make a specific GraphQL query as public API in spring boot security?
In REST API, we can specify the URL as public like the following code
@Bean
public WebSecurityCustomizer webSecurityCustomizer() {
return web ->…
Thirumal
- 8,280
- 11
- 53
- 103
-1
votes
1 answer
Springboot OAuth2 CSRF enabled XSRF token not matching
I have this demo springboot app and my goal is to understand more about oauth2, I was able to make it work using github auth I configured like this
spring:
security:
oauth2:
client:
registration:
github:
…
mark ortiz
- 659
- 1
- 6
- 13
-1
votes
1 answer
Reactive Spring Security: using custom reactive method in @PreAuthorize Spring-EL
Is there any way to use reactive method in @PreAuthorize?
[environment]
spring boot 3.0.1
language: kotlin
@EnableWebFluxSecurity
@EnableReactiveMethodSecurity
// My custom method
fun role(authentication: Authentication): Boolean {
…
unD3R
- 34
- 5