@Configuration
@ConditionalOnClass({org.springframework.security.config.annotation.web.reactive.EnableWebFluxSecurity.class,org.springframework.security.web.server.WebFilterChainProxy.class})
@ConditionalOnMissingBean({org.springframework.security.web.server.SecurityWebFilterChain.class,org.springframework.security.web.server.WebFilterChainProxy.class})
@ConditionalOnWebApplication(type=REACTIVE)
@AutoConfigureBefore(org.springframework.boot.autoconfigure.security.reactive.ReactiveSecurityAutoConfiguration.class)
@AutoConfigureAfter({HealthEndpointAutoConfiguration.class,InfoEndpointAutoConfiguration.class,WebEndpointAutoConfiguration.class,org.springframework.boot.autoconfigure.security.oauth2.client.reactive.ReactiveOAuth2ClientAutoConfiguration.class})
public class ReactiveManagementWebSecurityAutoConfiguration
extends ObjectAuto-configuration for Reactive Spring Security when actuator is on the classpath. Specifically, it permits access to the health and info endpoints while securing everything else.
- Since:
- 2.1.0