@Configuration
@ConditionalOnClass(org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter.class)
@ConditionalOnMissingBean(org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter.class)
@ConditionalOnWebApplication(type=SERVLET)
@AutoConfigureBefore(org.springframework.boot.autoconfigure.security.servlet.SecurityAutoConfiguration.class)
@AutoConfigureAfter({HealthEndpointAutoConfiguration.class,InfoEndpointAutoConfiguration.class,WebEndpointAutoConfiguration.class,org.springframework.boot.autoconfigure.security.oauth2.client.servlet.OAuth2ClientAutoConfiguration.class})
@Import({org.springframework.boot.actuate.autoconfigure.security.servlet.ManagementWebSecurityConfigurerAdapter.class,org.springframework.boot.autoconfigure.security.servlet.WebSecurityEnablerConfiguration.class})
public class ManagementWebSecurityAutoConfiguration
extends Object
Auto-configuration
for Spring Security when actuator is on the classpath. Specifically, it permits access to the health and info endpoints while securing everything else.
- Since:
- 2.1.0