diff options
| author | realtradam <[email protected]> | 2024-07-25 22:52:33 -0400 |
|---|---|---|
| committer | realtradam <[email protected]> | 2024-07-25 22:52:33 -0400 |
| commit | 6b342f97f6a605b7e1fe34584abbbf962ca39b7c (patch) | |
| tree | 5d81805b3167b247e203a78a0c84bf11865ee9cd /backend/src/main/java | |
| parent | c01264b60b7ad8bb3eb3dcf4d3ec0b77bcd4c3d1 (diff) | |
| download | spring-blog-6b342f97f6a605b7e1fe34584abbbf962ca39b7c.tar.gz spring-blog-6b342f97f6a605b7e1fe34584abbbf962ca39b7c.zip | |
implement user login
Diffstat (limited to 'backend/src/main/java')
| -rw-r--r-- | backend/src/main/java/com/blog/web/controllers/AuthController.java | 24 | ||||
| -rw-r--r-- | backend/src/main/java/com/blog/web/security/SecurityConfig.java | 2 |
2 files changed, 3 insertions, 23 deletions
diff --git a/backend/src/main/java/com/blog/web/controllers/AuthController.java b/backend/src/main/java/com/blog/web/controllers/AuthController.java index 1f854c3..a870086 100644 --- a/backend/src/main/java/com/blog/web/controllers/AuthController.java +++ b/backend/src/main/java/com/blog/web/controllers/AuthController.java @@ -19,22 +19,6 @@ public class AuthController { this.userService = userService; } - @GetMapping("/userlogin") - public String login(Model model) { - final UserEntity user = userService.getLoggedInUser().orElse(new UserEntity()); - model.addAttribute("user", user); - return "auth/login"; - } - - /* - @GetMapping("/register") - public String getRegisterForm(Model model) { - final RegistrationDto user = new RegistrationDto(); - model.addAttribute("user", user); - return "auth/register"; - } - */ - //@PostMapping("/register/save") @PostMapping("/register") public RegistrationDto register(@Valid @ModelAttribute("user") RegistrationDto user, BindingResult result) { @@ -48,13 +32,9 @@ public class AuthController { result.rejectValue("username", "There is already a user with this username"); } - if (result.hasErrors()) { - //model.addAttribute("user", user); - //return "register"; - return user; + if (!result.hasErrors()) { + userService.saveUser(user); } - userService.saveUser(user); - //return "redirect:/articles?success"; return user; } } diff --git a/backend/src/main/java/com/blog/web/security/SecurityConfig.java b/backend/src/main/java/com/blog/web/security/SecurityConfig.java index 17e09c7..2be6909 100644 --- a/backend/src/main/java/com/blog/web/security/SecurityConfig.java +++ b/backend/src/main/java/com/blog/web/security/SecurityConfig.java @@ -28,7 +28,7 @@ public class SecurityConfig { @Bean public SecurityFilterChain filterChain(HttpSecurity http) throws Exception { // disabling csrf leaves us vulnerable, in a real production app do not do this - http.csrf(c -> c.disable()).cors(c -> c.disable()).authorizeHttpRequests(auths -> auths.anyRequest().permitAll()).formLogin(form -> form.loginPage("/userlogin").usernameParameter("username").passwordParameter("password").defaultSuccessUrl("/articles").loginProcessingUrl("/userlogin").failureUrl("/userlogin?error=true").permitAll()).logout(logout -> logout.logoutUrl("/logout").logoutSuccessUrl("/articles")); + http.csrf(c -> c.disable()).cors(c -> c.disable()).authorizeHttpRequests(auths -> auths.anyRequest().permitAll()).formLogin(form -> form.loginPage("/login").usernameParameter("username").passwordParameter("password").defaultSuccessUrl("/").loginProcessingUrl("/userlogin").failureUrl("/userlogin?error=true").permitAll()).logout(logout -> logout.logoutUrl("/logout").logoutSuccessUrl("/articles")); return http.build(); } |