why homepage is not reachable after adding spring security

Anna Uspenskaya

I’m adding spring security to the web site My goal is to show all images, home.html, and index.html to all users (without logging in).

I’ve allowed all requests for images and home and index pages, but still anonymous users cannot proceed to the home page without logging in

My security config Java

protected void configure(HttpSecurity http) throws Exception {
    http
            .authorizeRequests()
            .antMatchers("/admin").hasRole("ADMIN")
            .antMatchers("/", "home", "index").permitAll()
            .antMatchers("/styles.css", "/css/**", "/js/**", "/fonts/**", "/images/**").permitAll()
            .anyRequest().hasRole("USER")
            .and()
            .formLogin()
            .loginPage("/login")
            .failureUrl("/login?login_error=1")
            .permitAll()
            .and()
            .logout()
            .logoutSuccessUrl("/")
            .permitAll();
}

My index.html page

<!doctype html>
<html lang="en"       
      xmlns="http://www.w3.org/1999/xhtml"
      xmlns:th="http://www.thymeleaf.org"
      xmlns:sec="http://www.thymeleaf.org/extras/spring-security">

    <body>

                    <a href="login" class="btn btn-outline-danger btn-lg">login page </a>
                    <a href="home" class="btn btn-outline-danger btn-lg">home page</a>


    </body>
</html>

my Image

Dominik

Have you tried refactoring like this: .antMatchers("/", "home", "index").permitAll() -> .antMatchers("/", "/home", "/index").permitAll() ?

Collected from the Internet

Please contact [email protected] to delete if infringement.

edited at2021-05-19

Comments

0 comments

Testing Spring Controller POST method after adding Spring Security on Kotlin

why code after the return statement is reachable in javascript

Spring http security stop working after adding OAuth2

Why do I get a still reachable block after mallocing a char*?

why homepage is not reachable after adding spring security

why homepage is not reachable after adding spring security

pump.io port in URL

grouping by column variables and appending a new variable based on condition

Failed to listen on localhost:8000 (reason: Cannot assign requested address)

Can't pre-populate phone number and message body in SMS link on iPhones when SMS app is not running in the background

Group boxplot data while keeping their individual X axis labels in ggplot2 in R

Vector input in shiny R and then use it

BigQuery - concatenate ignoring NULL

Can a 32-bit antivirus program protect you from 64-bit threats

How to remove the extra space from right in a webview?

How to how increase/decrease compared to adjacent cell

android.content.Context.getSharedPreferences(java.lang.String, int)' on a null object reference id DBhandler

Getting 502 Bad Gateway Error While Deploying WordPress On Dockerized Lemp?

Type 'number' is not assignable to type 'NgIterable<any>' when trying to async observe a datasource

Check if a number is a perfect square

FFmpeg resize without upscaling

How do I display Label text character-by-character?

How to show an image in a View with ASP.NET MVC 5? (Many suggestions failed so far)

Json Schema - Conditional Evaluation with RegEx

PlayOnLinux displays weird looking window on 18.04 for MS Office installation

JMeter: Why get error when try to save test plan

Emulator wrong screen resolution in Android Studio 1.3