Spring security set Token on Headers

Asked

Viewed 211 times

1

I configured Cross to accept the request in Angularjs, but the answer comes without the token.
How to add token to Response?

Spring security:

@Override
protected void configure(HttpSecurity http) throws Exception {
    http.headers().cacheControl();

    http.csrf().disable() // disable csrf for our requests.
    .sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS)
    .and()
    .cors()
    .and()
    .authorizeRequests()
    .antMatchers("/").permitAll()
    .antMatchers(HttpMethod.GET,"/conectado").permitAll()
    .antMatchers(HttpMethod.POST,"/login").permitAll()
    .antMatchers(HttpMethod.GET,"/install/admin").permitAll()
    .antMatchers(HttpMethod.POST,"/login/recuperarSenha").permitAll()
    .antMatchers(HttpMethod.POST,"/api/**").permitAll()
    .anyRequest().authenticated()
    .and()
    // We filter the api/login requests
    .addFilterBefore(new JWTLoginFilter("/login", authenticationManager(), getTokenAuthenticationService()), UsernamePasswordAuthenticationFilter.class)
    // And filter other requests to check the presence of JWT in header
    .addFilterBefore(new JWTAuthenticationFilter(getTokenAuthenticationService()), UsernamePasswordAuthenticationFilter.class);

}

@Autowired
public void configureGlobal(AuthenticationManagerBuilder auth) throws Exception {
    auth.userDetailsService(userDetailsService).passwordEncoder(bCryptPasswordEncoder());
}

@Bean
public CorsConfigurationSource corsConfigurationSource() {
    CorsConfiguration configuration = new CorsConfiguration();
    configuration.setAllowCredentials(true);
    configuration.addAllowedOrigin("*");
    configuration.addAllowedHeader("*");
    configuration.addAllowedMethod("*");
    UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
    source.registerCorsConfiguration("/**", configuration);
    return source;
}
No answers

Browser other questions tagged

You are not signed in. Login or sign up in order to post.