chris-carneiro · February 1, 2018 13:53
diff --git a/WebSecurityConfigurer.java b/WebSecurityConfigurer.java

 import org.springframework.boot.actuate.autoconfigure.ManagementServerProperties;
 import org.springframework.boot.autoconfigure.SpringBootApplication;
 import org.springframework.boot.builder.SpringApplicationBuilder;
 import org.springframework.core.annotation.Order;
 import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
 import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
 import org.springframework.security.web.authentication.www.BasicAuthenticationEntryPoint;

 /**
 * Created by ChrisC on 10/07/17.
 */

 @EnableWebSecurity
 @Order(ManagementServerProperties.ACCESS_OVERRIDE_ORDER)
 public class WebSecurityAuthenticator extends WebSecurityConfigurerAdapter {

    @Override
    protected void configure(AuthenticationManagerBuilder auth) throws Exception {
        auth.inMemoryAuthentication().withUser("user").password("password").roles("ACTUATOR");
    }

    @Override
    protected void configure(HttpSecurity http) throws Exception {
        BasicAuthenticationEntryPoint authenticationEntryPoint = new BasicAuthenticationEntryPoint();
        http.csrf().disable(); // remove for any request that could be processed by a browser by normal users
        authenticationEntryPoint.setRealmName("/");
        http.httpBasic().authenticationEntryPoint(authenticationEntryPoint);
        http.authorizeRequests().antMatchers("/actuator/health").permitAll();
    }

 }

	import org.springframework.boot.actuate.autoconfigure.ManagementServerProperties;
	import org.springframework.boot.autoconfigure.SpringBootApplication;
	import org.springframework.boot.builder.SpringApplicationBuilder;
	import org.springframework.core.annotation.Order;
	import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
	import org.springframework.security.config.annotation.web.builders.HttpSecurity;
	import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
	import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
	import org.springframework.security.web.authentication.www.BasicAuthenticationEntryPoint;

	/**
	* Created by ChrisC on 10/07/17.
	*/

	@EnableWebSecurity
	@Order(ManagementServerProperties.ACCESS_OVERRIDE_ORDER)
	public class WebSecurityAuthenticator extends WebSecurityConfigurerAdapter {

	@Override
	protected void configure(AuthenticationManagerBuilder auth) throws Exception {
	auth.inMemoryAuthentication().withUser("user").password("password").roles("ACTUATOR");
	}

	@Override
	protected void configure(HttpSecurity http) throws Exception {
	BasicAuthenticationEntryPoint authenticationEntryPoint = new BasicAuthenticationEntryPoint();
	http.csrf().disable(); // remove for any request that could be processed by a browser by normal users
	authenticationEntryPoint.setRealmName("/");
	http.httpBasic().authenticationEntryPoint(authenticationEntryPoint);
	http.authorizeRequests().antMatchers("/actuator/health").permitAll();
	}

	}