Updated to Spring Security 5.7.3 - resolved deprecated code

Author: darbyluv2code

07-spring-security-5/solution-code-spring-security-demo-09-jdbc-bcrypt/pom.xml

@@ -3,15 +3,15 @@
 <modelVersion>4.0.0</modelVersion>
 
 <groupId>com.luv2code</groupId>
-<artifactId>spring-security-demo</artifactId>
+<artifactId>spring-security-demo-09-jdbc-bcrypt</artifactId>
 <version>1.0</version>
 <packaging>war</packaging>
 
-<name>spring-security-demo</name>
+<name>spring-security-demo-09-jdbc-bcrypt</name>
 
 <properties>
-<springframework.version>5.0.17.RELEASE</springframework.version>
-<springsecurity.version>5.0.0.RELEASE</springsecurity.version>
+<springframework.version>5.3.22</springframework.version>
+<springsecurity.version>5.7.3</springsecurity.version>
 
 <maven.compiler.source>1.8</maven.compiler.source>
 <maven.compiler.target>1.8</maven.compiler.target>

07-spring-security-5/solution-code-spring-security-demo-09-jdbc-bcrypt/src/main/java/com/luv2code/springsecurity/demo/config/DemoSecurityConfig.java

@@ -3,54 +3,58 @@
 import javax.sql.DataSource;
 
 import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
-import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
-import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+import org.springframework.security.provisioning.JdbcUserDetailsManager;
+import org.springframework.security.provisioning.UserDetailsManager;
+import org.springframework.security.web.SecurityFilterChain;
 
 @Configuration
 @EnableWebSecurity
-public class DemoSecurityConfig extends WebSecurityConfigurerAdapter {
+public class DemoSecurityConfig {
 
 // add a reference to our security data source
-
-@Autowired
+
 private DataSource securityDataSource;
 
-
-@Override
-protected void configure(AuthenticationManagerBuilder auth) throws Exception {
-
-// use jdbc authentication ... oh yeah!!!
-
-auth.jdbcAuthentication().dataSource(securityDataSource);
-
-}
-
-@Override
-protected void configure(HttpSecurity http) throws Exception {
-
-http.authorizeRequests()
-.antMatchers("/").hasRole("EMPLOYEE")
-.antMatchers("/leaders/**").hasRole("MANAGER")
-.antMatchers("/systems/**").hasRole("ADMIN")
-.and()
-.formLogin()
-.loginPage("/showMyLoginPage")
-.loginProcessingUrl("/authenticateTheUser")
-.permitAll()
-.and()
-.logout().permitAll()
-.and()
-.exceptionHandling().accessDeniedPage("/access-denied");
-
+@Autowired
+public DemoSecurityConfig(DataSource theSecurityDataSource) {
+securityDataSource = theSecurityDataSource;
 }
+
+ @Bean
+ public UserDetailsManager userDetailsService() {
+ return new JdbcUserDetailsManager(securityDataSource);
+ }
+
+ @Bean
+ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
+ 
+ return http
+ .authorizeRequests(configurer ->
+ configurer
+	.antMatchers("/").hasRole("EMPLOYEE")
+	.antMatchers("/leaders/**").hasRole("MANAGER")
+	.antMatchers("/systems/**").hasRole("ADMIN"))
+
+ .formLogin(configurer ->
+ configurer
+ .loginPage("/showMyLoginPage")
+ .loginProcessingUrl("/authenticateTheUser")
+ .permitAll())
+
+ .logout(configurer -> 
+ configurer
+	.permitAll())
+
+ .exceptionHandling(configurer ->
+ configurer
+	.accessDeniedPage("/access-denied"))
+
+ .build();
+ 
+ }
 
-}
-
-
-
-
-
-
+}

07-spring-security-5/solution-code-spring-security-demo-09-jdbc-bcrypt/src/main/resources/persistence-mysql.properties

@@ -1,7 +1,7 @@
 #
 # JDBC connection properties
 #
-jdbc.driver=com.mysql.jdbc.Driver
+jdbc.driver=com.mysql.cj.jdbc.Driver
 jdbc.url=jdbc:mysql://localhost:3306/spring_security_demo_bcrypt?useSSL=false&serverTimezone=UTC
 jdbc.user=springstudent
 jdbc.password=springstudent