Using public folders

Some folders need their contents to be accessible without authentication, for example, the folder containing CSS files, the folder containing JavaScript files, and the folder containing static images. None of these usually contain confidential information and some of their files may be necessary to display the login page and the public pages of the website properly.

How to do it…

In the security configuration class, override the configure(WebSecurity web) method to define the public folders:

@Override
public void configure(WebSecurity web) throws Exception {
    web
      .ignoring()
        .antMatchers("/css/**")
        .antMatchers("/js/**");
        .antMatchers("/img/**");
}

There's more…

It's also possible to define them in the standard configure() method: ...

Get Spring Cookbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Spring Cookbook by Jérôme Jaglale

Using public folders

How to do it…

There's more…

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly