I have a basic SpringBoot 2.0.5.RELEASE app. Using Spring Initializer, JPA, embedded Tomcat, Thymeleaf template engine, and package as an executable JAR file.
I have created a Custom JWT based security filter JwtFilter :
@Provider
public class JwtAuthorizationTokenFilter extends OncePerRequestFilter {
...
}
But I want to Bypass this filter only for 1 specific request / method:
"/api/v1/menus"
, when is a POST
But I don't know if it is possible in the WebSecurityConfigurerAdapter
:
JwtAuthorizationTokenFilter authenticationTokenFilter = new JwtAuthorizationTokenFilter(userDetailsService(), jwtTokenUtil, tokenHeader);
httpSecurity
.addFilterBefore(authenticationTokenFilter, UsernamePasswordAuthenticationFilter.class)
.antMatcher("/api/v1/menus")
You can override the
shouldNotFilter
method from the OncePerRequestFilter as below: