diff --git a/pom.xml b/pom.xml
index fdac1ff..d9decdd 100644
--- a/pom.xml
+++ b/pom.xml
@@ -38,6 +38,10 @@
org.springframework.boot
spring-boot-starter-security
+
+ org.springframework.boot
+ spring-boot-starter-oauth2-client
+
org.springframework.boot
spring-boot-starter-web
diff --git a/src/main/java/de/zendric/app/xpensely_server/controller/HomeController.java b/src/main/java/de/zendric/app/xpensely_server/controller/HomeController.java
new file mode 100644
index 0000000..12a8948
--- /dev/null
+++ b/src/main/java/de/zendric/app/xpensely_server/controller/HomeController.java
@@ -0,0 +1,13 @@
+package de.zendric.app.xpensely_server.controller;
+
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.RestController;
+
+@RestController
+class HomeController {
+
+ @GetMapping("/")
+ public String getAll() {
+ return "Welcome";
+ }
+}
\ No newline at end of file
diff --git a/src/main/java/de/zendric/app/xpensely_server/security/SecurityConfig.java b/src/main/java/de/zendric/app/xpensely_server/security/SecurityConfig.java
index 8843cb7..1d7caae 100644
--- a/src/main/java/de/zendric/app/xpensely_server/security/SecurityConfig.java
+++ b/src/main/java/de/zendric/app/xpensely_server/security/SecurityConfig.java
@@ -2,31 +2,19 @@ package de.zendric.app.xpensely_server.security;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
+import org.springframework.security.config.Customizer;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
import org.springframework.security.web.SecurityFilterChain;
@Configuration
+@EnableWebSecurity
public class SecurityConfig {
-
@Bean
public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
- http
- .authorizeHttpRequests(authorize -> authorize
- .anyRequest().permitAll() // Allow all requests without authentication
- )
- .csrf().disable(); // Disable CSRF for development purposes
+ http.authorizeHttpRequests(auth -> auth
+ .anyRequest().authenticated()).oauth2Login(Customizer.withDefaults());
return http.build();
}
-
- // @Bean
- // public SecurityFilterChain securityFilterChain(HttpSecurity http) throws
- // Exception {
- // return http.authorizeHttpRequests(auth -> {
- // auth.requestMatchers("/").permitAll();
- // auth.anyRequest().permitAll();
- // // auth.anyRequest().authenticated();
- // }).oauth2Login(Customizer.withDefaults())
- // .build();
- // }
}