Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Can I specifically disable PATCH in spring-data-rest repository?

Tags:

spring-boot

spring-data-rest

Client of our API's don't use patch and I want to avoid it for maintenance overhead. I don't want to disable POST or PUT.

like image 918
utkarsh dubey Avatar asked Oct 17 '22 20:10

utkarsh dubey

1 Answers

It can be handled at the security level, by extending WebSecurityConfigurerAdapter (available in spring-security-config) and overriding configure(HttpSecurity http) to deny PATCH requests to the target url :

@Configuration
@EnableWebSecurity
public class WebSecurityConfiguration extends WebSecurityConfigurerAdapter {

    @Override
    protected void configure(HttpSecurity http) throws Exception {
        http.authorizeRequests()
                .antMatchers(HttpMethod.PATCH, "/path_to_target_url").denyAll();
    }

}

Any attempt to PATCH to the target URL will fail with a 401 Unauthorized error.

like image 182
Marc Tarin Avatar answered Oct 20 '22 23:10

Marc Tarin
Sign in to Comment

Related questions

How to map list of arbitrary name value pair from @RequestBody to java object
No suitable constructor found for type [simple type, class java.time.LocalDateTime]
Fongo - OperationExecutor not found
Spring cloud task's SimpleTaskConfiguration and spring batch's SimpleBatchConfiguration preventing spring boot auto configuration of XA transactions
where to put the log4j.properties file in a spring boot application
Issues with @SpringBootTest: Context not loading and Spock unable to @Autowire
Confusion with Spring Security-based authentication with mongo backed db
How to add non-standardized sql functions in Spring Boot application?
Zuul with web socket
Spring boot not overriding Exception using @ControllerAdvice
Where does spring boot configure default application.properties
How can I get a custom Principal object with Spring using OAuth2?
Unit testing Rest client with ClientHttpRequestInterceptor
Spring Boot useTestClasspath throws CannotLoadBeanClassException and ClassNotFoundException
How to set the property requestAttributesEnabled for AccessLogValve in Apache Tomcat, in a spring-boot application?
Response not loading when using utf-8 chars in header with spring-boot rest and Swagger
How to configure Spring Boot and Spring Security to support both form login and Google OAuth2 login
Spring - Where should my config classes be in a multiple-module project?
In Spring Boot, how to pass a controller model variable to Thymeleaf th:src?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!