replace deprecated method

pstorch · pstorch · commit 07b2548b5dbc · 2024-12-01T17:33:16.000+01:00
diff --git a/adapter/src/main/kotlin/org/railwaystations/rsapi/adapter/web/auth/WebSecurityConfig.kt b/adapter/src/main/kotlin/org/railwaystations/rsapi/adapter/web/auth/WebSecurityConfig.kt
@@ -63,17 +63,24 @@ class WebSecurityConfig(
     @Order(1)
     @Profile("!mockMvcTest")
     fun oauthFilterChain(http: HttpSecurity): SecurityFilterChain {
-        OAuth2AuthorizationServerConfiguration.applyDefaultSecurity(http)
+        val authorizationServerConfigurer = OAuth2AuthorizationServerConfigurer.authorizationServer()
         http
+            .with(authorizationServerConfigurer) {
+                it.oidc(withDefaults())
+                    .authorizationEndpoint { authorizationEndpoint -> authorizationEndpoint.consentPage("/oauth2/consent") }
+            }
+            .authorizeHttpRequests { authorize ->
+                authorize.anyRequest().authenticated()
+            }
             .securityMatcher("/oauth2/**")
             .cors { corsConfigurer ->
                 corsConfigurer.configurationSource {
-                    val cors = CorsConfiguration()
-                    cors.setAllowedOriginPatterns(listOf("*"))
-                    cors.allowedMethods = listOf("GET", "POST", "OPTIONS")
-                    cors.allowedHeaders = listOf("Authorization")
-                    cors.allowCredentials = true
-                    cors
+                    CorsConfiguration().apply {
+                        allowedOriginPatterns = listOf("*")
+                        allowedMethods = listOf("GET", "POST", "OPTIONS")
+                        allowedHeaders = listOf("Authorization")
+                        allowCredentials = true
+                    }
                 }
             }
             .exceptionHandling { exceptions ->
@@ -83,9 +90,6 @@ class WebSecurityConfig(
                     )
             }
             .oauth2ResourceServer { serverConfigurer -> serverConfigurer.jwt(withDefaults()) }
-            .getConfigurer(OAuth2AuthorizationServerConfigurer::class.java)
-            .oidc(withDefaults())
-            .authorizationEndpoint { authorizationEndpoint -> authorizationEndpoint.consentPage("/oauth2/consent") }
 
         return http.build()
     }
