[BAEL-9165] by sgrverma23: Guide to disable Spring Security (#18351)

* BAEL-9165:sgrverma23- Adding spring-disable-security inside parent spring-security-module

* BAEL-9165:sgrverma23- added spring-security-common-security-configuration inside spring-disable-security module

* BAEL-9165:sgrverma23- added spring-security-noauth-cnofig inside spring-disable-security module

* BAEL-9165:sgrverma23- added spring-security--noauth-nodependencies inside spring-disable-security module

* BAEL-9165:sgrverma23- added spring-security-noauth-profile inside spring-disable-security module

* BAEL-9165:sgrverma23- refactored pom.xml and readme file

Author: sgrverma23

spring-security-modules/pom.xml

@@ -59,6 +59,7 @@
         <module>spring-security-pkce-spa</module>
         <module>spring-security-compromised-password</module>
         <module>spring-security-authorization</module>
+        <module>spring-disable-security</module>
         <module>spring-security-dynamic-registration</module>
         <module>spring-security-ott</module>
         <module>spring-security-passkey</module>

spring-security-modules/spring-disable-security/README.md

@@ -0,0 +1,2 @@
+### Relevant Articles
+

spring-security-modules/spring-disable-security/pom.xml

@@ -0,0 +1,53 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://maven.apache.org/POM/4.0.0" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+    <artifactId>spring-disable-security</artifactId>
+    <name>spring-disable-security</name>
+    <packaging>pom</packaging>
+
+    <parent>
+        <groupId>com.baeldung</groupId>
+        <artifactId>parent-boot-3</artifactId>
+        <version>0.0.1-SNAPSHOT</version>
+        <relativePath>../../parent-boot-3</relativePath>
+    </parent>
+
+    <modules>
+        <module>spring-security-noauth-profile</module>
+        <module>spring-security-noauth-config</module>
+        <module>spring-security-noauth-nodependencies</module>
+        <module>spring-security-common-security-configuration</module>
+    </modules>
+
+    <dependencies>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-web</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-test</artifactId>
+            <scope>test</scope>
+        </dependency>
+    </dependencies>
+
+    <build>
+        <plugins>
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-compiler-plugin</artifactId>
+                <version>${maven-compiler-plugin.version}</version>
+                <configuration>
+                    <parameters>true</parameters>
+                </configuration>
+            </plugin>
+        </plugins>
+    </build>
+
+    <properties>
+        <spring-boot.version>3.3.1</spring-boot.version>
+        <logback.version>1.5.6</logback.version>
+        <maven-compiler-plugin.version>3.12.1</maven-compiler-plugin.version>
+    </properties>
+
+</project>

spring-security-modules/spring-disable-security/spring-security-common-security-configuration/pom.xml

@@ -0,0 +1,33 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0"
+    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+    xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 https://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+    <artifactId>spring-security-common-security-configuration</artifactId>
+    <version>1.0.0</version>
+    <name>spring-security-common-security-configuration</name>
+    <description>Disable Spring Security</description>
+
+    <parent>
+        <groupId>com.baeldung</groupId>
+        <artifactId>spring-disable-security</artifactId>
+        <version>0.0.1-SNAPSHOT</version>
+    </parent>
+
+    <dependencies>
+    <dependency>
+        <groupId>org.springframework.boot</groupId>
+        <artifactId>spring-boot-starter-security</artifactId>
+    </dependency>
+    </dependencies>
+
+    <build>
+        <plugins>
+            <plugin>
+                <groupId>org.springframework.boot</groupId>
+                <artifactId>spring-boot-maven-plugin</artifactId>
+            </plugin>
+        </plugins>
+    </build>
+
+</project>

spring-security-modules/spring-disable-security/spring-security-common-security-configuration/src/main/java/com/baeldung/DisableSpringSecurityApplication.java

@@ -0,0 +1,13 @@
+package com.baeldung;
+
+import org.springframework.boot.SpringApplication;
+import org.springframework.boot.autoconfigure.SpringBootApplication;
+
+@SpringBootApplication
+public class DisableSpringSecurityApplication {
+
+    public static void main(String[] args) {
+        SpringApplication.run(DisableSpringSecurityApplication.class, args);
+    }
+
+}

spring-security-modules/spring-disable-security/spring-security-common-security-configuration/src/main/java/com/baeldung/controller/MessageController.java

@@ -0,0 +1,19 @@
+package com.baeldung.controller;
+
+
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RestController;
+import org.springframework.http.ResponseEntity;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RestController;
+
+@RestController
+@RequestMapping("/api")
+public class MessageController {
+    @GetMapping("/endpoint")
+    public ResponseEntity<String> publicEndpoint() {
+        return ResponseEntity.ok("This is a public endpoint.");
+    }
+}

spring-security-modules/spring-disable-security/spring-security-common-security-configuration/src/main/java/com/baeldung/security/SecurityConfiguration.java

@@ -0,0 +1,21 @@
+package com.baeldung.security;
+
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
+import org.springframework.security.config.annotation.web.configurers.AbstractHttpConfigurer;
+import org.springframework.security.web.SecurityFilterChain;
+
+@Configuration
+@EnableWebSecurity
+public class SecurityConfiguration {
+    @Bean
+    public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
+
+        http
+                .authorizeHttpRequests(auth -> auth.anyRequest().permitAll())
+                .csrf(AbstractHttpConfigurer::disable);
+        return http.build();
+    }
+}

spring-security-modules/spring-disable-security/spring-security-common-security-configuration/src/main/resources/application.properties

@@ -0,0 +1,22 @@
+import org.junit.jupiter.api.Test;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.boot.test.autoconfigure.web.servlet.AutoConfigureMockMvc;
+import org.springframework.boot.test.context.SpringBootTest;
+import org.springframework.test.web.servlet.MockMvc;
+import com.baeldung.DisableSpringSecurityApplication;
+import static org.springframework.test.web.servlet.request.MockMvcRequestBuilders.get;
+import static org.springframework.test.web.servlet.result.MockMvcResultMatchers.status;
+
+@SpringBootTest(classes = DisableSpringSecurityApplication.class)
+@AutoConfigureMockMvc
+public class CommonSecurityConfigTest {
+
+    @Autowired
+    private MockMvc mockMvc;
+
+    @Test
+    public void whenAccessingAnyEndpoint_thenReturnOk() throws Exception {
+        mockMvc.perform(get("/api/endpoint"))
+                .andExpect(status().isOk());
+    }
+}

spring-security-modules/spring-disable-security/spring-security-common-security-configuration/src/test/java/com/baeldung/CommonSecurityConfigTest.java

@@ -0,0 +1,19 @@
+package com.baeldung;
+
+
+import com.baeldung.DisableSpringSecurityApplication;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.springframework.boot.test.context.SpringBootTest;
+import org.springframework.test.annotation.DirtiesContext;
+import org.springframework.test.context.junit4.SpringRunner;
+
+@RunWith(SpringRunner.class)
+@SpringBootTest(classes = DisableSpringSecurityApplication.class)
+public class DisableSpringSecurityApplicationTest {
+
+    @Test
+    public void whenSpringContextIsBootstrapped_thenNoExceptions() {
+    }
+}
+