feat(web): enable WebSecurityConfig conditionally by kayenta.security…

….enabled property (#748) Co-authored-by: Justin Field <justin.field@armory.io>
spinnaker · Jun 24, 2020 · 235bcb2 · 235bcb2
1 parent c2d7251
commit 235bcb2
Showing 1 changed file with 5 additions and 0 deletions.
diff --git a/kayenta-web/src/main/java/com/netflix/kayenta/config/WebSecurityConfig.java b/kayenta-web/src/main/java/com/netflix/kayenta/config/WebSecurityConfig.java
@@ -16,6 +16,7 @@
 
 package com.netflix.kayenta.config;
 
+import org.springframework.boot.autoconfigure.condition.ConditionalOnProperty;
 import org.springframework.context.annotation.Configuration;
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
@@ -25,6 +26,10 @@
 //
 // This allows anything through without authentication or csrf protection.
 //
+@ConditionalOnProperty(
+    value = "kayenta.security.enabled",
+    havingValue = "true",
+    matchIfMissing = true)
 @Configuration
 @EnableWebSecurity
 public class WebSecurityConfig extends WebSecurityConfigurerAdapter {