'Spring MVC Endpoint: Restrict access to application

I am working on a springboot application that has a MVC endpoint to expose some config details. This endpoint is there for a sole purpose to be called from the JS file in the same application.

@GetMapping("/config")
public Config getConfig() {

    return Config.builder()
            .key("key")
            .secret("secret")
            .build();
}

I want to be able to restrict access to this endpoint so that no external system/user should be able to call it. How can I achieve this?

spring-bootspring-mvc


Solution 1:[1]

you can restrict access to your endpoint using @Preauthorize annotation, for more details :

https://www.baeldung.com/spring-deny-access

Sources

This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.

Source: Stack Overflow

Solution Source
Solution 1 Medamine

Related Questions

How to configure log4j in a Spring Mvc application configured with Java Annotations and using a log4j.properties file

Spring 3 MVC: Issue binding to list form fields on submit

Spring @Value annotation always evaluating as null?

what is the default page for spring-mvc application

exception sending context initialized event to listener instance of class

exception sending context initialized event to listener instance of class

How can I make Spring WebServices log all SOAP requests?

Hibernate : Why is it trying to drop/create database on startup?

Ignore fields from Java object dynamically while sending as JSON from Spring MVC

@EventListener for AuthenticationSuccessEvent or InteractiveAuthenticationSuccessEvent not fired

400 Bad Request - while POSTing JSON data to RESTful controller implemented with Spring MVC

How to convert a multipart file to File?

SpringBoot Web MVC Application cannot resolve JSP views

Getting an exception "Failed to start service jboss.module.service" for spring portlets

Could not exec java with Spring+Maven exit code 1