pablohdzvizcarra/EmployeeWebSecurityConfig.java

## EmployeeWebSecurityConfig.java
package com.baeldung.springreactivebaeldungseries.lesson01;

import org.springframework.context.annotation.Bean;
import org.springframework.http.HttpMethod;
import org.springframework.security.config.annotation.web.reactive.EnableWebFluxSecurity;
import org.springframework.security.config.web.server.ServerHttpSecurity;
import org.springframework.security.web.server.SecurityWebFilterChain;

@EnableWebFluxSecurity
public class EmployeeWebSecurityConfig {

    @Bean
    public SecurityWebFilterChain springSecurityFilterChain(
            ServerHttpSecurity http) {
        return http
                .csrf().disable()
                .authorizeExchange()
                .pathMatchers(HttpMethod.POST, "/employees/update").hasRole("ADMIN")
                .pathMatchers("/**").permitAll()
                .and()
                .httpBasic()
                .and().build();
    }
}
	package com.baeldung.springreactivebaeldungseries.lesson01;

	import org.springframework.context.annotation.Bean;
	import org.springframework.http.HttpMethod;
	import org.springframework.security.config.annotation.web.reactive.EnableWebFluxSecurity;
	import org.springframework.security.config.web.server.ServerHttpSecurity;
	import org.springframework.security.web.server.SecurityWebFilterChain;

	@EnableWebFluxSecurity
	public class EmployeeWebSecurityConfig {

	@Bean
	public SecurityWebFilterChain springSecurityFilterChain(
	ServerHttpSecurity http) {
	return http
	.csrf().disable()
	.authorizeExchange()
	.pathMatchers(HttpMethod.POST, "/employees/update").hasRole("ADMIN")
	.pathMatchers("/**").permitAll()
	.and()
	.httpBasic()
	.and().build();
	}
	}