robhinds/gist:9765023

## gistfile1.java
@Configuration
@EnableWebSecurity
@Order(1)
public class ApiSecurityConfig extends WebSecurityConfigurerAdapter {

	private String tokenKey = "some token goes here";

	@Autowired private UserDetailsServiceImpl userDetailsServiceImpl;

	@Override protected void configure(HttpSecurity http) throws Exception {
        http
        	.antMatcher("/api/**")
        	.csrf()
        		.disable()
            .authorizeRequests().anyRequest().authenticated().and()
        	.addFilterBefore(rememberMeAuthenticationFilter(), BasicAuthenticationFilter.class )
        		.sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS).and()
        		.exceptionHandling().authenticationEntryPoint(new Http403ForbiddenEntryPoint());
    }

	 /**
	  * Remember me config
	  */
	 @Override protected void registerAuthentication(AuthenticationManagerBuilder auth) throws Exception {
		 auth.authenticationProvider(rememberMeAuthenticationProvider());
	 }
	 @Bean public RememberMeAuthenticationFilter rememberMeAuthenticationFilter() throws Exception{
		 return new RememberMeAuthenticationFilter(authenticationManager(), tokenBasedRememberMeService());
	 }
	 @Bean public CustomTokenBasedRememberMeService tokenBasedRememberMeService(){
		 CustomTokenBasedRememberMeService service = new CustomTokenBasedRememberMeService(tokenKey, userDetailsServiceImpl);
		 service.setAlwaysRemember(true);
		 service.setCookieName("at");
		 return service;
	 }
	 @Bean RememberMeAuthenticationProvider rememberMeAuthenticationProvider(){
		 return new RememberMeAuthenticationProvider(tokenKey);
	 }
}
	@Configuration
	@EnableWebSecurity
	@Order(1)
	public class ApiSecurityConfig extends WebSecurityConfigurerAdapter {

	private String tokenKey = "some token goes here";

	@Autowired private UserDetailsServiceImpl userDetailsServiceImpl;

	@Override protected void configure(HttpSecurity http) throws Exception {
	http
	.antMatcher("/api/**")
	.csrf()
	.disable()
	.authorizeRequests().anyRequest().authenticated().and()
	.addFilterBefore(rememberMeAuthenticationFilter(), BasicAuthenticationFilter.class )
	.sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS).and()
	.exceptionHandling().authenticationEntryPoint(new Http403ForbiddenEntryPoint());
	}

	/**
	* Remember me config
	*/
	@Override protected void registerAuthentication(AuthenticationManagerBuilder auth) throws Exception {
	auth.authenticationProvider(rememberMeAuthenticationProvider());
	}
	@Bean public RememberMeAuthenticationFilter rememberMeAuthenticationFilter() throws Exception{
	return new RememberMeAuthenticationFilter(authenticationManager(), tokenBasedRememberMeService());
	}
	@Bean public CustomTokenBasedRememberMeService tokenBasedRememberMeService(){
	CustomTokenBasedRememberMeService service = new CustomTokenBasedRememberMeService(tokenKey, userDetailsServiceImpl);
	service.setAlwaysRemember(true);
	service.setCookieName("at");
	return service;
	}
	@Bean RememberMeAuthenticationProvider rememberMeAuthenticationProvider(){
	return new RememberMeAuthenticationProvider(tokenKey);
	}
	}