The application that is generated will not contain any frontend code. Again, the invoice service is a Spring Boot-based application. The security features are configured in SecurityConfiguration.java.
It ignores all the H2 Database-related requests:
public void configure(WebSecurity web) { web.ignoring() .antMatchers("/h2-console/**"); }
Since the services are independent, they can be deployed and run on another server with a different IP address. This requires us to disable Cross-Site Request Forgery (CSRF) by default.
We will also use the STATELESS session policy in session management. This is the strictest session policy available. This will not allow our application to generate a session, so our requests ...