Disable Basic Authentication while using Spring Security Java configuration

Question

I am trying to secure a web application using Spring Security java configuration.

This is how the configuration looks:-

Answer 1

You can disable the formLogin through the HttpSecurity instance as follow:

http.authorizeRequests().antMatchers("/public/**").permitAll()
        .antMatchers("/api/**").hasRole("USER")
        .anyRequest().authenticated() 
        .and().formLogin().disable();

This will lead receiving 403 Http error when trying to access any secured resource