*** ```java import org.springframework.context.annotation.Bean; import org.springframework.context.annotation.Configuration; import org.springframework.security.config.Customizer; import org.springframework.security.config.annotation.web.AbstractRequestMatcherRegistry; import org.springframework.security.config.annotation.web.builders.HttpSecurity; import org.springframework.security.core.userdetails.User; import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder; import org.springframework.security.crypto.password.PasswordEncoder; import org.springframework.security.provisioning.InMemoryUserDetailsManager; import org.springframework.security.web.SecurityFilterChain; @Configuration class SecurityConfig { @Bean InMemoryUserDetailsManager inMemoryUserDetailsManager(PasswordEncoder passwordEncoder) { var user = User.withUsername("user") .password(passwordEncoder.encode("pa$w0rd")) .roles("USER") .build(); return new InMemoryUserDetailsManager(user); } @Bean SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception { return http.authorizeHttpRequests(AbstractRequestMatcherRegistry::anyRequest) .httpBasic(Customizer.withDefaults()) .build(); } @Bean PasswordEncoder passwordEncoder() { return new BCryptPasswordEncoder(); } } ```