Merge pull request #3 from kalqa/implementing_security_lessons

cors and csrf

added steps and role user

added converting jwt before sending, and test for user finding with role

added first rule test, and to pom dependency

Implemented approach 2nd: Spring Boot OAuth2 + React + secure cookie

Implemented approach 1st: using server session and loading user to Security while correct auth token comes

redirecting to /token after success login, created controller for printing token from google

added ouath2 login, https server port, and logging security TRACE

deleted jwt auth filter and issuing tokens logic

updated requirements

using https for secure cookie

setting cookie, and changed /songs to role ADMIN for tests

filter for auth token verifying, symmetric key and asymmetric key approaches, and also swagger config for adding Authorization Bearer Header

prepared empty filter for jwt