web security configuration for different user roles

[ZDenizYStenhaug]

The configuration should be set up so that:

1. a visitor who has not signed up yet (or not logged in) can only view the offers and events page. But can't sign up for an offer/event, etc.
2. only admins can delete offers or events.

Some resources: https://www.section.io/engineering-education/springboot-antmatchers/ https://stackoverflow.com/questions/28904176/thymeleaf-with-spring-security-how-to-check-if-user-is-logged-in-or-not

[ZDenizYStenhaug]

the first part is already done.

The admin functionality will be added if there's time left before the deadline

[ZDenizYStenhaug]

admin functionali,ty won't be added