1.Could you tell me the reason of @CurrentUser annotation, if there is no logic implemented for that? It is like empty annotation that nothing changes?
Why you are autowiring AuthenticationManager to controllers? You could just add Authentication to arguments of controllers, where you need for authenticated users. And from that Authentication get user data.
And why you are creating redundunt login controller, if Spring Security provides that? You need just add filter method from "extends UsernamePasswordAuthenticationFilter" and override Authentication attemptAuthentication. There you are getting user and authenticate him with username and password.
1.Could you tell me the reason of @CurrentUser annotation, if there is no logic implemented for that? It is like empty annotation that nothing changes?