vertoryao/bill-backend
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

更新security配置

Browse Source
This commit is contained in:
vertoryao 2023-12-29 10:54:25 +08:00
parent 95657c0a35
commit 4cfba5edc5
1 changed files with 21 additions and 16 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

37
src/main/java/com/zsc/edu/bill/framework/security/SpringSecurityConfig.java
View File

@ -6,6 +6,8 @@ import org.springframework.context.annotation.Configuration;
import org.springframework.http.HttpMethod;
import org.springframework.http.HttpStatus;
import org.springframework.security.authentication.AuthenticationManager;
import org.springframework.security.authentication.ProviderManager;
import org.springframework.security.authentication.dao.DaoAuthenticationProvider;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.core.session.SessionRegistry;
import org.springframework.security.core.userdetails.UserDetailsService;
@ -30,6 +32,7 @@ public class SpringSecurityConfig {
private final CustomAuthenticationEntryPoint customAuthenticationEntryPoint;
private final CustomAccessDeniedHandler customAccessDeniedHandler;
private final SessionRegistry sessionRegistry;
private final SecurityBeanConfig securityBeanConfig;
@Resource
private final DataSource dataSource;
@ -41,30 +44,32 @@ public class SpringSecurityConfig {
return tokenRepository;
}
// @Bean
// public JsonAuthenticationFilter jsonAuthenticationFilter(AuthenticationManager authenticationManager) throws Exception {
// JsonAuthenticationFilter filter = new JsonAuthenticationFilter();
// filter.setAuthenticationSuccessHandler(customAuthenticationSuccessHandler);
// filter.setAuthenticationFailureHandler(customAuthenticationFailureHandler);
// filter.setFilterProcessesUrl("/api/rest/user/login");
// filter.setAuthenticationManager(authenticationManager);
// return filter;
// }
@Bean
AuthenticationManager authenticationManager() {
DaoAuthenticationProvider daoAuthenticationProvider = new DaoAuthenticationProvider();
daoAuthenticationProvider.setUserDetailsService(userDetailsService);
daoAuthenticationProvider.setPasswordEncoder(securityBeanConfig.passwordEncoder());
return new ProviderManager(daoAuthenticationProvider);
}
@Bean
public JsonAuthenticationFilter jsonAuthenticationFilter() throws Exception {
JsonAuthenticationFilter filter = new JsonAuthenticationFilter();
filter.setAuthenticationSuccessHandler(customAuthenticationSuccessHandler);
filter.setAuthenticationFailureHandler(customAuthenticationFailureHandler);
filter.setFilterProcessesUrl("/api/rest/user/login");
filter.setAuthenticationManager(authenticationManager());
return filter;
}
@Bean
public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
// 允许用户json登录
JsonAuthenticationFilter jsonAuthenticationFilter = new JsonAuthenticationFilter();
jsonAuthenticationFilter.setAuthenticationSuccessHandler(customAuthenticationSuccessHandler);
jsonAuthenticationFilter.setAuthenticationFailureHandler(customAuthenticationFailureHandler);
jsonAuthenticationFilter.setFilterProcessesUrl("/api/rest/user/login");
jsonAuthenticationFilter.setAuthenticationManager(http.getSharedObject(AuthenticationManager.class));
return http
.authorizeHttpRequests(auth -> auth
.requestMatchers(HttpMethod.GET, "/api/rest/user/me").permitAll()
.requestMatchers("/api/**").authenticated())
.addFilterAt(jsonAuthenticationFilter, UsernamePasswordAuthenticationFilter.class)
.addFilterAt(jsonAuthenticationFilter(), UsernamePasswordAuthenticationFilter.class)
.formLogin(form -> form
.loginPage("/user/login")
.loginProcessingUrl("/api/rest/user/login")