花城-智慧社区
blame | 历史 | 补丁 | 提交 | 提交对比 | ignore whitespace
CeDo
2021-05-11 004e0e00b9a012e32902f446e8f10a55e51a2a01 
 springcloud_k8s_panzhihuazhihuishequ/zuul/src/main/java/com/panzhihua/zuul/config/SpringSecurityConfig.java


@@ -1,10 +1,14 @@


package com.panzhihua.zuul.config;




import com.panzhihua.zuul.filters.AppletAuthenticationFilter;


import com.panzhihua.zuul.filters.JWTAuthenticationTokenFilter;


import com.panzhihua.zuul.filters.SercuritFilter;


import com.panzhihua.zuul.handles.UserAuthAccessDeniedHandler;


import com.panzhihua.zuul.manager.RoleAccessDecisionManager;


import org.springframework.boot.autoconfigure.security.SecurityProperties;


import org.springframework.context.annotation.Bean;


import org.springframework.context.annotation.Configuration;


import org.springframework.core.annotation.Order;


import org.springframework.security.config.annotation.ObjectPostProcessor;


import org.springframework.security.config.annotation.web.builders.HttpSecurity;


import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;


@@ -12,6 +16,7 @@


import org.springframework.security.config.http.SessionCreationPolicy;


import org.springframework.security.web.access.intercept.FilterSecurityInterceptor;


import org.springframework.security.web.authentication.AnonymousAuthenticationFilter;


import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;




import javax.annotation.Resource;




@@ -34,6 +39,7 @@


     */


    @Resource


    private UserAuthAccessDeniedHandler userAuthAccessDeniedHandler;




    @Override


    protected void configure(HttpSecurity http) throws Exception {


        http.authorizeRequests()


@@ -49,16 +55,13 @@


                .and()


                // 配置没有权限自定义处理类


                .exceptionHandling().accessDeniedHandler(userAuthAccessDeniedHandler)


               .and()


             .csrf().disable();


            // 基于Token不需要session


            http.sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS);


            // 禁用缓存


            http.headers().cacheControl();


            http.addFilterBefore(new JWTAuthenticationTokenFilter(), AnonymousAuthenticationFilter.class);










                .and()


                .csrf().disable();


        // 基于Token不需要session


        http.sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS);


        // 禁用缓存


        http.headers().cacheControl();


        http.addFilterBefore(new JWTAuthenticationTokenFilter(), AnonymousAuthenticationFilter.class);


    }




}