Skip to content

D
device-back
提交 3aa37dda authored 作者: 133's avatar 133
浏览文件
操作

feat(用户模块): 修改了spring security 核心配置文件

/user/config/
上级 c95250e2
隐藏空白字符变更
内嵌 并排
正在显示 包含 15 行增加1 行删除
dev-user/src/main/java/com/tykj/dev/device/user/config/SecurityConfig.java
浏览文件 @ 3aa37dda
...@@ -22,6 +22,7 @@ import org.springframework.security.core.session.SessionRegistryImpl; ...@@ -22,6 +22,7 @@ import org.springframework.security.core.session.SessionRegistryImpl;
import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder; import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter; import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
import org.springframework.security.web.authentication.session.ConcurrentSessionControlAuthenticationStrategy; import org.springframework.security.web.authentication.session.ConcurrentSessionControlAuthenticationStrategy;
import org.springframework.security.web.authentication.switchuser.SwitchUserFilter;
import org.springframework.security.web.session.ConcurrentSessionFilter; import org.springframework.security.web.session.ConcurrentSessionFilter;
import org.springframework.security.web.session.HttpSessionEventPublisher; import org.springframework.security.web.session.HttpSessionEventPublisher;
import org.springframework.web.cors.CorsConfiguration; import org.springframework.web.cors.CorsConfiguration;
...@@ -106,7 +107,10 @@ public class SecurityConfig extends WebSecurityConfigurerAdapter { ...@@ -106,7 +107,10 @@ public class SecurityConfig extends WebSecurityConfigurerAdapter {
.cors() .cors()
.and() .and()
.authorizeRequests() .authorizeRequests()
.antMatchers("/file/**").permitAll()
.antMatchers("/file/llq/**").permitAll() .antMatchers("/file/llq/**").permitAll()
.antMatchers("/login/impersonate*").permitAll()
.antMatchers("/logout/impersonate*").permitAll()
.antMatchers("/packageVersion/getVersion","/equip/packageVersion/getVersion").permitAll()// .antMatchers("/packageVersion/getVersion","/equip/packageVersion/getVersion").permitAll()//
.antMatchers("/equip/file/llq/**").permitAll() .antMatchers("/equip/file/llq/**").permitAll()
.antMatchers(HttpMethod.OPTIONS, "/**").permitAll() .antMatchers(HttpMethod.OPTIONS, "/**").permitAll()
...@@ -188,6 +192,16 @@ public class SecurityConfig extends WebSecurityConfigurerAdapter { ...@@ -188,6 +192,16 @@ public class SecurityConfig extends WebSecurityConfigurerAdapter {
public BCryptPasswordEncoder bCryptPasswordEncoder() { public BCryptPasswordEncoder bCryptPasswordEncoder() {
return new BCryptPasswordEncoder(); return new BCryptPasswordEncoder();
} }
//
@Bean
public SwitchUserFilter switchUserFilter() {
SwitchUserFilter filter = new SwitchUserFilter();
filter.setUserDetailsService(userDetailsService());
filter.setUsernameParameter("username");
filter.setSwitchUserUrl("/login/impersonate");
filter.setExitUserUrl("/logout/impersonate");
filter.setSuccessHandler(successHandler);
return filter;
}
} }
Markdown 格式
0%
您添加了 0 到此讨论。请谨慎行事。
请先完成此评论的编辑!
注册 或者 后发表评论