From 2fcd97552d16718cc7997629fd637a73a5a4483f Mon Sep 17 00:00:00 2001 From: 郑永安 <zyazyz250@sina.com> Date: 星期一, 19 六月 2023 14:44:19 +0800 Subject: [PATCH] 删除 --- src/main/java/com/gk/firework/Config/Oauth2/ResourceServerConfig.java | 50 ++++++++++++++++++++++++++++++++++++++++++++++++++ 1 files changed, 50 insertions(+), 0 deletions(-) diff --git a/src/main/java/com/gk/firework/Config/Oauth2/ResourceServerConfig.java b/src/main/java/com/gk/firework/Config/Oauth2/ResourceServerConfig.java new file mode 100644 index 0000000..87a28ef --- /dev/null +++ b/src/main/java/com/gk/firework/Config/Oauth2/ResourceServerConfig.java @@ -0,0 +1,50 @@ +package com.gk.firework.Config.Oauth2; + +import com.gk.firework.Domain.Utils.Constants; +import org.slf4j.Logger; +import org.slf4j.LoggerFactory; +import org.springframework.beans.factory.annotation.Autowired; +import org.springframework.context.annotation.Configuration; +import org.springframework.security.config.annotation.web.builders.HttpSecurity; +import org.springframework.security.oauth2.config.annotation.web.configuration.EnableResourceServer; +import org.springframework.security.oauth2.config.annotation.web.configuration.ResourceServerConfigurerAdapter; +import org.springframework.security.oauth2.config.annotation.web.configurers.ResourceServerSecurityConfigurer; +import org.springframework.security.oauth2.provider.token.TokenStore; +import org.springframework.security.oauth2.provider.token.store.JwtAccessTokenConverter; +import org.springframework.security.web.authentication.www.BasicAuthenticationFilter; + +/** + * resource config + * + * @author zhangby + * @date 2019-05-19 12:08 + */ +@Configuration +@EnableResourceServer +public class ResourceServerConfig extends ResourceServerConfigurerAdapter { + Logger log = LoggerFactory.getLogger(ResourceServerConfig.class); + + //去除部分不需要token的url FILTER_EXCLUDE_PATH + @Override + public void configure(HttpSecurity http) throws Exception { + http + .csrf().disable() + .logout().disable() + .addFilterBefore(new AccessTokenFilter(), BasicAuthenticationFilter.class) + .authorizeRequests() + .antMatchers(Constants.FILTER_EXCLUDE_PATH.split(",")).permitAll() + .antMatchers("/**").authenticated(); + } + + + @Override + public void configure(ResourceServerSecurityConfigurer resources) throws Exception { + resources.resourceId("oauth-client").tokenStore(tokenStore); + } + + @Autowired + TokenStore tokenStore; + + @Autowired + JwtAccessTokenConverter tokenConverter; +} -- Gitblit v1.9.2