ecms.git - Gitblit

			@@ -4,9 +4,7 @@
			import com.zhitan.framework.security.filter.JwtAuthenticationTokenFilter;
			import com.zhitan.framework.security.handle.AuthenticationEntryPointImpl;
			import com.zhitan.framework.security.handle.LogoutSuccessHandlerImpl;

			import javax.annotation.Resource;

			import com.zhitan.framework.security.single.SingleAuthenticationProvider;
			import org.springframework.context.annotation.Bean;
			import org.springframework.http.HttpMethod;
			import org.springframework.security.authentication.AuthenticationManager;
			@@ -22,8 +20,7 @@
			import org.springframework.security.web.authentication.logout.LogoutFilter;
			import org.springframework.web.filter.CorsFilter;

			import java.util.ArrayList;
			import java.util.List;
			import javax.annotation.Resource;

			/**
			* spring security配置
			@@ -55,6 +52,12 @@
			*/
			@Resource
			private JwtAuthenticationTokenFilter authenticationTokenFilter;

			/**
			* token认证过滤器
			*/
			@Resource
			private SingleAuthenticationProvider singleAuthenticationProvider;

			/**
			* 跨域过滤器
			@@ -112,7 +115,7 @@
			// 过滤请求
			.authorizeRequests()
			// 对于登录login 注册register 验证码captchaImage 允许匿名访问
			.antMatchers("/login", "/register", "/captchaImage").permitAll()
			.antMatchers("/login", "/register", "/captchaImage", "/binding").permitAll()
			// 静态资源，可匿名访问
			.antMatchers(HttpMethod.GET, "/", "/.html", "//.html", "/*/.css", "/*/.js", "/profile/**").permitAll()
			.antMatchers("/swagger-ui.html", "/swagger-resources/", "/webjars/", "//api-docs", "/druid/*").permitAll()
			@@ -143,5 +146,6 @@
			@Override
			protected void configure(AuthenticationManagerBuilder auth) throws Exception {
			auth.userDetailsService(userDetailsService).passwordEncoder(bCryptPasswordEncoder());
			auth.authenticationProvider(singleAuthenticationProvider);
			}
			}