| | |
|---|
| | | * @author ruoyi |
|---|
| | | */ |
|---|
| | | @EnableGlobalMethodSecurity(prePostEnabled = true, securedEnabled = true) |
|---|
| | | public class SecurityConfig extends WebSecurityConfigurerAdapter |
|---|
| | | { |
|---|
| | | public class SecurityConfig extends WebSecurityConfigurerAdapter { |
|---|
| | | /** |
|---|
| | | * 自定义用户认证逻辑 |
|---|
| | | */ |
|---|
| | |
|---|
| | | */ |
|---|
| | | @Bean |
|---|
| | | @Override |
|---|
| | | public AuthenticationManager authenticationManagerBean() throws Exception |
|---|
| | | { |
|---|
| | | public AuthenticationManager authenticationManagerBean() throws Exception { |
|---|
| | | return super.authenticationManagerBean(); |
|---|
| | | } |
|---|
| | | |
|---|
| | |
|---|
| | | * authenticated | 用户登录后可访问 |
|---|
| | | */ |
|---|
| | | @Override |
|---|
| | | protected void configure(HttpSecurity httpSecurity) throws Exception |
|---|
| | | { |
|---|
| | | protected void configure(HttpSecurity httpSecurity) throws Exception { |
|---|
| | | httpSecurity |
|---|
| | | // CSRF禁用,因为不使用session |
|---|
| | | .csrf().disable() |
|---|
| | |
|---|
| | | * 强散列哈希加密实现 |
|---|
| | | */ |
|---|
| | | @Bean |
|---|
| | | public BCryptPasswordEncoder bCryptPasswordEncoder() |
|---|
| | | { |
|---|
| | | public BCryptPasswordEncoder bCryptPasswordEncoder() { |
|---|
| | | return new BCryptPasswordEncoder(); |
|---|
| | | } |
|---|
| | | |
|---|
| | |
|---|
| | | * 身份认证接口 |
|---|
| | | */ |
|---|
| | | @Override |
|---|
| | | protected void configure(AuthenticationManagerBuilder auth) throws Exception |
|---|
| | | { |
|---|
| | | protected void configure(AuthenticationManagerBuilder auth) throws Exception { |
|---|
| | | auth.userDetailsService(userDetailsService).passwordEncoder(bCryptPasswordEncoder()); |
|---|
| | | } |
|---|
| | | } |
|---|
