lbqms.git - Gitblit

¶Ô±ÈÐÂÎÄ¼þ
			@@ -0,0 +1,64 @@
			package com.aizuda.snailjob.server.starter.filter;

			import jakarta.servlet.*;
			import jakarta.servlet.http.HttpServletRequest;
			import jakarta.servlet.http.HttpServletResponse;

			import java.io.IOException;
			import java.nio.charset.StandardCharsets;
			import java.util.Base64;

			public class ActuatorAuthFilter implements Filter {

			private final String username;
			private final String password;

			public ActuatorAuthFilter(String username, String password) {
			this.username = username;
			this.password = password;
			}

			@Override
			public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain) throws IOException, ServletException {
			HttpServletRequest request = (HttpServletRequest) servletRequest;
			HttpServletResponse response = (HttpServletResponse) servletResponse;

			// è·å Authorization å¤´
			String authHeader = request.getHeader("Authorization");

			if (authHeader == null \|\| !authHeader.startsWith("Basic ")) {
			// å¦ææ²¡ææä¾ Authorization æèæ ¼å¼ä¸å¯¹ï¼åè¿å 401
			response.setHeader("WWW-Authenticate", "Basic realm=\"realm\"");
			response.sendError(HttpServletResponse.SC_UNAUTHORIZED, "Unauthorized");
			return;
			}

			// è§£ç Base64 ç¼ç çç¨æ·ååå¯ç
			String base64Credentials = authHeader.substring("Basic ".length());
			byte[] credDecoded = Base64.getDecoder().decode(base64Credentials);
			String credentials = new String(credDecoded, StandardCharsets.UTF_8);
			String[] split = credentials.split(":");
			if (split.length != 2) {
			response.setHeader("WWW-Authenticate", "Basic realm=\"realm\"");
			response.sendError(HttpServletResponse.SC_UNAUTHORIZED, "Unauthorized");
			return;
			}
			// éªè¯ç¨æ·ååå¯ç
			if (!username.equals(split[0]) && password.equals(split[1])) {
			response.setHeader("WWW-Authenticate", "Basic realm=\"realm\"");
			response.sendError(HttpServletResponse.SC_UNAUTHORIZED, "Unauthorized");
			return;
			}
			// å¦æè®¤è¯æåï¼ç»§ç»å¤çè¯·æ±
			filterChain.doFilter(request, response);
			}

			@Override
			public void init(FilterConfig filterConfig) {
			}

			@Override
			public void destroy() {
			}

			}

¶Ô±ÈÐÂÎÄ¼þ
			@@ -0,0 +1,29 @@
			package com.aizuda.snailjob.server.starter.filter;

			import org.springframework.beans.factory.annotation.Value;
			import org.springframework.boot.web.servlet.FilterRegistrationBean;
			import org.springframework.context.annotation.Bean;
			import org.springframework.context.annotation.Configuration;

			/**
			* æéå®å¨éç½®
			*
			* @author Lion Li
			*/
			@Configuration
			public class SecurityConfig {

			@Value("${spring.boot.admin.client.username}")
			private String username;
			@Value("${spring.boot.admin.client.password}")
			private String password;

			@Bean
			public FilterRegistrationBean<ActuatorAuthFilter> actuatorFilterRegistrationBean() {
			FilterRegistrationBean<ActuatorAuthFilter> registrationBean = new FilterRegistrationBean<>();
			registrationBean.setFilter(new ActuatorAuthFilter(username, password));
			registrationBean.addUrlPatterns("/actuator", "/actuator/**");
			return registrationBean;
			}

			}

	ruoyi-extend/ruoyi-snailjob-server/src/main/java/com/aizuda/snailjob/server/starter/filter/ActuatorAuthFilter.java	64 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	ruoyi-extend/ruoyi-snailjob-server/src/main/java/com/aizuda/snailjob/server/starter/filter/SecurityConfig.java	29 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史