xinyin025/smart-admin
1
0
Fork 0
mirror of https://gitee.com/lab1024/smart-admin.git synced 2025-10-08 13:16:41 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

security-结构调整

Browse Source
This commit is contained in:
yandanyang 2021-09-23 20:42:20 +08:00
parent d54d7b544a
commit c2596ed417
2 changed files with 4 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
admin-api/java-api/src/main/java/net/lab1024/smartadmin/service/handler/AuthenticationFailHandler.java → admin-api/java-api/src/main/java/net/lab1024/smartadmin/service/common/security/SmartSecurityAuthenticationFailHandler.java
View File

@ -1,4 +1,4 @@
package net.lab1024.smartadmin.service.handler;
package net.lab1024.smartadmin.service.common.security;
import com.alibaba.fastjson.JSONObject;
import net.lab1024.smartadmin.service.common.codeconst.LoginResponseCodeConst;
@ -15,8 +15,7 @@ import java.io.IOException;
/**
* 认证失败处理
*/
@Component
public class AuthenticationFailHandler implements AuthenticationEntryPoint {
public class SmartSecurityAuthenticationFailHandler implements AuthenticationEntryPoint {
@Override
public void commence(HttpServletRequest request, HttpServletResponse response, AuthenticationException e) throws IOException {

9
admin-api/java-api/src/main/java/net/lab1024/smartadmin/service/config/SecurityConfig.java
View File

@ -2,7 +2,7 @@ package net.lab1024.smartadmin.service.config;
import net.lab1024.smartadmin.service.filter.SmartSecurityTokenFilter;
import net.lab1024.smartadmin.service.common.security.SmartSecurityUrlMatchers;
import net.lab1024.smartadmin.service.handler.AuthenticationFailHandler;
import net.lab1024.smartadmin.service.common.security.SmartSecurityAuthenticationFailHandler;
import net.lab1024.smartadmin.service.module.system.login.EmployeeLoginTokenService;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.beans.factory.annotation.Value;
@ -31,11 +31,6 @@ public class SecurityConfig extends WebSecurityConfigurerAdapter {
@Value("${access-control-allow-origin}")
private String accessControlAllowOrigin;
/**
* 认证失败处理类
*/
@Autowired
private AuthenticationFailHandler authenticationFailHandler;
/**
* url
*/
@ -74,7 +69,7 @@ public class SecurityConfig extends WebSecurityConfigurerAdapter {
// CSRF禁用因为不使用session
.csrf().disable()
// 认证失败处理类
.exceptionHandling().authenticationEntryPoint(authenticationFailHandler).and()
.exceptionHandling().authenticationEntryPoint(new SmartSecurityAuthenticationFailHandler()).and()
.sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS).and()
// 过滤请求
.authorizeRequests();