Home Explore Help
Register Sign In
java
/
diagbotcloud
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

术语维护权限限制开启

gaodm 6 years ago
parent
20df6245b6
commit
4cf50deef9
2 changed files with 23 additions and 23 deletions
Split View Show Diff Stats
  1. 3 3
      knowledgeman-service/src/main/java/com/diagbot/config/ResourceServerConfigurer.java
  2. 20 20
      knowledgeman-service/src/main/java/com/diagbot/config/security/UrlAccessDecisionManager.java

+ 3 - 3
knowledgeman-service/src/main/java/com/diagbot/config/ResourceServerConfigurer.java
View File 

@@ -25,9 +25,9 @@ public class ResourceServerConfigurer extends ResourceServerConfigurerAdapter {
 
         http
 
                 .csrf().disable()
 
                 .authorizeRequests()
 
-//                .regexMatchers(".*swagger.*", ".*v2.*", ".*webjars.*", "/druid.*", "/actuator.*", "/hystrix.*").permitAll()
 
-//                .antMatchers("/**").authenticated();
 
-                .antMatchers("/**").permitAll();
 
+                .regexMatchers(".*swagger.*", ".*v2.*", ".*webjars.*", "/druid.*", "/actuator.*", "/hystrix.*").permitAll()
 
+                .antMatchers("/**").authenticated();
 
+//                .antMatchers("/**").permitAll();
 
     }

+ 20 - 20
knowledgeman-service/src/main/java/com/diagbot/config/security/UrlAccessDecisionManager.java
View File 

@@ -23,26 +23,26 @@ import java.util.Collection;
 
 public class UrlAccessDecisionManager implements AccessDecisionManager {
 
     @Override
 
     public void decide(Authentication authentication, Object object, Collection<ConfigAttribute> configAttributes) throws AccessDeniedException, InsufficientAuthenticationException {
 
-//        HttpServletRequest request = ((FilterInvocation) object).getHttpRequest();
 
-//        String url, method;
 
-//        if (matchPermitAllUrl(request)) {
 
-//            return;
 
-//        }
 
-//        if ("anonymousUser".equals(authentication.getPrincipal())) {
 
-//            throw new AccessDeniedException("no right");
 
-//        } else {
 
-//            for (GrantedAuthority ga : authentication.getAuthorities()) {
 
-//                String[] authority = ga.getAuthority().split(";");
 
-//                url = authority[0];
 
-//                method = authority[1];
 
-//                if (matchers(url, request)) {
 
-//                    if (method.equals(request.getMethod()) || "ALL".equals(method)) {
 
-//                        return;
 
-//                    }
 
-//                }
 
-//            }
 
-//        }
 
-//        throw new AccessDeniedException("no right");
 
+        HttpServletRequest request = ((FilterInvocation) object).getHttpRequest();
 
+        String url, method;
 
+        if (matchPermitAllUrl(request)) {
 
+            return;
 
+        }
 
+        if ("anonymousUser".equals(authentication.getPrincipal())) {
 
+            throw new AccessDeniedException("no right");
 
+        } else {
 
+            for (GrantedAuthority ga : authentication.getAuthorities()) {
 
+                String[] authority = ga.getAuthority().split(";");
 
+                url = authority[0];
 
+                method = authority[1];
 
+                if (matchers(url, request)) {
 
+                    if (method.equals(request.getMethod()) || "ALL".equals(method)) {
 
+                        return;
 
+                    }
 
+                }
 
+            }
 
+        }
 
+        throw new AccessDeniedException("no right");
 
     }