ai java中间层
blame | 历史 | 原始文档
xiangpei
2025-04-18 ccadf9480d4e6a9dcc227a2a0b1f9ae0612e36fd 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69

package com.monkeylessey.framework.config;


 


import com.monkeylessey.framework.security.filter.MyUsernamePasswordFilter;


import com.monkeylessey.framework.security.handler.XpAuthenticationFailureHandler;


import com.monkeylessey.framework.security.handler.XpAuthenticationSuccessHandler;


import org.springframework.beans.factory.annotation.Autowired;


import org.springframework.boot.autoconfigure.condition.ConditionalOnProperty;


import org.springframework.context.annotation.Bean;


import org.springframework.context.annotation.Configuration;


import org.springframework.security.authentication.AuthenticationManager;


import org.springframework.security.config.annotation.web.builders.HttpSecurity;


import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;


import org.springframework.security.crypto.password.NoOpPasswordEncoder;


import org.springframework.security.crypto.password.PasswordEncoder;


import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;


 


@Configuration


@ConditionalOnProperty(prefix = "xp-start.security", name = "session", havingValue = "true")


public class SessionSecurityConfig extends WebSecurityConfigurerAdapter {


 


    @Autowired


    private XpAuthenticationFailureHandler failureHandler;


 


    @Autowired


    private XpAuthenticationSuccessHandler successHandler;


 


    @Bean


    public PasswordEncoder getPasswordEncoder() {


        return NoOpPasswordEncoder.getInstance();


    }


 


    @Override


    @Bean


    public AuthenticationManager authenticationManagerBean() throws Exception {


        return super.authenticationManagerBean();


    }


 


    @Bean


    public MyUsernamePasswordFilter myUsernamePasswordFilter() throws Exception {


        MyUsernamePasswordFilter myUsernamePasswordFilter = new MyUsernamePasswordFilter();


        // 设置用户名参数


        myUsernamePasswordFilter.setUsernameParameter("username");


        // 设置密码参数


        myUsernamePasswordFilter.setPasswordParameter("password");


        // 设置设置请求方式必须为post


        myUsernamePasswordFilter.setPostOnly(true);


        // 设置认证的请求


        myUsernamePasswordFilter.setFilterProcessesUrl("/login");


        // 设置认证manager, 使用security默认的即可


        myUsernamePasswordFilter.setAuthenticationManager(authenticationManagerBean());


        // 设置认证成功处理


        myUsernamePasswordFilter.setAuthenticationSuccessHandler(successHandler);


        // 设置认证失败处理


        myUsernamePasswordFilter.setAuthenticationFailureHandler(failureHandler);


        return myUsernamePasswordFilter;


    }


 


    @Override


    protected void configure(HttpSecurity http) throws Exception {


        http.formLogin();


 


        http.authorizeRequests().anyRequest().authenticated();


 


        http.csrf().disable();


 


        // 使用我们自定义的过滤器替换UsernamePasswordAuthenticationFilter


        http.addFilterAt(myUsernamePasswordFilter(), UsernamePasswordAuthenticationFilter.class);


    }


}