| | |
|---|
| | | import org.springframework.security.config.annotation.web.configurers.ExpressionUrlAuthorizationConfigurer; |
|---|
| | | import org.springframework.security.config.http.SessionCreationPolicy; |
|---|
| | | import org.springframework.security.web.SecurityFilterChain; |
|---|
| | | import org.springframework.security.web.access.channel.ChannelProcessingFilter; |
|---|
| | | import org.springframework.security.web.access.intercept.FilterSecurityInterceptor; |
|---|
| | | import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter; |
|---|
| | | |
|---|
| | |
|---|
| | | .authenticationEntryPoint(restAuthenticationEntryPoint) |
|---|
| | | // 自定义权限拦截器JWT过滤器 |
|---|
| | | .and() |
|---|
| | | .addFilterBefore(webSecurityCorsFilter(), UsernamePasswordAuthenticationFilter.class) |
|---|
| | | .addFilterBefore(webSecurityCorsFilter(), ChannelProcessingFilter.class) |
|---|
| | | .addFilterBefore(jwtAuthenticationTokenFilter, UsernamePasswordAuthenticationFilter.class); |
|---|
| | | //有动态权限配置时添加动态权限校验过滤器 |
|---|
| | | if (dynamicSecurityService != null) { |
|---|
