搭配zgyw,实现gb28181
blame | 历史 | 补丁 | 提交 | 提交对比 | ignore whitespace
648540858
2024-02-29 c581974027cb6ff2123d5a7dd0b39fd3b3217bd4 
 src/main/java/com/genersoft/iot/vmp/conf/security/WebSecurityConfig.java


@@ -1,12 +1,12 @@


package com.genersoft.iot.vmp.conf.security;




import com.genersoft.iot.vmp.conf.UserSetting;


import org.springframework.core.annotation.Order;


import org.slf4j.Logger;


import org.slf4j.LoggerFactory;


import org.springframework.beans.factory.annotation.Autowired;


import org.springframework.context.annotation.Bean;


import org.springframework.context.annotation.Configuration;


import org.springframework.core.annotation.Order;


import org.springframework.security.authentication.AuthenticationManager;


import org.springframework.security.authentication.dao.DaoAuthenticationProvider;


import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;


@@ -25,6 +25,7 @@




import java.util.ArrayList;


import java.util.Arrays;


import java.util.Collections;




/**


 * 配置Spring Security


@@ -129,8 +130,14 @@


        corsConfiguration.setAllowedHeaders(Arrays.asList("*"));


        corsConfiguration.setAllowedMethods(Arrays.asList("*"));


        corsConfiguration.setMaxAge(3600L);


        corsConfiguration.setAllowCredentials(true);


        corsConfiguration.setAllowedOrigins(userSetting.getAllowedOrigins());


        if (userSetting.getAllowedOrigins() != null && !userSetting.getAllowedOrigins().isEmpty()) {


            corsConfiguration.setAllowCredentials(true);


            corsConfiguration.setAllowedOrigins(userSetting.getAllowedOrigins());


        }else {


            corsConfiguration.setAllowCredentials(false);


            corsConfiguration.setAllowedOrigins(Collections.singletonList(CorsConfiguration.ALL));


        }




        corsConfiguration.setExposedHeaders(Arrays.asList(JwtUtils.getHeader()));




        UrlBasedCorsConfigurationSource url = new UrlBasedCorsConfigurationSource();