搭配zgyw,实现gb28181
parent: ab34cb37 | 补丁 | 提交 | ignore whitespace
648540858
2024-01-31 68fbc8fef1ba8d77472e6b849c9265fff751ec31 
优化跨域配置,默认允许全部跨域
3个文件已修改
19 ■■■■■ 已修改文件
src/main/java/com/genersoft/iot/vmp/conf/security/WebSecurityConfig.java 13 ●●●● 补丁 | 查看 | 原始文档 | blame | 历史
src/main/resources/all-application.yml 2 ●●● 补丁 | 查看 | 原始文档 | blame | 历史
src/main/resources/application-dev.yml 4 ●●●● 补丁 | 查看 | 原始文档 | blame | 历史 
 src/main/java/com/genersoft/iot/vmp/conf/security/WebSecurityConfig.java


@@ -1,12 +1,12 @@


package com.genersoft.iot.vmp.conf.security;




import com.genersoft.iot.vmp.conf.UserSetting;


import org.springframework.core.annotation.Order;


import org.slf4j.Logger;


import org.slf4j.LoggerFactory;


import org.springframework.beans.factory.annotation.Autowired;


import org.springframework.context.annotation.Bean;


import org.springframework.context.annotation.Configuration;


import org.springframework.core.annotation.Order;


import org.springframework.security.authentication.AuthenticationManager;


import org.springframework.security.authentication.dao.DaoAuthenticationProvider;


import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;


@@ -25,6 +25,7 @@




import java.util.ArrayList;


import java.util.Arrays;


import java.util.Collections;




/**


 * 配置Spring Security


@@ -129,8 +130,14 @@


        corsConfiguration.setAllowedHeaders(Arrays.asList("*"));


        corsConfiguration.setAllowedMethods(Arrays.asList("*"));


        corsConfiguration.setMaxAge(3600L);


        corsConfiguration.setAllowCredentials(true);


        corsConfiguration.setAllowedOrigins(userSetting.getAllowedOrigins());


        if (userSetting.getAllowedOrigins() != null && !userSetting.getAllowedOrigins().isEmpty()) {


            corsConfiguration.setAllowCredentials(true);


            corsConfiguration.setAllowedOrigins(userSetting.getAllowedOrigins());


        }else {


            corsConfiguration.setAllowCredentials(false);


            corsConfiguration.setAllowedOrigins(Collections.singletonList(CorsConfiguration.ALL));


        }




        corsConfiguration.setExposedHeaders(Arrays.asList(JwtUtils.getHeader()));




        UrlBasedCorsConfigurationSource url = new UrlBasedCorsConfigurationSource();




 src/main/resources/all-application.yml


@@ -237,7 +237,7 @@


    register-again-after-time: 60


    # 国标续订方式,true为续订,每次注册在同一个会话里,false为重新注册,每次使用新的会话


    register-keep-int-dialog: false


    # 跨域配置,配置你访问前端页面的地址即可, 可以配置多个


    # 跨域配置,不配置此项则允许所有跨域请求,配置后则只允许配置的页面的地址请求, 可以配置多个


    allowed-origins:


        - http://localhost:8008


        - http://192.168.1.3:8008




 src/main/resources/application-dev.yml


@@ -110,10 +110,6 @@


  auto-apply-play: true


  # 设备/通道状态变化时发送消息


  device-status-notify: true


  # 跨域配置,配置你访问前端页面的地址即可, 可以配置多个


  allowed-origins:


    - http://localhost:8080


    - http://127.0.0.1:8080


# [可选] 日志配置, 一般不需要改


logging:


  config: classpath:logback-spring-local.xml