优化鉴权例外， 添加.gitignore

64850858

2021-07-08 c3271d7407e43c176d03c777a89367357c2262e2

优化鉴权例外， 添加.gitignore

 .gitignore

@@ -26,3 +26,4 @@
/.idea/
/target/

/src/main/resources/static/

 src/main/java/com/genersoft/iot/vmp/conf/security/WebSecurityConfig.java

@@ -1,6 +1,8 @@
package com.genersoft.iot.vmp.conf.security;

import com.genersoft.iot.vmp.conf.UserSetup;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
@@ -23,6 +25,8 @@
@EnableWebSecurity
@EnableGlobalMethodSecurity(prePostEnabled = true)
public class WebSecurityConfig extends WebSecurityConfigurerAdapter {

    private final static Logger logger = LoggerFactory.getLogger(WebSecurityConfig.class);

    @Autowired
    private UserSetup userSetup;
@@ -88,9 +92,13 @@
                    .antMatchers("/v3/api-docs/**")
                    .antMatchers("/js/**");
            List<String> interfaceAuthenticationExcludes = userSetup.getInterfaceAuthenticationExcludes();
            System.out.println(interfaceAuthenticationExcludes.size());
            for (String interfaceAuthenticationExclude : interfaceAuthenticationExcludes) {
                web.ignoring().antMatchers(interfaceAuthenticationExclude);
                if (interfaceAuthenticationExclude.split("/").length < 4 ) {
                    logger.warn("{}不满足两极目录，已忽略", interfaceAuthenticationExclude);
                }else {
                    web.ignoring().antMatchers(interfaceAuthenticationExclude);
                }

            }
        }
    }

 src/main/resources/all-application.yml

@@ -134,7 +134,7 @@
    wait-track: false
    # 是否开启接口鉴权
    interface-authentication: true
    # 接口鉴权例外的接口, 即不进行接口鉴权的接口
    # 接口鉴权例外的接口, 即不进行接口鉴权的接口,尽量详细书写，尽量不用/**，至少两级目录
    interface-authentication-excludes:
        - /api/v1/**
    # 推流直播是否录制