From 61a5cdb61ed9caab7f77c4b01e35d58bb68cfef6 Mon Sep 17 00:00:00 2001
From: 龚焕茏 <2842157468@qq.com>
Date: 星期三, 24 七月 2024 11:24:35 +0800
Subject: [PATCH] feat:用户导入
---
src/main/java/com/ycl/jxkg/config/spring/security/SecurityConfigurer.java | 10 +++++++++-
1 files changed, 9 insertions(+), 1 deletions(-)
diff --git a/src/main/java/com/ycl/jxkg/config/spring/security/SecurityConfigurer.java b/src/main/java/com/ycl/jxkg/config/spring/security/SecurityConfigurer.java
index 1eb012c..fb2a490 100644
--- a/src/main/java/com/ycl/jxkg/config/spring/security/SecurityConfigurer.java
+++ b/src/main/java/com/ycl/jxkg/config/spring/security/SecurityConfigurer.java
@@ -67,6 +67,12 @@
this.restAccessDeniedHandler = restAccessDeniedHandler;
}
+ @Bean
+ public SessionFilter sessionFilter() throws Exception {
+ SessionFilter jwtTokenFilter = new SessionFilter(authenticationManagerBean());
+ return jwtTokenFilter;
+ }
+
/**
* @param http http
* @throws Exception exception
@@ -84,7 +90,8 @@
.and().authenticationProvider(restAuthenticationProvider)
.authorizeRequests()
.antMatchers(securityIgnoreUrls.toArray(ignores)).permitAll()
- .antMatchers("/api/admin/**").hasRole(RoleEnum.ADMIN.getName())
+ .antMatchers("/api/admin/user/update/password").permitAll()
+ .antMatchers("/api/admin/**").hasAnyRole(RoleEnum.ADMIN.getName(),RoleEnum.TEACHER.getName())
.antMatchers("/api/student/**").hasRole(RoleEnum.STUDENT.getName())
.antMatchers("/api/register/**").anonymous()
.anyRequest().permitAll()
@@ -94,6 +101,7 @@
.and().rememberMe().key(CookieConfig.getName()).tokenValiditySeconds(CookieConfig.getInterval()).userDetailsService(formDetailsService)
.and().csrf().disable()
.cors();
+ http.addFilter(sessionFilter());
}
--
Gitblit v1.8.0