| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687 |
- package com.yihu.base.security.config;
- import com.yihu.base.security.properties.SecurityProperties;
- import com.yihu.base.security.rbas.provider.AuthorizeConfigProviderManager;
- import com.yihu.base.security.sms.SmsCodeAuthenticationSecurityConfig;
- import org.springframework.beans.factory.annotation.Autowired;
- import org.springframework.boot.autoconfigure.security.oauth2.OAuth2AutoConfiguration;
- import org.springframework.context.ApplicationContext;
- import org.springframework.context.annotation.Bean;
- import org.springframework.context.annotation.Configuration;
- import org.springframework.context.annotation.Primary;
- import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity;
- import org.springframework.security.config.annotation.web.builders.HttpSecurity;
- import org.springframework.security.oauth2.config.annotation.web.configuration.EnableResourceServer;
- import org.springframework.security.oauth2.config.annotation.web.configuration.ResourceServerConfigurerAdapter;
- import org.springframework.security.oauth2.config.annotation.web.configurers.ResourceServerSecurityConfigurer;
- import org.springframework.security.oauth2.provider.authentication.OAuth2AuthenticationManager;
- import org.springframework.security.oauth2.provider.expression.OAuth2MethodSecurityExpressionHandler;
- import org.springframework.security.oauth2.provider.expression.OAuth2WebSecurityExpressionHandler;
- import org.springframework.security.oauth2.provider.token.TokenStore;
- import org.springframework.security.web.access.expression.DefaultWebSecurityExpressionHandler;
- import org.springframework.security.web.authentication.AuthenticationFailureHandler;
- import org.springframework.security.web.authentication.AuthenticationSuccessHandler;
- /**
- * Created by chenweida on 2017/12/4.
- */
- @Configuration
- @EnableResourceServer //开启资源服务器
- public class ResourceServerConfig extends ResourceServerConfigurerAdapter {
- @Autowired
- protected AuthenticationSuccessHandler authenticationSuccessHandler;
- @Autowired
- protected AuthenticationFailureHandler authenticationFailureHandler;
- @Autowired
- private OAuth2AuthenticationManager authenticationManager;
- @Autowired
- private TokenStore redisTokenStore;
- @Autowired
- private SmsCodeAuthenticationSecurityConfig smsCodeAuthenticationSecurityConfig;
- @Autowired
- private AuthorizeConfigProviderManager authorizeConfigProviderManager;
- @Autowired
- private OAuth2WebSecurityExpressionHandler oAuth2WebSecurityExpressionHandler;
- @Override
- public void configure(HttpSecurity http) throws Exception {
- http
- .csrf().disable()
- .formLogin()//设置验证码 账号密码登陆
- .loginPage(SecurityProperties.formLoginPage)
- .loginProcessingUrl(SecurityProperties.formLogin)
- .successHandler(authenticationSuccessHandler)
- .failureHandler(authenticationFailureHandler)
- .and()
- .apply(smsCodeAuthenticationSecurityConfig) //添加自定义短信登陆;
- ;
- //验证路径
- authorizeConfigProviderManager.config(http.authorizeRequests());
- }
- @Override
- public void configure(ResourceServerSecurityConfigurer resources) throws Exception {
- resources.
- authenticationManager(authenticationManager)
- .tokenStore(redisTokenStore)
- .expressionHandler(oAuth2WebSecurityExpressionHandler);
- }
- /**
- * 解决bug
- * Failed to evaluate expression '#oauth2.throwOnError
- * No bean resolver registered in the context to resolve access to bean
- * @param applicationContext
- * @return
- */
- @Bean
- @Primary
- public OAuth2WebSecurityExpressionHandler oAuth2WebSecurityExpressionHandler(ApplicationContext applicationContext) {
- OAuth2WebSecurityExpressionHandler expressionHandler = new OAuth2WebSecurityExpressionHandler();
- expressionHandler.setApplicationContext(applicationContext);
- return expressionHandler;
- }
- }
|
