Merge branch 'dev' of chenweida/jkzl-start into dev

common-security-starter/src/main/java/com.yihu.base.security/rbas/IRbasService.java

@@ -9,7 +9,7 @@ import javax.servlet.http.HttpServletRequest;
 * Created by chenweida on 2017/12/1.
 * 需要权限认证的使用这个接口
 */
public interface IRbasService {
public interface RbasServiceProvider {
     Boolean hasPerssion(HttpServletRequest request, Authentication authentication) ;
}

common-security-starter/src/main/java/com.yihu.base.security/rbas/provider/RbasAuthorizeConfigProvider.java

@@ -1,13 +1,10 @@
package com.yihu.base.security.rbas.provider;
import com.yihu.base.security.rbas.IRbasService;
import org.springframework.core.annotation.Order;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.configurers.ExpressionUrlAuthorizationConfigurer;
import org.springframework.stereotype.Component;
import javax.annotation.Resource;
/**
 * Created by chenweida on 2017/12/5.
 * 角色认证
@@ -15,11 +12,9 @@ import javax.annotation.Resource;
@Component
@Order(Integer.MAX_VALUE)
public class RbasAuthorizeConfigProvider implements AuthorizeConfigProvider {
    @Resource(name="rbasService")
    private IRbasService rbasService;
    @Override
    public void config(ExpressionUrlAuthorizationConfigurer<HttpSecurity>.ExpressionInterceptUrlRegistry expressionInterceptUrlRegistry) {
        expressionInterceptUrlRegistry.anyRequest().access("@rbasService.hasPerssion(request,authentication)");
        expressionInterceptUrlRegistry.anyRequest().access("@rbasServiceProvider.hasPerssion(request,authentication)");
    }
}