| 1234567891011121314151617181920212223242526272829303132 |
- package com.ym.mec.task.config;
- import org.springframework.beans.factory.annotation.Autowired;
- import org.springframework.context.annotation.Configuration;
- import org.springframework.security.config.annotation.web.builders.HttpSecurity;
- import org.springframework.security.oauth2.config.annotation.web.configuration.EnableResourceServer;
- import org.springframework.security.oauth2.config.annotation.web.configuration.ResourceServerConfigurerAdapter;
- import org.springframework.security.oauth2.config.annotation.web.configurers.ResourceServerSecurityConfigurer;
- import com.ym.mec.common.security.BaseAccessDeniedHandler;
- import com.ym.mec.common.security.BaseAuthenticationEntryPoint;
- @Configuration
- @EnableResourceServer
- public class ResourceServerConfig extends ResourceServerConfigurerAdapter {
- @Autowired
- private BaseAccessDeniedHandler baseAccessDeniedHandler;
- @Autowired
- private BaseAuthenticationEntryPoint baseAuthenticationEntryPoint;
- @Override
- public void configure(HttpSecurity http) throws Exception {
- http.authorizeRequests().antMatchers("/v2/api-docs").permitAll().anyRequest().authenticated().and().csrf().disable();
- }
- @Override
- public void configure(ResourceServerSecurityConfigurer resources) throws Exception {
- resources.authenticationEntryPoint(baseAuthenticationEntryPoint).accessDeniedHandler(baseAccessDeniedHandler);
- }
- }
|
