gitee
/
eiam
mirror of https://gitee.com/topiam/eiam
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

同步模块整合

pull/65/head
awenes 2023-10-06 15:37:36 +08:00
parent 92b2117058
commit 5252487f0b
2 changed files with 7 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
eiam-console/src/main/java/cn/topiam/employee/console/configuration/ConsoleSecurityConfiguration.java
View File

@ -68,6 +68,8 @@ import cn.topiam.employee.support.security.authentication.WebAuthenticationDetai
import cn.topiam.employee.support.security.csrf.SpaCsrfTokenRequestHandler; import cn.topiam.employee.support.security.csrf.SpaCsrfTokenRequestHandler;
import lombok.RequiredArgsConstructor; import lombok.RequiredArgsConstructor;
import static cn.topiam.employee.common.constant.SynchronizerConstants.EVENT_RECEIVE_PATH;
import static org.springframework.security.config.Customizer.withDefaults; import static org.springframework.security.config.Customizer.withDefaults;
import static org.springframework.security.web.header.writers.XXssProtectionHeaderWriter.HeaderValue.ENABLED_MODE_BLOCK; import static org.springframework.security.web.header.writers.XXssProtectionHeaderWriter.HeaderValue.ENABLED_MODE_BLOCK;
import static org.springframework.web.cors.CorsConfiguration.ALL; import static org.springframework.web.cors.CorsConfiguration.ALL;
@ -99,12 +101,8 @@ public class ConsoleSecurityConfiguration implements BeanClassLoaderAware {
*/ */
@Bean @Bean
public WebSecurityCustomizer webSecurityCustomizer() { public WebSecurityCustomizer webSecurityCustomizer() {
return (web) -> web.ignoring().requestMatchers( return web -> {
new AntPathRequestMatcher("/css/**", HttpMethod.GET.name()), };
new AntPathRequestMatcher("/js/**", HttpMethod.GET.name()),
new AntPathRequestMatcher("/webjars/**", HttpMethod.GET.name()),
new AntPathRequestMatcher("/images/**", HttpMethod.GET.name()),
new AntPathRequestMatcher("/favicon.ico", HttpMethod.GET.name()));
} }
/** /**
@ -134,7 +132,7 @@ public class ConsoleSecurityConfiguration implements BeanClassLoaderAware {
//记住我 //记住我
.rememberMe(withRememberMeConfigurerDefaults(settingRepository)) .rememberMe(withRememberMeConfigurerDefaults(settingRepository))
//CSRF //CSRF
.csrf(withCsrfConfigurerDefaults()) .csrf(withCsrfConfigurerDefaults(new AntPathRequestMatcher(EVENT_RECEIVE_PATH+"/{code}")))
//headers //headers
.headers(withHeadersConfigurerDefaults(settingRepository)) .headers(withHeadersConfigurerDefaults(settingRepository))
//cors //cors
@ -157,6 +155,7 @@ public class ConsoleSecurityConfiguration implements BeanClassLoaderAware {
public Customizer<AuthorizeHttpRequestsConfigurer<HttpSecurity>.AuthorizationManagerRequestMatcherRegistry> authorizeHttpRequests() { public Customizer<AuthorizeHttpRequestsConfigurer<HttpSecurity>.AuthorizationManagerRequestMatcherRegistry> authorizeHttpRequests() {
//@formatter:off //@formatter:off
return registry -> { return registry -> {
registry.requestMatchers(new AntPathRequestMatcher(EVENT_RECEIVE_PATH+"/{code}")).permitAll();
registry.requestMatchers(new AntPathRequestMatcher(CURRENT_STATUS, HttpMethod.GET.name())).permitAll(); registry.requestMatchers(new AntPathRequestMatcher(CURRENT_STATUS, HttpMethod.GET.name())).permitAll();
registry.requestMatchers(new AntPathRequestMatcher(PUBLIC_SECRET_PATH, HttpMethod.GET.name())).permitAll(); registry.requestMatchers(new AntPathRequestMatcher(PUBLIC_SECRET_PATH, HttpMethod.GET.name())).permitAll();
registry.anyRequest().authenticated(); registry.anyRequest().authenticated();

2
eiam-console/src/main/java/cn/topiam/employee/console/synchronizer/endpoint/IdentitySourceEventReceiveEndpoint.java
View File

@ -54,7 +54,7 @@ public class IdentitySourceEventReceiveEndpoint {
* *
* *
* @param request {@link HttpServletRequest} * @param request {@link HttpServletRequest}
* @param response {@link HttpServletRequest} * @param code {@link String}
* @return {@link ResponseEntity} * @return {@link ResponseEntity}
*/ */
@Trace @Trace