chore: use providerSettings to create OAuth2TokenEndpointFilter (#1863)

2022-04-20 16:08:10 +08:00 · 2022-04-20 16:08:10 +08:00 · 3f5e83fcae
parent 8ac819ad14
commit 3f5e83fcae
1 changed files with 4 additions and 3 deletions
--- a/src/main/java/run/halo/app/config/WebSecurityConfig.java
+++ b/src/main/java/run/halo/app/config/WebSecurityConfig.java
@ -44,7 +44,7 @@ import run.halo.app.infra.properties.JwtProperties;

 /**
 * @author guqing
- * @date 2022-04-12
+ * @since 2022-04-12
 */
@EnableWebSecurity
@EnableConfigurationProperties(JwtProperties.class)
@ -69,12 +69,13 @@ public class WebSecurityConfig {
        ProviderContextFilter providerContextFilter = new ProviderContextFilter(providerSettings);
        http
            .authorizeHttpRequests((authorize) -> authorize
-                .antMatchers("/api/v1/oauth2/token").permitAll()
+                .antMatchers(providerSettings.getTokenEndpoint()).permitAll()
                .antMatchers("/api/**", "/apis/**").authenticated()
            )
            .csrf(AbstractHttpConfigurer::disable)
            .httpBasic(Customizer.withDefaults())
-            .addFilterBefore(new OAuth2TokenEndpointFilter(authenticationManager()),
+            .addFilterBefore(new OAuth2TokenEndpointFilter(authenticationManager(),
+                    providerSettings.getTokenEndpoint()),
                FilterSecurityInterceptor.class)
            .addFilterAfter(providerContextFilter, SecurityContextPersistenceFilter.class)
            .sessionManagement(