org.minbox.framework.security

类 WebSecurityConfiguration

java.lang.Object

org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter

org.minbox.framework.security.WebSecurityConfiguration

所有已实现的接口:

org.springframework.security.config.annotation.SecurityConfigurer<javax.servlet.Filter,org.springframework.security.config.annotation.web.builders.WebSecurity>, org.springframework.security.config.annotation.web.WebSecurityConfigurer<org.springframework.security.config.annotation.web.builders.WebSecurity>

public abstract class WebSecurityConfiguration
extends org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter

ApiBoot integrates SpringSecurity configuration class

作者:

恒宇少年

构造器概要

构造器

构造器和说明
WebSecurityConfiguration()

方法概要

限定符和类型	方法和说明
org.springframework.security.authentication.AuthenticationManager	authenticationManagerBean() Authorized manager
protected void	configure(org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder auth) Configure user authentication management Password encryption method passwordEncoder()
protected void	configure(org.springframework.security.config.annotation.web.builders.HttpSecurity http) Disable basic http
void	configure(org.springframework.security.config.annotation.web.builders.WebSecurity web) Configure SpringSecurity Web Set a list of paths to exclude security intercepts
protected List<String>	configureIgnoreUrls() Configure Excluded Path List
protected abstract boolean	disableCsrf() Disable csrf This method is an abstract method, and the logic is implemented by subclasses
protected abstract boolean	disableHttpBasic() Disable basic http This method is an abstract method, and the logic is implemented by subclasses
protected abstract org.springframework.security.web.access.AccessDeniedHandler	getAccessDeniedHandler() Get spring security exception handler This method is left to the implementation class to obtain the customized AccessDeniedHandler implementation class IOC instance from the project If the implementation class does not return an instance, the default DefaultSecurityAccessDeniedHandler is used to return
protected abstract org.springframework.security.web.AuthenticationEntryPoint	getAuthenticationEntryPoint() Get authentication endpoint processing
org.springframework.security.crypto.password.PasswordEncoder	passwordEncoder() Password encryption method

从类继承的方法 org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter

authenticationManager, getApplicationContext, getHttp, init, setApplicationContext, setAuthenticationConfiguration, setContentNegotationStrategy, setObjectPostProcessor, setTrustResolver, userDetailsService, userDetailsServiceBean

从类继承的方法 java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

构造器详细资料

WebSecurityConfiguration

public WebSecurityConfiguration()

方法详细资料

configureIgnoreUrls

protected List<String> configureIgnoreUrls()

Configure Excluded Path List

返回:

Path list

configure

public void configure(org.springframework.security.config.annotation.web.builders.WebSecurity web)

Configure SpringSecurity Web

Set a list of paths to exclude security intercepts

指定者:

configure 在接口中 org.springframework.security.config.annotation.SecurityConfigurer<javax.servlet.Filter,org.springframework.security.config.annotation.web.builders.WebSecurity>

覆盖:

configure 在类中 org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter

参数:

web - WebSecurity

configure

protected void configure(org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder auth)
                  throws Exception

Configure user authentication management

Password encryption method passwordEncoder()

覆盖:

configure 在类中 org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter

参数:

auth - AuthenticationManagerBuilder

抛出:

Exception - exception

authenticationManagerBean

@Bean
public org.springframework.security.authentication.AuthenticationManager authenticationManagerBean()
                                                                                                  throws Exception

Authorized manager

覆盖:

authenticationManagerBean 在类中 org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter

返回:

AuthenticationManager

抛出:

Exception - exception

configure

protected void configure(org.springframework.security.config.annotation.web.builders.HttpSecurity http)
                  throws Exception

Disable basic http

覆盖:

configure 在类中 org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter

参数:

http - HttpSecurity

抛出:

Exception - exception

passwordEncoder

@Bean
 @ConditionalOnMissingBean
public org.springframework.security.crypto.password.PasswordEncoder passwordEncoder()

Password encryption method

返回:

BCryptPasswordEncoder

另请参阅:

PasswordEncoder

getAccessDeniedHandler

protected abstract org.springframework.security.web.access.AccessDeniedHandler getAccessDeniedHandler()

Get spring security exception handler

This method is left to the implementation class to obtain the customized AccessDeniedHandler implementation class IOC instance from the project If the implementation class does not return an instance, the default DefaultSecurityAccessDeniedHandler is used to return

返回:

AccessDeniedHandler

getAuthenticationEntryPoint

protected abstract org.springframework.security.web.AuthenticationEntryPoint getAuthenticationEntryPoint()

Get authentication endpoint processing

返回:

AuthenticationEntryPoint

disableHttpBasic

protected abstract boolean disableHttpBasic()

Disable basic http

This method is an abstract method, and the logic is implemented by subclasses

返回:

Disable HttpBasic or not

disableCsrf

protected abstract boolean disableCsrf()

Disable csrf

This method is an abstract method, and the logic is implemented by subclasses

返回:

Disable Csrf or not