结论
添加在UsernamePasswordAuthenticationFilter
之前的 JWT 过滤器中可以直接用username
去构造UsernamePasswordAuthenticationToken
:
UsernamePasswordAuthenticationToken token = new UsernamePasswordAuthenticationToken(username, null);
SecurityContextHolder.getContext().setAuthentication(token);
源码