Security快速入门
如何使用SpringSecurity来处理权限问题
首先使用springSecurity需要使用到以下的第二个jar包
<dependency>
<groupId>org.springframework.cloud</groupId>
<artifactId>spring-cloud-starter-oauth2</artifactId>
</dependency>
<dependency>
<groupId>org.springframework.cloud</groupId>
<artifactId>spring-cloud-starter-security</artifactId>
</dependency>
通过继承 WebSecurityConfigurerAdapter
来对springSecurity进行配置,这里只是最基本的配置,使用httpbasic的方式进行登陆
@Configuration
@EnableWebSecurity
public class BrowserSecurityConfig extends WebSecurityConfigurerAdapter {
@Override
protected void configure(HttpSecurity http) throws Exception {
http.httpBasic()
.and()
.authorizeRequests().anyRequest().authenticated()
.and()
.csrf().disable();
}
实现UserDetailService接口
@Component
@Slf4j
public class BrowserUserDetail implements UserDetailsService{
@Autowired
private PasswordEncoder passwordEncoder;
@Override
public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {
log.info("登陆用户:"+username);
User user = new User(username,passwordEncoder.encode("123456"),true,true,true,true, AuthorityUtils.createAuthorityList("admin"));
return user;
}
}
最后启动启动类,在浏览器中输入需要访问的地址出现如下画面