Spring security
`
@Configuration
public class SecurityConfig extends WebSecurityConfigurerAdapter {
//权限
@Override
protected void configure(HttpSecurity http) throws Exception {
//请求开启授权
http.authorizeRequests()
// 所有人可以访问“/”下的页面
.antMatchers("/").permitAll
// “/admin/** 下面的页面必须有后面的lv才能访问”
.antMatchers("/admin/L1/**").hasRole("Vip1")
.antMatchers("/admin/L2/**").hasRole("Vip2")
.antMatchers("/admin/L3/"**").hasRole("Vip3");
//没有权限去访问这些页面就会跳转到登录页面
http.formLogin();
//开启了注销并且删除cookie
http.logout().deleteCookie("remove").invalidateHttpSession(thue);
//http.logout().logoutSuccessUrl("/");
//记住我功能
http.rememberMe();
}
//创建用户以及角色
//认证
@Override
protected void configure(AuthenticationManagerBuilder auth) throws Exception {
auth.inMemoryAuthentication()
.withUser("用户名").roles("角色").password("$2a$10$OR3VSksVAmCzc.7WeaRPR.t0wyCsIj24k0Bne8iKWV1o.V9wsP8Xe")
.and()
.withUser("lisi").roles("user").password("$2a$10$p1H8iWa8I4.CA.7Z8bwLjes91ZpY.rYREGHQEInNtAp4NzL6PLKxi");
}
}