2023-01-05 19:20:21 +08:00
|
|
|
|
package com.pj.satoken;
|
|
|
|
|
|
|
|
|
|
|
|
import org.springframework.context.annotation.Bean;
|
|
|
|
|
|
import org.springframework.context.annotation.Configuration;
|
|
|
|
|
|
import org.springframework.web.servlet.config.annotation.InterceptorRegistry;
|
|
|
|
|
|
import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
|
|
|
|
|
|
|
|
|
|
|
|
import cn.dev33.satoken.context.SaHolder;
|
|
|
|
|
|
import cn.dev33.satoken.filter.SaServletFilter;
|
|
|
|
|
|
import cn.dev33.satoken.interceptor.SaInterceptor;
|
|
|
|
|
|
import cn.dev33.satoken.util.SaResult;
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
|
* [Sa-Token 权限认证] 配置类
|
|
|
|
|
|
* @author kong
|
|
|
|
|
|
*
|
|
|
|
|
|
*/
|
|
|
|
|
|
@Configuration
|
|
|
|
|
|
public class SaTokenConfigure implements WebMvcConfigurer {
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
|
* 注册 Sa-Token 拦截器打开注解鉴权功能
|
|
|
|
|
|
*/
|
|
|
|
|
|
@Override
|
|
|
|
|
|
public void addInterceptors(InterceptorRegistry registry) {
|
|
|
|
|
|
// 注册 Sa-Token 拦截器打开注解鉴权功能
|
|
|
|
|
|
registry.addInterceptor(new SaInterceptor()).addPathPatterns("/**");
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
|
* 注册 [Sa-Token 全局过滤器]
|
|
|
|
|
|
*/
|
|
|
|
|
|
@Bean
|
|
|
|
|
|
public SaServletFilter getSaServletFilter() {
|
|
|
|
|
|
return new SaServletFilter()
|
|
|
|
|
|
|
|
|
|
|
|
// 指定 [拦截路由] 与 [放行路由]
|
|
|
|
|
|
.addInclude("/**")// .addExclude("/favicon.ico")
|
|
|
|
|
|
|
|
|
|
|
|
// 认证函数: 每次请求执行
|
|
|
|
|
|
.setAuth(obj -> {
|
|
|
|
|
|
// System.out.println("---------- sa全局认证 " + SaHolder.getRequest().getRequestPath());
|
|
|
|
|
|
|
|
|
|
|
|
})
|
|
|
|
|
|
|
|
|
|
|
|
// 异常处理函数:每次认证函数发生异常时执行此函数
|
|
|
|
|
|
.setError(e -> {
|
|
|
|
|
|
System.out.println("---------- sa全局异常 ");
|
|
|
|
|
|
e.printStackTrace();
|
|
|
|
|
|
return SaResult.error(e.getMessage());
|
|
|
|
|
|
})
|
|
|
|
|
|
|
2023-04-29 22:10:14 +08:00
|
|
|
|
// 前置函数:在每次认证函数之前执行(BeforeAuth 不受 includeList 与 excludeList 的限制,所有请求都会进入)
|
2023-01-05 19:20:21 +08:00
|
|
|
|
.setBeforeAuth(r -> {
|
|
|
|
|
|
// ---------- 设置一些安全响应头 ----------
|
|
|
|
|
|
SaHolder.getResponse()
|
|
|
|
|
|
// 服务器名称
|
|
|
|
|
|
.setServer("sa-server")
|
|
|
|
|
|
// 是否可以在iframe显示视图: DENY=不可以 | SAMEORIGIN=同域下可以 | ALLOW-FROM uri=指定域名下可以
|
|
|
|
|
|
.setHeader("X-Frame-Options", "SAMEORIGIN")
|
|
|
|
|
|
// 是否启用浏览器默认XSS防护: 0=禁用 | 1=启用 | 1; mode=block 启用, 并在检查到XSS攻击时,停止渲染页面
|
|
|
|
|
|
.setHeader("X-XSS-Protection", "1; mode=block")
|
|
|
|
|
|
// 禁用浏览器内容嗅探
|
|
|
|
|
|
.setHeader("X-Content-Type-Options", "nosniff")
|
|
|
|
|
|
;
|
|
|
|
|
|
})
|
|
|
|
|
|
;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
}
|
