|
|
@@ -95,28 +95,19 @@ public class WebSecurityConfig {
|
|
|
.csrf(CsrfConfigurer::disable)
|
|
|
.authorizeRequests(authorizeRequests -> authorizeRequests.anyRequest().authenticated())
|
|
|
.sessionManagement(sessionManagement -> sessionManagement.sessionCreationPolicy(SessionCreationPolicy.STATELESS))
|
|
|
- .exceptionHandling(exceptions -> exceptions.authenticationEntryPoint(globalAuthenticationEntryPoint()))
|
|
|
+ // hmacFilter情况下大概率用不到这个exceptionHandling
|
|
|
+ .exceptionHandling(exceptions -> exceptions.authenticationEntryPoint(apiAuthenticationEntryPoint()))
|
|
|
// 内置filters已经排序 FilterOrderRegistration.FilterOrderRegistration()
|
|
|
.addFilterBefore(hmacAuthenticationFilter(), UsernamePasswordAuthenticationFilter.class);
|
|
|
return http.build();
|
|
|
}
|
|
|
|
|
|
- // TODO: 2024/7/17 sai Delete
|
|
|
- public AuthenticationEntryPoint globalAuthenticationEntryPoint() {
|
|
|
- return (request, response, authException) -> {
|
|
|
- response.setStatus(HttpStatus.UNAUTHORIZED.value());
|
|
|
- response.setCharacterEncoding(StandardCharsets.UTF_8.name());
|
|
|
- response.setContentType(MediaType.APPLICATION_JSON.toString());
|
|
|
- response.getWriter().write("{\"message:\":\"Global认证失败:" + authException.getMessage() + "\"}");
|
|
|
- };
|
|
|
- }
|
|
|
-
|
|
|
public AuthenticationEntryPoint apiAuthenticationEntryPoint() {
|
|
|
return (request, response, authException) -> {
|
|
|
response.setStatus(HttpStatus.UNAUTHORIZED.value());
|
|
|
response.setCharacterEncoding(StandardCharsets.UTF_8.name());
|
|
|
response.setContentType(MediaType.APPLICATION_JSON.toString());
|
|
|
- response.getWriter().write("{\"message:\":\"认证失败:" + authException.getMessage() + "\"}");
|
|
|
+ response.getWriter().write("{\"msg:\":\"认证失败:" + authException.getMessage() + "\"}");
|
|
|
};
|
|
|
}
|
|
|
|
AA