no message

0bec70c8 · 杨伊博 · a46fcef8 · 0bec70c8 · 0bec70c8
Commit 0bec70c8 authored Mar 01, 2017 by 杨伊博
Hide whitespace changes
Inline Side-by-side

Showing with 8 additions and 15 deletions

pom.xml springboot-springSecurity2/pom.xml +0 -5

WebSecurityConfig.java ...rc/main/java/com/us/example/config/WebSecurityConfig.java +8 -10

No files found.
--- a/springboot-springSecurity2/pom.xml
+++ b/springboot-springSecurity2/pom.xml
@@ -35,11 +35,6 @@
            <artifactId>spring-boot-starter-thymeleaf</artifactId>
        </dependency>

-        <!-- 用于home.html文件中的 hasRole('ROLE_ADMIN') 语句-->
-        <dependency>
-            <groupId>org.thymeleaf.extras</groupId>
-            <artifactId>thymeleaf-extras-springsecurity4</artifactId>
-        </dependency>
        <!--db-->
        <dependency>
            <groupId>mysql</groupId>

--- a/springboot-springSecurity2/src/main/java/com/us/example/config/WebSecurityConfig.java
+++ b/springboot-springSecurity2/src/main/java/com/us/example/config/WebSecurityConfig.java
@@ -11,26 +11,27 @@ import org.springframework.security.config.annotation.method.configuration.Enabl
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
 import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+import org.springframework.security.config.annotation.web.servlet.configuration.EnableWebMvcSecurity;
 import org.springframework.security.core.userdetails.UserDetailsService;
 import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
 import org.springframework.security.crypto.password.PasswordEncoder;
+import org.springframework.web.servlet.config.annotation.EnableWebMvc;

 /**
 * Created by yangyibo on 17/1/18.
 */
 @Configuration
 @EnableWebSecurity
-@EnableGlobalMethodSecurity(securedEnabled = true)
+//@EnableGlobalMethodSecurity(securedEnabled = true)
 public class WebSecurityConfig extends WebSecurityConfigurerAdapter {

-    @Bean
-    UserDetailsService customUserService(){ //注册UserDetailsService 的bean
-        return new CustomUserService();
-    }
+    @Autowired
+     private  CustomUserService customUserService;

-    @Override
+
+    @Autowired
    protected void configure(AuthenticationManagerBuilder auth) throws Exception {
-        auth.userDetailsService(customUserService()).passwordEncoder(new PasswordEncoder(){
+        auth.userDetailsService(customUserService).passwordEncoder(new PasswordEncoder(){

            @Override
            public String encode(CharSequence rawPassword) {
@@ -48,9 +49,6 @@ public class WebSecurityConfig extends WebSecurityConfigurerAdapter {
        http
                .csrf().disable()
                .authorizeRequests()
-                .antMatchers("/login").permitAll()
-                .antMatchers("/logout").permitAll()
-                .antMatchers("/").permitAll()
                .antMatchers("/users/**")
                .authenticated()
                .antMatchers(HttpMethod.POST)