javascript
Spring Security 决策器前缀修改
最近在給系統(tǒng)所有URL添加權(quán)限,后面發(fā)現(xiàn)系統(tǒng)中角色是以ROLE.開頭的,但是在SpringSecurity中自定義權(quán)限前綴權(quán)限的前綴默認是ROLE_
先前查了相關(guān)資料只要修改配置,將rolePrefix的value 改成ROLE.修改配置后發(fā)現(xiàn)沒有效果
<bean?id="roleVoter"?class="org.springframework.security.access.vote.RoleVoter">??
????<property?name="rolePrefix"?value="ROLE."></property>??
</bean>?
后面發(fā)現(xiàn)需要這樣配置:
<security:http auto-config="true" access-decision-manager-ref="accessDecisionManager">
?????? ?
?? ??? ?<security:http-basic />
?? ??? ?<!-- Remove comments to activate the filter -->
?? ??? ?<security:custom-filter ref="fwkSessionTimeOutFilter" position="FIRST" />
??????? <security:custom-filter ref="ajaxTimeoutRedirectFilter" after="EXCEPTION_TRANSLATION_FILTER"/>
?? ??? ?<security:intercept-url pattern="/css/**" filters="none" />
?? ??? ?<security:intercept-url pattern="/p_w_picpaths/**" filters="none" />
?? ??? ?<security:intercept-url pattern="/js/**" filters="none" />
?? ??? ?<security:intercept-url pattern="/index.jsp*" filters="none" />
?? ??? ?<security:intercept-url pattern="/logout*" filters="none" />
?? ??? ?<security:intercept-url pattern="/login*" access="IS_AUTHENTICATED_ANONYMOUSLY" />
</security:http>
?? <!--重新定義決策器-->
??? <bean id="accessDecisionManager" class="org.springframework.security.access.vote.AffirmativeBased">
??????? <property name="decisionVoters">
??????????? <list>
??????????????? <bean class="org.springframework.security.access.vote.RoleVoter">
??????????????????? <property name="rolePrefix" value="ROLE." />
??????????????? </bean>
??????????????? <bean class="org.springframework.security.access.vote.AuthenticatedVoter" />
??????????? </list>
??????? </property>
??? </bean>
?
轉(zhuǎn)載于:https://blog.51cto.com/flyfish90/1650164
《新程序員》:云原生和全面數(shù)字化實踐50位技術(shù)專家共同創(chuàng)作,文字、視頻、音頻交互閱讀總結(jié)
以上是生活随笔為你收集整理的Spring Security 决策器前缀修改的全部內(nèi)容,希望文章能夠幫你解決所遇到的問題。
- 上一篇: Git 远程操作详解
- 下一篇: undefined reference