пре 1 година · 4aea23eb75
--- a/pom.xml
+++ b/pom.xml
@@ -4,7 +4,7 @@
 
				 	<modelVersion>4.0.0</modelVersion>
			
 
				 
			
 
				 	<groupId>com.unis.module</groupId>
			
 
				-	<artifactId>depot-eureka-tianjin</artifactId>
			
 
				+	<artifactId>depot-server</artifactId>
			
 
				 	<version>0.0.1-SNAPSHOT</version>
			
 
				 	<packaging>jar</packaging>
			
 
				 
			
@@ -14,7 +14,7 @@
 
				 	<parent>
			
 
				 		<groupId>org.springframework.boot</groupId>
			
 
				 		<artifactId>spring-boot-starter-parent</artifactId>
			
 
				-		<version>2.0.3.RELEASE</version>
			
 
				+		<version>2.0.4.RELEASE</version>
			
 
				 		<relativePath/> <!-- lookup parent from repository -->
			
 
				 	</parent>
			
 
				 
			
@@ -36,6 +36,10 @@
 
				 			<artifactId>spring-boot-starter-test</artifactId>
			
 
				 			<scope>test</scope>
			
 
				 		</dependency>
			
 
				+		<dependency>  
			
 
				+		    <groupId>org.springframework.boot</groupId>  
			
 
				+		    <artifactId>spring-boot-starter-security</artifactId>  
			
 
				+		</dependency>
			
 
				 	</dependencies>
			
 
				 
			
 
				 	<dependencyManagement>
			
--- a/src/main/java/com/unis/module/eureka/EurekaApplication.java
+++ b/src/main/java/com/unis/module/eureka/EurekaApplication.java
@@ -1,7 +1,9 @@
 
				 package com.unis.module.eureka;
			
 
				 
			
 
				 import org.springframework.boot.SpringApplication;
			
 
				+import org.springframework.boot.autoconfigure.EnableAutoConfiguration;
			
 
				 import org.springframework.boot.autoconfigure.SpringBootApplication;
			
 
				+import org.springframework.boot.autoconfigure.security.servlet.SecurityAutoConfiguration;
			
 
				 import org.springframework.cloud.netflix.eureka.server.EnableEurekaServer;
			
 
				 
			
 
				 /**
			
@@ -13,6 +15,7 @@ import org.springframework.cloud.netflix.eureka.server.EnableEurekaServer;
 
				  */
			
 
				 @SpringBootApplication
			
 
				 @EnableEurekaServer
			
 
				+@EnableAutoConfiguration(exclude = SecurityAutoConfiguration.class)
			
 
				 public class EurekaApplication {
			
 
				 
			
 
				     public static void main(String[] args) {
			
--- a/src/main/java/com/unis/module/eureka/WebSecurityConfig.java
+++ b/src/main/java/com/unis/module/eureka/WebSecurityConfig.java
@@ -0,0 +1,51 @@
 
				+package com.unis.module.eureka;
			
 
				+
			
 
				+import org.springframework.context.annotation.Configuration;
			
 
				+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
			
 
				+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
			
 
				+import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
			
 
				+
			
 
				+@Configuration
			
 
				+@EnableWebSecurity
			
 
				+public class WebSecurityConfig 
			
 
				+extends WebSecurityConfigurerAdapter
			
 
				+{
			
 
				+
			
 
				+	@Override
			
 
				+    protected void configure(HttpSecurity http) throws Exception {
			
 
				+		String[] urls = {
			
 
				+                "*",
			
 
				+                "/*",
			
 
				+                "/*/*",
			
 
				+                "/*/*/*",
			
 
				+                "/*/*/*/*",
			
 
				+                "/*/*/*/*/*/*",
			
 
				+                "/depot-system/userInfo/login",
			
 
				+                "/login",
			
 
				+                "depot-system/userInfo/login",
			
 
				+                "login"
			
 
				+        };
			
 
				+
			
 
				+		http.authorizeRequests().anyRequest().permitAll() //允许所有用户访问所有资源
			
 
				+        .and()
			
 
				+        .csrf().disable(); // 禁用CSRF（防止伪造的跨域攻击）
			
 
				+
			
 
				+        super.configure(http);
			
 
				+//        
			
 
				+//        http.authorizeRequests() // 对请求执行认证与授权
			
 
				+//                .antMatchers(urls) // 匹配某些请求路径
			
 
				+//                .permitAll() // （对此前匹配的请求路径）不需要通过认证即允许访问
			
 
				+//                .anyRequest() // 除以上配置过的请求路径以外的所有请求路径
			
 
				+//                .authenticated(); // 要求是已经通过认证的
			
 
				+//        super.configure(http);
			
 
				+		
			
 
				+//		http.httpBasic().and().authorizeRequests().antMatchers("/actuator/**").authenticated().anyRequest().permitAll();
			
 
				+//		http
			
 
				+//		// 关闭csrf token认证不需要csrf防护
			
 
				+//		.csrf().disable()
			
 
				+//		// 关闭session会话管理器 JWT 不需要
			
 
				+//		.sessionManagement().disable()
			
 
				+//		// 关闭记住我功能 JWT 不需要
			
 
				+//		.rememberMe().disable();
			
 
				+    }
			
 
				+}
			
--- a/src/main/resources/application.yml
+++ b/src/main/resources/application.yml
@@ -3,6 +3,7 @@ server:
 
				 
			
 
				 eureka:
			
 
				   instance:
			
 
				+    hostname: localhost
			
 
				     prefer-ip-address: true
			
 
				     # 仅测试使用,部署上线不使用
			
 
				     status-page-url-path: /swagger-ui.html
			
@@ -10,14 +11,29 @@ eureka:
 
				     register-with-eureka: false
			
 
				     fetch-registry: false
			
 
				     service-url:
			
 
				-      defaultZone: http://172.16.0.16:9001/eureka/
			
 
				+      #defaultZone: http://${eureka.instance.hostname}:${server.port}/eureka/
			
 
				+      defaultZone: http://${spring.security.user.name}:${spring.security.user.password}@${eureka.instance.hostname}:${server.port}/eureka
			
 
				   server:
			
 
				     # 关闭自我保护机制(不关闭会在所有服务连接异常85%后不在注销服务)
			
 
				     enable-self-preservation: false
			
 
				     # 每隔30s扫描服务列表，移除失效服务(默认60000)
			
 
				     eviction-interval-timer-in-ms: 30000
			
 
				+    
			
 
				+spring:
			
 
				+  security:
			
 
				+    basic:
			
 
				+      enabled: true
			
 
				+    user:
			
 
				+      # 用户名
			
 
				+      name: tj_admin
			
 
				+      # 用户密码
			
 
				+      password: Admin_1234
			
 
				+
			
 
				 management:
			
 
				+  server:
			
 
				+    port: -1
			
 
				   endpoints:
			
 
				+    #enabled-by-default: false
			
 
				     web:
			
 
				       exposure:
			
 
				         include: '*'