1

pom.xml

@@ -4,7 +4,7 @@
 	<modelVersion>4.0.0</modelVersion>
 
 	<groupId>com.unis.module</groupId>
-	<artifactId>depot-eureka-tianjin</artifactId>
+	<artifactId>depot-server</artifactId>
 	<version>0.0.1-SNAPSHOT</version>
 	<packaging>jar</packaging>
 
@@ -14,7 +14,7 @@
 	<parent>
 		<groupId>org.springframework.boot</groupId>
 		<artifactId>spring-boot-starter-parent</artifactId>
-		<version>2.0.3.RELEASE</version>
+		<version>2.0.4.RELEASE</version>
 		<relativePath/> <!-- lookup parent from repository -->
 	</parent>
 
@@ -36,6 +36,10 @@
 			<artifactId>spring-boot-starter-test</artifactId>
 			<scope>test</scope>
 		</dependency>
+		<dependency>  
+		    <groupId>org.springframework.boot</groupId>  
+		    <artifactId>spring-boot-starter-security</artifactId>  
+		</dependency>
 	</dependencies>
 
 	<dependencyManagement>

src/main/java/com/unis/module/eureka/EurekaApplication.java

@@ -1,7 +1,9 @@
 package com.unis.module.eureka;
 
 import org.springframework.boot.SpringApplication;
+import org.springframework.boot.autoconfigure.EnableAutoConfiguration;
 import org.springframework.boot.autoconfigure.SpringBootApplication;
+import org.springframework.boot.autoconfigure.security.servlet.SecurityAutoConfiguration;
 import org.springframework.cloud.netflix.eureka.server.EnableEurekaServer;
 
 /**
@@ -13,6 +15,7 @@ import org.springframework.cloud.netflix.eureka.server.EnableEurekaServer;
  */
 @SpringBootApplication
 @EnableEurekaServer
+@EnableAutoConfiguration(exclude = SecurityAutoConfiguration.class)
 public class EurekaApplication {
 
     public static void main(String[] args) {

src/main/java/com/unis/module/eureka/WebSecurityConfig.java

@@ -0,0 +1,51 @@
+package com.unis.module.eureka;
+
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
+import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+
+@Configuration
+@EnableWebSecurity
+public class WebSecurityConfig 
+extends WebSecurityConfigurerAdapter
+{
+
+	@Override
+    protected void configure(HttpSecurity http) throws Exception {
+		String[] urls = {
+                "*",
+                "/*",
+                "/*/*",
+                "/*/*/*",
+                "/*/*/*/*",
+                "/*/*/*/*/*/*",
+                "/depot-system/userInfo/login",
+                "/login",
+                "depot-system/userInfo/login",
+                "login"
+        };
+
+		http.authorizeRequests().anyRequest().permitAll() //允许所有用户访问所有资源
+        .and()
+        .csrf().disable(); // 禁用CSRF（防止伪造的跨域攻击）
+
+        super.configure(http);
+//        
+//        http.authorizeRequests() // 对请求执行认证与授权
+//                .antMatchers(urls) // 匹配某些请求路径
+//                .permitAll() // （对此前匹配的请求路径）不需要通过认证即允许访问
+//                .anyRequest() // 除以上配置过的请求路径以外的所有请求路径
+//                .authenticated(); // 要求是已经通过认证的
+//        super.configure(http);
+		
+//		http.httpBasic().and().authorizeRequests().antMatchers("/actuator/**").authenticated().anyRequest().permitAll();
+//		http
+//		// 关闭csrf token认证不需要csrf防护
+//		.csrf().disable()
+//		// 关闭session会话管理器 JWT 不需要
+//		.sessionManagement().disable()
+//		// 关闭记住我功能 JWT 不需要
+//		.rememberMe().disable();
+    }
+}

src/main/resources/application.yml

@@ -3,6 +3,7 @@ server:
 
 eureka:
   instance:
+    hostname: localhost
     prefer-ip-address: true
     # 仅测试使用,部署上线不使用
     status-page-url-path: /swagger-ui.html
@@ -10,14 +11,29 @@ eureka:
     register-with-eureka: false
     fetch-registry: false
     service-url:
-      defaultZone: http://172.16.0.16:9001/eureka/
+      #defaultZone: http://${eureka.instance.hostname}:${server.port}/eureka/
+      defaultZone: http://${spring.security.user.name}:${spring.security.user.password}@${eureka.instance.hostname}:${server.port}/eureka
   server:
     # 关闭自我保护机制(不关闭会在所有服务连接异常85%后不在注销服务)
     enable-self-preservation: false
     # 每隔30s扫描服务列表，移除失效服务(默认60000)
     eviction-interval-timer-in-ms: 30000
+    
+spring:
+  security:
+    basic:
+      enabled: true
+    user:
+      # 用户名
+      name: tj_admin
+      # 用户密码
+      password: Admin_1234
+
 management:
+  server:
+    port: -1
   endpoints:
+    #enabled-by-default: false
     web:
       exposure:
         include: '*'