工业级后台API v2
parent: db92570b | patch | commit | ignore whitespace
fengxiang
2018-02-02 70231ff29a5021c01cb31f2c19033defc22c81dd 
安全跨域设置
3 files modified
7 ■■■■■ changed files
src/main/java/com/moral/security/CustomCorsFilter.java 3 ●●●● patch | view | raw | blame | history
src/main/java/com/moral/security/config/WebSecurityConfig.java 3 ●●●● patch | view | raw | blame | history
src/main/java/com/moral/security/model/token/RefreshToken.java 1 ●●●● patch | view | raw | blame | history 
 src/main/java/com/moral/security/CustomCorsFilter.java


@@ -24,7 +24,8 @@


        config.setAllowCredentials(true);


        config.addAllowedOrigin("*");


        config.addAllowedHeader("*");


        config.setMaxAge(36000L);


        config.addAllowedMethod("*");


        config.setMaxAge(3600L);


        config.setAllowedMethods(Arrays.asList("GET", "HEAD", "POST", "PUT", "DELETE", "OPTIONS"));


        UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();


        source.registerCorsConfiguration("/**", config);




 src/main/java/com/moral/security/config/WebSecurityConfig.java


@@ -90,7 +90,8 @@


    protected void configure(HttpSecurity http) throws Exception {


        List<String> permitAllEndpointList = Arrays.asList(


            AUTHENTICATION_URL,


            REFRESH_TOKEN_URL


            REFRESH_TOKEN_URL,


            "/screen/**"


        );




        http




 src/main/java/com/moral/security/model/token/RefreshToken.java


@@ -30,7 +30,6 @@


     * @param signingKey


     * 


     * @throws BadCredentialsException


     * @throws JwtExpiredTokenException


     * 


     * @return


     */