工业级后台API v2
parent: bd9ea7b5 | patch | commit | ignore whitespace
沈斌
2018-06-09 99d8f798c5f1ec0c6745867da0c416021b14dff8 
test
2 files modified
7 ■■■■■ changed files
src/main/java/com/moral/security/config/WebSecurityConfig.java 5 ●●●●● patch | view | raw | blame | history
src/main/java/com/moral/security/model/token/RawAccessJwtToken.java 2 ●●● patch | view | raw | blame | history 
 src/main/java/com/moral/security/config/WebSecurityConfig.java


@@ -125,8 +125,7 @@


                .antMatchers(API_ROOT_URL).authenticated() // Protected API End-points


            .and()


                .addFilterBefore(new CustomCorsFilter(), UsernamePasswordAuthenticationFilter.class)


                .addFilterBefore(buildLoginProcessingFilter(AUTHENTICATION_URL), UsernamePasswordAuthenticationFilter.class)


                .addFilterBefore(buildJwtTokenAuthenticationProcessingFilter(permitAllEndpointList,


                API_ROOT_URL), UsernamePasswordAuthenticationFilter.class);


                .addFilterBefore(buildLoginProcessingFilter(AUTHENTICATION_URL), UsernamePasswordAuthenticationFilter.class);


                //.addFilterBefore(buildJwtTokenAuthenticationProcessingFilter(permitAllEndpointList, API_ROOT_URL), UsernamePasswordAuthenticationFilter.class);


    }


}




 src/main/java/com/moral/security/model/token/RawAccessJwtToken.java


@@ -27,7 +27,7 @@


            return Jwts.parser().setSigningKey(signingKey).parseClaimsJws(this.token);


        } catch (UnsupportedJwtException | MalformedJwtException | IllegalArgumentException | SignatureException ex) {


            logger.error("Invalid JWT Token", ex);


            //throw new BadCredentialsException("Invalid JWT token: ", ex);


            throw new BadCredentialsException("Invalid JWT token: ", ex);


        } catch (ExpiredJwtException expiredEx) {


            logger.info("JWT Token is expired", expiredEx);


            throw new JwtExpiredTokenException(this, "JWT Token expired", expiredEx);