From 70231ff29a5021c01cb31f2c19033defc22c81dd Mon Sep 17 00:00:00 2001
From: fengxiang <110431245@qq.com>
Date: Fri, 02 Feb 2018 09:10:37 +0800
Subject: [PATCH] 安全跨域设置

---
 src/main/java/com/moral/security/CustomCorsFilter.java         |    3 ++-
 src/main/java/com/moral/security/model/token/RefreshToken.java |    1 -
 src/main/java/com/moral/security/config/WebSecurityConfig.java |    3 ++-
 3 files changed, 4 insertions(+), 3 deletions(-)

diff --git a/src/main/java/com/moral/security/CustomCorsFilter.java b/src/main/java/com/moral/security/CustomCorsFilter.java
index 1de04cb..09723f2 100644
--- a/src/main/java/com/moral/security/CustomCorsFilter.java
+++ b/src/main/java/com/moral/security/CustomCorsFilter.java
@@ -24,7 +24,8 @@
         config.setAllowCredentials(true);
         config.addAllowedOrigin("*");
         config.addAllowedHeader("*");
-        config.setMaxAge(36000L);
+        config.addAllowedMethod("*");
+        config.setMaxAge(3600L);
         config.setAllowedMethods(Arrays.asList("GET", "HEAD", "POST", "PUT", "DELETE", "OPTIONS"));
         UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
         source.registerCorsConfiguration("/**", config);
diff --git a/src/main/java/com/moral/security/config/WebSecurityConfig.java b/src/main/java/com/moral/security/config/WebSecurityConfig.java
index d6b75e9..99b6fb3 100644
--- a/src/main/java/com/moral/security/config/WebSecurityConfig.java
+++ b/src/main/java/com/moral/security/config/WebSecurityConfig.java
@@ -90,7 +90,8 @@
     protected void configure(HttpSecurity http) throws Exception {
         List<String> permitAllEndpointList = Arrays.asList(
             AUTHENTICATION_URL,
-            REFRESH_TOKEN_URL
+            REFRESH_TOKEN_URL,
+            "/screen/**"
         );
 
         http
diff --git a/src/main/java/com/moral/security/model/token/RefreshToken.java b/src/main/java/com/moral/security/model/token/RefreshToken.java
index d426fcd..1fe5a83 100644
--- a/src/main/java/com/moral/security/model/token/RefreshToken.java
+++ b/src/main/java/com/moral/security/model/token/RefreshToken.java
@@ -30,7 +30,6 @@
      * @param signingKey
      * 
      * @throws BadCredentialsException
-     * @throws JwtExpiredTokenException
      * 
      * @return
      */

--
Gitblit v1.8.0