1
This commit is contained in:
cuijiawang
parent
4a0b1499c7
commit
bdd3f251a2
@ -11,10 +11,6 @@
|
||||
|
||||
<artifactId>wol-common-satoken</artifactId>
|
||||
|
||||
<properties>
|
||||
<satoken.version>1.44.0</satoken.version>
|
||||
</properties>
|
||||
|
||||
<dependencies>
|
||||
<dependency>
|
||||
<groupId>com.agileboot</groupId>
|
||||
@ -46,4 +42,4 @@
|
||||
|
||||
|
||||
</dependencies>
|
||||
</project>
|
||||
</project>
|
||||
|
||||
@ -9,5 +9,7 @@ sa-token:
|
||||
is-read-header: true
|
||||
# 关闭 cookie 鉴权 从根源杜绝 csrf 漏洞风险
|
||||
is-read-cookie: false
|
||||
# 开启内网服务调用鉴权(不允许越过gateway访问内网服务 保障服务安全)
|
||||
# check-same-token: true
|
||||
# token前缀
|
||||
token-prefix: "Bearer"
|
||||
token-prefix: "Bearer"
|
||||
|
||||
@ -13,7 +13,7 @@ import org.springframework.web.filter.CorsFilter;
|
||||
@AutoConfiguration
|
||||
public class FilterConfig {
|
||||
|
||||
@Value("${agileboot.traceRequestIdKey:WOl-RequestId}")
|
||||
@Value("${agileboot.traceRequestIdKey:W-RequestId}")
|
||||
private String requestIdKey;
|
||||
|
||||
@Bean
|
||||
|
||||
@ -15,6 +15,18 @@
|
||||
<dependency>
|
||||
<groupId>com.agileboot</groupId>
|
||||
<artifactId>wol-common-satoken</artifactId>
|
||||
<exclusions>
|
||||
<exclusion>
|
||||
<groupId>cn.dev33</groupId>
|
||||
<artifactId>sa-token-spring-boot3-starter</artifactId>
|
||||
</exclusion>
|
||||
</exclusions>
|
||||
</dependency>
|
||||
<!-- Sa-Token 权限认证(Reactor响应式集成),在线文档:https://sa-token.cc -->
|
||||
<dependency>
|
||||
<groupId>cn.dev33</groupId>
|
||||
<artifactId>sa-token-reactor-spring-boot3-starter</artifactId>
|
||||
<version>${satoken.version}</version>
|
||||
</dependency>
|
||||
</dependencies>
|
||||
</project>
|
||||
</project>
|
||||
|
||||
@ -1,9 +1,9 @@
|
||||
package com.agileboot.gateway.filter;
|
||||
|
||||
import cn.dev33.satoken.exception.NotLoginException;
|
||||
import cn.dev33.satoken.filter.SaServletFilter;
|
||||
import cn.dev33.satoken.reactor.context.SaReactorSyncHolder;
|
||||
import cn.dev33.satoken.reactor.filter.SaReactorFilter;
|
||||
import cn.dev33.satoken.router.SaRouter;
|
||||
import cn.dev33.satoken.servlet.model.SaRequestForServlet;
|
||||
import cn.dev33.satoken.stp.StpUtil;
|
||||
import cn.dev33.satoken.util.SaResult;
|
||||
import com.agileboot.common.core.constant.HttpStatus;
|
||||
@ -25,8 +25,8 @@ public class AuthFilter {
|
||||
* 注册 Sa-Token 全局过滤器
|
||||
*/
|
||||
@Bean
|
||||
public SaServletFilter getSaServletFilter() {
|
||||
return new SaServletFilter()
|
||||
public SaReactorFilter getSaReactorFilter() {
|
||||
return new SaReactorFilter()
|
||||
// 拦截地址
|
||||
.addInclude("/**")
|
||||
.addExclude("/favicon.ico", "/actuator", "/actuator/**", "/resource/sse")
|
||||
@ -34,10 +34,8 @@ public class AuthFilter {
|
||||
.setAuth(obj -> {
|
||||
// 登录校验 -- 拦截所有路由
|
||||
SaRouter.match("/**")
|
||||
// .notMatch()
|
||||
.check(r -> {
|
||||
SaRequestForServlet req = (SaRequestForServlet) obj;
|
||||
ServerHttpRequest request = (ServerHttpRequest) req.getSource();
|
||||
ServerHttpRequest request = SaReactorSyncHolder.getExchange().getRequest();
|
||||
// 检查是否登录 是否有token
|
||||
StpUtil.checkLogin();
|
||||
|
||||
|
||||
Loading…
x
Reference in New Issue
Block a user