com.github.yiuman.citrus.security.authorize.SystemAuthorizeConfigProvider Maven / Gradle / Ivy

Go to download
package com.github.yiuman.citrus.security.authorize;

import com.github.yiuman.citrus.security.properties.CitrusProperties;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.configurers.ExpressionUrlAuthorizationConfigurer;
import org.springframework.stereotype.Component;

import java.util.Arrays;

/**
 * 默认的权限相关配置
 *
 * @author yiuman
 * @date 2020/3/30
 */
@Component
public class SystemAuthorizeConfigProvider implements AuthorizeConfigProvider {

    private final CitrusProperties citrusProperties;

    public SystemAuthorizeConfigProvider(CitrusProperties citrusProperties) {
        this.citrusProperties = citrusProperties;
    }

    @Override
    public boolean config(ExpressionUrlAuthorizationConfigurer.ExpressionInterceptUrlRegistry config) {
        config.antMatchers(citrusProperties.getSecurity().getAuthenticateEndpoint(),
                citrusProperties.getSecurity().getVerifyEndpointPrefix() + "/**"
        ).permitAll();
        Arrays.stream(citrusProperties.getSecurity().getExcludedUris())
                .forEach(uri -> config.antMatchers(uri).permitAll());
        config
                .anyRequest()
                .access("@authorizeChainManager.hasPermission(request, authentication)");
        return true;
    }
}