|
|
@@ -24,20 +24,30 @@ public class SecurityConfiguration extends WebMvcConfigurerAdapter {
|
|
|
|
|
|
@Override
|
|
|
public void addInterceptors(InterceptorRegistry registry) {
|
|
|
- // 添加管理员才可访问的路径
|
|
|
- securityInterceptor.addAdminPatterns("/user/save*/**", "/user/update*/**", "/user/delete*/**", "/user/get*/**",
|
|
|
- "/resourcePoint/save*/**", "/resourcePoint/update*/**", "/resourcePoint/delete*/**",
|
|
|
- "/resourcePoint/get*/**", "/board");
|
|
|
InterceptorRegistration registration = registry.addInterceptor(securityInterceptor);
|
|
|
// 添加路径
|
|
|
registration.addPathPatterns("/**");
|
|
|
// 排除路径
|
|
|
registration.excludePathPatterns("/WEB-INF/**", "/error");
|
|
|
// 排除路径,由 spring boot security 进行验证
|
|
|
- registration.excludePathPatterns("/console", "/fileUpload", "/**/delete/all", "/druid/**");
|
|
|
-
|
|
|
+ registration.excludePathPatterns("/console", "/fileUpload", "/druid/**");
|
|
|
// 不对下列路径进行验证
|
|
|
registration.excludePathPatterns("/user/login", "/user/logout", "/user/exist");
|
|
|
+
|
|
|
+ // 添加管理员才可访问的路径
|
|
|
+ // 用户、资源点管理
|
|
|
+ securityInterceptor.addAdminPatterns("/user/save*/**", "/user/update*/**", "/user/delete*/**", "/user/get*/**",
|
|
|
+ "/resourcePoint/save*/**", "/resourcePoint/update*/**", "/resourcePoint/delete*/**",
|
|
|
+ "/resourcePoint/get*/**");
|
|
|
+ // 模版设计
|
|
|
+ securityInterceptor.addAdminPatterns("/template/save*/**", "/template/update*/**", "/template/delete*/**",
|
|
|
+ "/board");
|
|
|
+ // 公共参数
|
|
|
+ securityInterceptor.addAdminPatterns("/globalParameters/save*/**", "/globalParameters/update*/**",
|
|
|
+ "/globalParameters/delete*/**");
|
|
|
+ // 数据源
|
|
|
+ securityInterceptor.addAdminPatterns("/datasource/save*/**", "/datasource/update*/**",
|
|
|
+ "/datasource/delete*/**");
|
|
|
}
|
|
|
|
|
|
}
|
sunyj