modify

Helius

2020-06-08 72e119a8d1a2d7c7b1727faa2381930249481f80

modify

 src/main/java/com/xcong/excoin/configurations/security/TokenFilter.java

@@ -42,8 +42,10 @@
    public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain) throws IOException, ServletException {
        HttpServletRequest request = (HttpServletRequest) servletRequest;
        String token = resolveToken(request);
        log.info("token--->{}", token);
        if (StrUtil.isNotBlank(token)) {
            String loginStr = (String) redisUtils.get(AppContants.APP_LOGIN_PREFIX + token);
            log.info("login user --> {}", loginStr);
            if (StrUtil.isNotBlank(loginStr)) {
                LoginUserBean loginUser = JSONObject.parseObject(loginStr, LoginUserBean.class);
                Authentication authentication = new UsernamePasswordAuthenticationToken(loginUser.getMemberEntity(), token, new ArrayList<>());
@@ -74,6 +76,7 @@
            } else {
                bearerToken = request.getHeader(AppContants.TOKEN_HEADER);
            }
            log.info("bearerToken --->{}", bearerToken);
            if (StringUtils.hasText(bearerToken) && bearerToken.startsWith(AppContants.TOKEN_START_WITH)) {
                // 去掉令牌前缀
                String rsaToken = bearerToken.replace(AppContants.TOKEN_START_WITH, "");

 src/main/java/com/xcong/excoin/configurations/security/WebSecurityConfig.java

@@ -43,6 +43,9 @@
                .antMatchers("/swagger**/**").permitAll()
                .antMatchers("/webjars/**").permitAll()
                .antMatchers("/v2/**").permitAll()
                .antMatchers("/api/symbols/**").permitAll()
                .antMatchers("/common/**").permitAll()
                .antMatchers("/api/exchange/**").permitAll()
                .anyRequest().authenticated()
                .and().apply(securityConfiguereAdapter());
    }