WinTeachTeam
/
IESExtension
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

up:取消限制

Browse Source
develop
PL 4 months ago
parent 4d50be7421
commit 4eb23c5208
2 changed files with 8 additions and 6 deletions
Show Stats Download Patch File Download Diff File

7
src/main/java/cn/teammodel/security/filter/ApiAuthTokenFilter.java
Unescape View File

@ -29,7 +29,8 @@ import java.util.List;
public class ApiAuthTokenFilter extends OncePerRequestFilter {
JwtTokenUtil jwtTokenUtil = new JwtTokenUtil();
private List<String> whiteList = new ArrayList<>(Arrays.asList("1530782422","1531391504","1529649295","1531030192","1533091862","1565140494","1530852951","1532621201","1532605781","1563262699","1530782422","1530670067","1566799279","1536118303","1578275404","6711941735","1528783259"));
//白名单id
//private List<String> whiteList = new ArrayList<>(Arrays.asList("1530782422","1531391504","1529649295","1531030192","1533091862","1565140494","1530852951","1532621201","1532605781","1563262699","1530782422","1530670067","1566799279","1536118303","1578275404","6711941735","1528783259"));
@Override
protected void doFilterInternal(HttpServletRequest request, @NotNull HttpServletResponse response, @NotNull FilterChain filterChain) throws ServletException, IOException {
@ -48,13 +49,13 @@ public class ApiAuthTokenFilter extends OncePerRequestFilter {
filterChain.doFilter(request, response);
return;
}
User user = validUserDetail1.getUser();
/*User user = validUserDetail1.getUser();
if (!whiteList.contains(user.getId()) && !"IES".equals(user.getWebsite()))
{
SecurityContextHolder.clearContext(); // 验证失败不应该在此处抛出异常,应该维护好 context 的值,以便整个过滤器链正常运行
filterChain.doFilter(request, response);
return;
}
}*/
// 组装 authToken 的 jwt 进 authentication
UsernamePasswordAuthenticationToken finalAuthentication = new UsernamePasswordAuthenticationToken(validUserDetail1, null, null);

7
src/main/java/cn/teammodel/security/filter/AuthInnerTokenFilter.java
Unescape View File

@ -30,8 +30,9 @@ import java.util.List;
@Slf4j
public class AuthInnerTokenFilter extends OncePerRequestFilter {
JwtTokenUtil jwtTokenUtil = new JwtTokenUtil();
//白名单id
//private List<String> whiteList = new ArrayList<>(Arrays.asList("1530782422","1531391504","1529649295","1531030192","1533091862","1565140494","1532621201","1532605781","1563262699","1530782422","1530670067","1578275404","6711941735","1528783259"));
private List<String> whiteList = new ArrayList<>(Arrays.asList("1530782422","1531391504","1529649295","1531030192","1533091862","1565140494","1532621201","1532605781","1563262699","1530782422","1530670067","1578275404","6711941735","1528783259"));
@Override
protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, FilterChain filterChain) throws ServletException, IOException {
SecurityContext context = SecurityContextHolder.getContext();
@ -45,13 +46,13 @@ public class AuthInnerTokenFilter extends OncePerRequestFilter {
filterChain.doFilter(request, response);
return;
}
User user = tmdUserDetail.getUser();
/*User user = tmdUserDetail.getUser();
if (!whiteList.contains(user.getId()) && !"IES".equals(user.getWebsite()))
{
SecurityContextHolder.clearContext(); // 验证失败不应该在此处抛出异常,应该维护好 context 的值,以便整个过滤器链正常运行
filterChain.doFilter(request, response);
return;
}
}*/
/*if (!"GP".equals(user.getWebsite()) && !"IES".equals(user.getWebsite()))
{
SecurityContextHolder.clearContext(); // 验证失败不应该在此处抛出异常,应该维护好 context 的值,以便整个过滤器链正常运行

Write Preview
Loading…
Cancel
Save