login

forsrc · forsrc · commit f2fdb17a8f7f · 2017-11-22T00:53:48.000+09:00
diff --git a/forsrc-springboot-gwt-authorization/src/main/java/com/forsrc/boot/authorization/config/LoginConfig.java b/forsrc-springboot-gwt-authorization/src/main/java/com/forsrc/boot/authorization/config/LoginConfig.java
@@ -33,24 +33,19 @@ protected void configure(HttpSecurity http) throws Exception {
                     .permitAll()
                 .and()
                     .requestMatchers()
-                    .antMatchers("/login", "/logout", "/oauth/authorize", "/oauth/confirm_access", "/test")
+                    .antMatchers("/", "/login", "/logout", "/oauth/authorize", "/oauth/confirm_access", "/test")
                 .and()
-                    .antMatcher("/**")
                     .authorizeRequests()
-                    .antMatchers("/oauth/token_key")
+                    .antMatchers("/test", "/oauth/token")
                     .permitAll()
-                 .and()
-                    .antMatcher("/**")
-                    .authorizeRequests()
-                    .anyRequest()
-                    .authenticated()
                 .and()
                     .csrf()
                     .ignoringAntMatchers("/test", "/oauth/token")
                     .csrfTokenRepository(CookieCsrfTokenRepository.withHttpOnlyFalse())
                 .and()
                     .authorizeRequests()
-                    .anyRequest().authenticated();
+                    .anyRequest()
+                    .authenticated();
                     ;
     }
 
@@ -75,4 +70,4 @@ public void commence(HttpServletRequest request, HttpServletResponse response,
             }
         };
     }
-}
+}
diff --git a/forsrc-springboot-gwt-authorization/src/main/java/com/forsrc/boot/authorization/config/OAuth2AuthorizationConfig.java b/forsrc-springboot-gwt-authorization/src/main/java/com/forsrc/boot/authorization/config/OAuth2AuthorizationConfig.java
@@ -46,6 +46,8 @@ public void configure(AuthorizationServerEndpointsConfigurer endpoints) throws E
     @Override
     public void configure(AuthorizationServerSecurityConfigurer security) throws Exception {
         security.tokenKeyAccess(authorizationServerProperties.getTokenKeyAccess());
+        //security.tokenKeyAccess("permitAll()")
+            //.checkTokenAccess("isAuthenticated()");
     }
 
     @Bean

Original file line number	Diff line number	Diff line change
`@@ -46,6 +46,8 @@ public void configure(AuthorizationServerEndpointsConfigurer endpoints) throws E`
`46`	`46`	`@Override`
`47`	`47`	`public void configure(AuthorizationServerSecurityConfigurer security) throws Exception {`
`48`	`48`	`security.tokenKeyAccess(authorizationServerProperties.getTokenKeyAccess());`
	`49`	`+ //security.tokenKeyAccess("permitAll()")`
	`50`	`+ //.checkTokenAccess("isAuthenticated()");`
`49`	`51`	`}`
`50`	`52`
`51`	`53`	`@Bean`