liuchang/mall-ebtp-cloud
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

增加无 token 和 session 信息的服务调用放行

Browse Source
This commit is contained in:
ajaxfan
2021-05-10 16:29:43 +08:00
parent dede933267
commit a17c514b1b
1 changed files with 14 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
mall-ebtp-cloud-security-starter/src/main/java/com/chinaunicom/mall/ebtp/cloud/security/starter/filter/TokenAuthenticationFilter.java
View File

@ -68,10 +68,12 @@ public class TokenAuthenticationFilter extends OncePerRequestFilter {
} }
// 检查cookie // 检查cookie
else { else {
Optional.ofNullable(request.getCookies()).ifPresent(cookies -> { Optional.ofNullable(request.getCookies())
Stream.of(cookies).filter(item -> StringUtils.equals(item.getName(), COOKIE_TOKEN_CODE)).findFirst() .ifPresentOrElse(cookies -> Stream.of(cookies)
.ifPresent(cookie -> setAuthentication(currentRoleCode, cookie.getValue())); .filter(item -> StringUtils.equals(item.getName(), COOKIE_TOKEN_CODE)).findFirst()
}); .ifPresentOrElse(cookie -> setAuthentication(currentRoleCode, cookie.getValue()),
() -> defaultAuthentication()),
() -> defaultAuthentication());
} }
filterChain.doFilter(request, response); filterChain.doFilter(request, response);
} }
@ -115,4 +117,12 @@ public class TokenAuthenticationFilter extends OncePerRequestFilter {
authorities); authorities);
} }
/**
* 未发现token和session信息则使用空的用户认证对象放行服务
*/
private void defaultAuthentication() {
SecurityContextHolder.getContext()
.setAuthentication(new UsernamePasswordAuthenticationToken(new SecurityUser(), null, null));
}
} }