我要评论一、问题描述
在 springboot 中加入 springsecurity 中之后,静态资源总是被过滤,导致界面很难看:
目录结构:
二、问题解决
正常不拦截资源,我查阅资料,基本都是重新 config 方法即可:
package org.yolo.securitylogin.config;
import org.springframework.context.annotation.bean;
import org.springframework.context.annotation.configuration;
import org.springframework.security.config.annotation.authentication.builders.authenticationmanagerbuilder;
import org.springframework.security.config.annotation.web.builders.httpsecurity;
import org.springframework.security.config.annotation.web.builders.websecurity;
import org.springframework.security.config.annotation.web.configuration.websecurityconfigureradapter;
import org.springframework.security.crypto.password.nooppasswordencoder;
import org.springframework.security.crypto.password.passwordencoder;
/**
* @auther: yolo
* @date: 2020/9/12 13:05
* @description:
*/
@configuration
public class securityconfig extends websecurityconfigureradapter {
@bean
passwordencoder passwordencoder() {
return nooppasswordencoder.getinstance();
}
@override
protected void configure(authenticationmanagerbuilder auth) throws exception {
//在内存中进行配置
auth.inmemoryauthentication()
.withuser("yolo")
.password("123").roles("admin");
}
@override
public void configure(websecurity web) throws exception {
//web.ignoring().antmatchers("/static/js/**", "/static/css/**", "/static/images/**");
web.ignoring().antmatchers("/js/**", "/css/**","/images/**");
}
@override
protected void configure(httpsecurity http) throws exception {
http.authorizerequests()
.anyrequest().authenticated()
.and()
.formlogin()
.loginpage("/login.html")
.permitall()//跟登录相关的页面统统放行
.and()
.csrf().disable()
;
}
}
常规方法是:
@override
public void configure(websecurity web) throws exception {
web.ignoring().antmatchers("/js/**", "/css/**","/images/**");
}
这里一定要谨记,这样配置了 configure,之后,一定要清除 target,不然是不会生效的
到此这篇关于springboot+springsecurity 不拦截静态资源的实现的文章就介绍到这了,更多相关springboot+springsecurity 不拦截静态资源内容请搜索移动技术网以前的文章或继续浏览下面的相关文章希望大家以后多多支持移动技术网!
如您对本文有疑问或者有任何想说的,请点击进行留言回复,万千网友为您解惑!
网友评论