本文整理汇总了Java中org.springframework.security.web.util.matcher.NegatedRequestMatcher类的典型用法代码示例。如果您正苦于以下问题:Java NegatedRequestMatcher类的具体用法?Java NegatedRequestMatcher怎么用?Java NegatedRequestMatcher使用的例子?那么恭喜您, 这里精选的类代码示例或许可以为您提供帮助。
NegatedRequestMatcher类属于org.springframework.security.web.util.matcher包,在下文中一共展示了NegatedRequestMatcher类的7个代码示例,这些例子默认根据受欢迎程度排序。您可以为喜欢或者感觉有用的代码点赞,您的评价将有助于系统推荐出更棒的Java代码示例。
示例1: configure
import org.springframework.security.web.util.matcher.NegatedRequestMatcher; //导入依赖的package包/类
@Override
protected void configure(HttpSecurity http) throws Exception {
http
.csrf().disable()
.requestMatcher(new NegatedRequestMatcher(authorizationHeaderRequestMatcher))
.httpBasic()
.realmName("JHipster Registry")
.and()
.authorizeRequests()
.antMatchers("/services/**").authenticated()
.antMatchers("/eureka/**").hasAuthority(AuthoritiesConstants.ADMIN)
.antMatchers("/api/profile-info").permitAll()
.antMatchers("/api/**").authenticated()
.antMatchers("/config/**").hasAuthority(AuthoritiesConstants.ADMIN)
.antMatchers("/management/health").permitAll()
.antMatchers("/management/**").hasAuthority(AuthoritiesConstants.ADMIN)
.anyRequest().permitAll();
}
示例2: configure
import org.springframework.security.web.util.matcher.NegatedRequestMatcher; //导入依赖的package包/类
@Override
protected void configure(HttpSecurity http) throws Exception {
http
.csrf()
.disable()
.addFilterBefore(corsFilter, CsrfFilter.class)
.headers()
.frameOptions()
.disable()
.and()
.logout()
.logoutUrl("/api/logout")
.logoutSuccessHandler(ajaxLogoutSuccessHandler())
.and()
.requestMatcher(new NegatedRequestMatcher(authorizationHeaderRequestMatcher))
.authorizeRequests()
.antMatchers("/api/profile-info").permitAll()
.antMatchers("/api/**").authenticated()
.antMatchers("/management/health").permitAll()
.antMatchers("/management/**").hasAuthority(AuthoritiesConstants.ADMIN)
.anyRequest().permitAll();
}
示例3: CsrfCookieGeneratorFilter
import org.springframework.security.web.util.matcher.NegatedRequestMatcher; //导入依赖的package包/类
public CsrfCookieGeneratorFilter(final String... ignoredPatterns) {
if (ignoredPatterns.length > 0) {
this.ignoredMatcher = new OrRequestMatcher(Arrays.stream(ignoredPatterns)
.map(AntPathRequestMatcher::new)
.collect(toList()));
} else {
this.ignoredMatcher = new NegatedRequestMatcher(AnyRequestMatcher.INSTANCE);
}
}
示例4: createCustomFilter
import org.springframework.security.web.util.matcher.NegatedRequestMatcher; //导入依赖的package包/类
protected AbstractAuthenticationProcessingFilter createCustomFilter() throws Exception {
//here we define the interfaces which don't need any authorisation
AuthFilter filter = new AuthFilter(new NegatedRequestMatcher(
new AndRequestMatcher(
new AntPathRequestMatcher("/login"),
new AntPathRequestMatcher("/health")
)
));
filter.setAuthenticationManager(authenticationManagerBean());
return filter;
}
示例5: init
import org.springframework.security.web.util.matcher.NegatedRequestMatcher; //导入依赖的package包/类
@Override
public void init(HttpSecurity http) {
metadataProvider = identityProvider.metadataProvider();
ExtendedMetadata extendedMetadata = extendedMetadata(identityProvider.discoveryEnabled);
extendedMetadataDelegate = extendedMetadataDelegate(extendedMetadata);
serviceProvider.keyManager = serviceProvider.keyManager();
cachingMetadataManager = cachingMetadataManager();
webSSOProfile = new WebSSOProfileImpl(samlProcessor, cachingMetadataManager);
samlAuthenticationProvider = samlAuthenticationProvider(webSSOProfileConsumer);
bootstrap();
SAMLContextProvider contextProvider = contextProvider();
SAMLEntryPoint samlEntryPoint = samlEntryPoint(contextProvider);
try {
http
.httpBasic()
.authenticationEntryPoint(samlEntryPoint);
CsrfConfigurer<HttpSecurity> csrfConfigurer = http.getConfigurer(CsrfConfigurer.class);
if(csrfConfigurer != null) {
// Workaround to get working with Spring Security 3.2.
RequestMatcher ignored = new AntPathRequestMatcher("/saml/SSO");
RequestMatcher notIgnored = new NegatedRequestMatcher(ignored);
RequestMatcher matcher = new AndRequestMatcher(new DefaultRequiresCsrfMatcher(), notIgnored);
csrfConfigurer.requireCsrfProtectionMatcher(matcher);
}
} catch (Exception e) {
e.printStackTrace();
}
http
.addFilterBefore(metadataGeneratorFilter(samlEntryPoint, extendedMetadata), ChannelProcessingFilter.class)
.addFilterAfter(samlFilter(samlEntryPoint, contextProvider), BasicAuthenticationFilter.class)
.authenticationProvider(samlAuthenticationProvider);
}
示例6: delegatingAuthenticationEntryPoint
import org.springframework.security.web.util.matcher.NegatedRequestMatcher; //导入依赖的package包/类
@Bean
@Autowired
public DelegatingAuthenticationEntryPoint delegatingAuthenticationEntryPoint(BasicAuthenticationEntryPoint basic,
LoginUrlAuthenticationEntryPoint login) {
LinkedHashMap<RequestMatcher, AuthenticationEntryPoint> entryPoints = new LinkedHashMap<>();
entryPoints.put(new RequestHeaderRequestMatcher("Content-Type", "application/json"), basic);
entryPoints.put(new NegatedRequestMatcher(new RequestContainingAcceptTextHeaderRequestMatcher()), basic);
DelegatingAuthenticationEntryPoint delegate = new DelegatingAuthenticationEntryPoint(entryPoints);
delegate.setDefaultEntryPoint(login);
return delegate;
}
示例7: configure
import org.springframework.security.web.util.matcher.NegatedRequestMatcher; //导入依赖的package包/类
@Override
protected void configure(HttpSecurity http) throws Exception {
NegatedRequestMatcher matcher = new NegatedRequestMatcher(new AntPathRequestMatcher("/login", "POST"));
http.csrf().disable().authorizeRequests().requestMatchers(matcher).authenticated().and().httpBasic();
}