zoukankan html css js c++ java

How to configure Spring Security to allow Swagger URL to be accessed without authentication

整合 Security 和 Swagger。

配置Security Swagger API 访问。

项目采用了SpringBoot 做服务端，Swagger 做API 管理，遇到了API不能访问，查找资料解决

https://stackoverflow.com/questions/37671125/how-to-configure-spring-security-to-allow-swagger-url-to-be-accessed-without-aut

在WebSecurityConfigurerAdapter 中添加Swagger访问授权。

Swagger 需要授权的路径

private static final String[] AUTH_WHITELIST = {
// -- swagger ui
"/v2/api-docs",
"/swagger-resources",
"/swagger-resources/**",
"/configuration/ui",
"/configuration/security",
"/swagger-ui.html",
"/webjars/**"
// other public endpoints of your API may be appended to this array
};


@Override
    protected void configure(HttpSecurity http) throws Exception {
        http.cors().and().csrf().disable()
                .sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS).and()
                .authorizeRequests()
　　　　　　　　　　// 添加授权
                .antMatchers(AUTH_WHITELIST).permitAll()
                .anyRequest().authenticated()  // 所有请求需要身份认证
                .and()
                .addFilter(new JWTLoginFilter(authenticationManager()))
                .addFilter(new JWTAuthenticationFilter(authenticationManager()));
    }

查看全文

相关阅读:
序列——堆排序-大根堆(堆大顶)
3 分钟的高速体验 Apache Spark SQL
UVa 1401 Remember the Word
leetcode
oracle看到用户的所有表名、表睐、字段名称、现场的目光、是空的、字段类型
 cocos2d-x物业现场
 Unable to start MySQL service. Another MySQL daemon is already running with the same UNIX socket
ThreadPoolExecutor详解
 Java四种线程池newCachedThreadPool,newFixedThreadPool,newScheduledThreadPool,newSingleThreadExecutor
A First Exploration Of SolrCloud

原文地址：https://www.cnblogs.com/bwcode/p/8574012.html