微服务架构实战：商家治理后台与sso设计 SSO客户端设计

SSO客户端设计下面通过模块merchant-security对 SSO客户端宁静认证部门的实现举行封装，以便各个接入SSO的客户端应用举行引用。宁静认证的项目治理设置SSO客户端宁静认证的项目治理使用了如下所示的依赖设置:<dependencies><dependency><groupId>com.demo</groupId><artifactId>merchant-client</artifactId><version>${project.version)</version></dependency><dependency><groupId>org.springframework.cloud</groupId><artifactId>spring-cloud-starter-oauth2</artifactId></dependency><dependency><groupId>org.springframework.boot</groupId><artifactId>spring-boot-starter-data-redis</artifactId></dependency></dependencies>这个设置除主要引用Spring Cloud OAuth 2组件实现应用的宁静治理和认证功效外,还引用了merchant-client模块以提供挪用商家服务接口的功效，引用了Spring Boot Redis组件以提供使用缓存的功效。宁静认证项目的设置类在SSO的客户端中启用Spring Security的认证功效，主要是通过一个设置类实现的。

如下代码所示，我们建立一个设置类SecurityConfiguration，它继续于WebSecurityConfigurerAdapter:@Configuration@EnableOAuth2Sso@EnableConfigurationProperties (SecuritySettings.class)public class SecurityConfiguration extends webSecurityConfigurerAdapter{@Autowiredprivate AuthenticationManager authenticationManager;@Autowiredprivate SecuritySettings settings;@Autowiredprivate RoleRestService roleRestService;@Autowiredprivate RedisCache redisCache;@Bean(name = BeanIds.AUTHENT ICATION MANAGER)Goverridepublic AuthenticationManager authenticationManagerBean() throws Exceptireturn super.authenticationManagerBean();)@overridepublic void configure(HttpSecurity http) throws Exceptionhttp.antMatcher("/**").authorizeRequests().antMatchers( "/login**").permitAll().antMatchers(settings.getPermitall()). permitAll().anyRequest().authenticated().and ().csrf().requireCsrfProtectionMatcher (csrfSecurityRequestMatcher()).csrfTokenRepository (csrfTokenRepository()) .and().addFilterAfter (csrfHeaderFilter(),CsrfFilter.class).logout().logoutUrl("/logout").permitAll().logoutSuccessUrl(settings.getLogoutsuccssurl()).and().exceptionHandling().accessDeniedPage (settings.getDeniedpage()；}@Beanpublic CustomFilterSecurityInterceptor customFilter() throws Exception tCustomFilterSecurityInterceptor customFilter = newCustomFilterSecurityInterceptor();customFilter.setSecurityMetadataSource (securityMetadataSource());customFilter.setAccessDecisionMan。

本文来源：亚博vip888网页全站登录-www.nndyx88.com