小编Dul*_*ter的帖子

@Configuration
@EnableWebSecurity
@Order(1)
public class ApiSecurityConfig extends WebSecurityConfigurerAdapter {

    @Autowired
    private ApiKeyRepository apiKeyRepository;

    @Override
    protected void configure(HttpSecurity httpSecurity) throws Exception {
        ApiKeyAuthFilter filter = new ApiKeyAuthFilter(Globals.HEADER_APIKEY);
        filter.setAuthenticationManager(authentication -> {
            String principal = (String) authentication.getPrincipal();
            Optional<ApiKey> apiKey = apiKeyRepository.findByApiKey(principal);
            if (!apiKey.isPresent()) {
                throw new BadCredentialsException("The API key was not found or not the expected value.");
            }
            authentication.setAuthenticated(true);
            return authentication;
        });
        httpSecurity.
                csrf().disable().
                addFilter(filter).authorizeRequests().anyRequest().authenticated().and().
                regexMatcher("(?i)/api/v1/(?:print|resource)(?:/|$).*").
                sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS);
    }
}

Run Code Online (Sandbox Code Playgroud)

我的单元测试看起来像：

@RunWith(SpringRunner.class)
@WebMvcTest(ResourceController.class)
public class ResourceControllerTestGetByLogicalFileNameOrDate {

    @Autowired …

Run Code Online (Sandbox Code Playgroud)

java spring-security mockito spring-boot

Dul*_*ter

2019 01-17

2
推荐指数

1
解决办法

5364
查看次数

标签统计

java ×3

spring-boot ×3

spring-security ×2

intellij-idea ×1

maven ×1

metrics ×1

mockito ×1

prometheus ×1

spring-boot-actuator ×1

Spring Boot Basic Authentication 和 OAuth2 在同一个项目中？

执行器普罗米修斯的自定义指标

Spring Security REST - 单元测试失败，HttpStatusCode 401 未经授权

标签 统计

小编Dul_ter的帖子

标签统计