auth-server
所属分类:数据库系统
开发工具:Java
文件大小:0KB
下载次数:0
上传日期:2017-12-04 03:27:24
上 传 者:
sh-1993
说明: 授权服务,使用 mysql 存储授权信息,并集合【网关】【注册中心】【服务监控】等服务的简单 demo
(Authorization service, use MySQL to store authorization information, and collect simple demos of [Gateway], [Registry], [Service Monitoring] and other services)
文件列表:
admin-server/ (0, 2017-12-03)
admin-server/pom.xml (3158, 2017-12-03)
admin-server/src/ (0, 2017-12-03)
admin-server/src/main/ (0, 2017-12-03)
admin-server/src/main/java/ (0, 2017-12-03)
admin-server/src/main/java/com/ (0, 2017-12-03)
admin-server/src/main/java/com/ysp/ (0, 2017-12-03)
admin-server/src/main/java/com/ysp/demo/ (0, 2017-12-03)
admin-server/src/main/java/com/ysp/demo/admin/ (0, 2017-12-03)
admin-server/src/main/java/com/ysp/demo/admin/SpringBootAdminApplication.java (3685, 2017-12-03)
admin-server/src/main/java/com/ysp/demo/admin/notify/ (0, 2017-12-03)
admin-server/src/main/java/com/ysp/demo/admin/notify/DingTalk.java (1370, 2017-12-03)
admin-server/src/main/java/com/ysp/demo/admin/notify/DingTalkNotifier.java (3586, 2017-12-03)
admin-server/src/main/java/com/ysp/demo/admin/notify/NotifierConfiguration.java (1850, 2017-12-03)
admin-server/src/main/resources/ (0, 2017-12-03)
admin-server/src/main/resources/application.yml (1989, 2017-12-03)
auth-server/ (0, 2017-12-03)
auth-server/pom.xml (3346, 2017-12-03)
auth-server/src/ (0, 2017-12-03)
auth-server/src/main/ (0, 2017-12-03)
auth-server/src/main/java/ (0, 2017-12-03)
auth-server/src/main/java/com/ (0, 2017-12-03)
auth-server/src/main/java/com/ysp/ (0, 2017-12-03)
auth-server/src/main/java/com/ysp/auth/ (0, 2017-12-03)
auth-server/src/main/java/com/ysp/auth/AuthApplication.java (676, 2017-12-03)
auth-server/src/main/java/com/ysp/auth/config/ (0, 2017-12-03)
auth-server/src/main/java/com/ysp/auth/config/DataSourceConfig.java (608, 2017-12-03)
auth-server/src/main/java/com/ysp/auth/config/OAuth2AuthorizationConfig.java (2976, 2017-12-03)
auth-server/src/main/java/com/ysp/auth/config/WebSecurityConfig.java (1880, 2017-12-03)
auth-server/src/main/java/com/ysp/auth/controller/ (0, 2017-12-03)
auth-server/src/main/java/com/ysp/auth/controller/UserController.java (1890, 2017-12-03)
auth-server/src/main/java/com/ysp/auth/model/ (0, 2017-12-03)
auth-server/src/main/java/com/ysp/auth/model/User.java (2172, 2017-12-03)
auth-server/src/main/java/com/ysp/auth/package-info.java (21, 2017-12-03)
auth-server/src/main/java/com/ysp/auth/repository/ (0, 2017-12-03)
auth-server/src/main/java/com/ysp/auth/repository/IUserRepository.java (302, 2017-12-03)
auth-server/src/main/java/com/ysp/auth/service/ (0, 2017-12-03)
auth-server/src/main/java/com/ysp/auth/service/IUserService.java (128, 2017-12-03)
... ...
**项目介绍**
> 使用 Spring Boot + Spring Security + Spring Security OAuth2 作权限控制
使用 MySQL 存储权限及 token。
执行 classpath/resources/auth.sql,创建对应的数据表。
#### 1 注解
##### 1.1
hasRole 与 hasAuthory 效果一样。
唯一区别:
[Difference between Role and GrantedAuthority in Spring Security](https://stackoverflow.com/questions/19525380/difference-between-role-and-grantedauthority-in-spring-security)
hasRole 不起作用:
[Spring Security hasRole() not working](https://stackoverflow.com/questions/30788105/spring-security-hasrole-not-working)
##### 1.2
**注解使用方法:**
1. 具有 super 或者 normal 权限的两种写法:
`@PreAuthorize("hasAnyAuthority('super','normal')")`
`@PreAuthorize("hasAuthority('super') or hasAuthority('normal')")`
2. 具有 scope=server 的用户才能访问
`@PreAuthorize("#oauth2.hasScope('server')")`
3. 具有 super 权限的用户才能访问
`@PreAuthorize("hasAuthority('super')")`
##### 1.3 设置超时时间
在代码中更改
[How to set expire_in in OAUTH 2.0?](https://stackoverflow.com/questions/17311651/how-to-set-expire-in-in-oauth-2-0)
或者更改数据库中的超时时间
`oauth_client_details->access_token_validity` 单位为秒
###### 1.4 获取 token
```
curl -X "POST" "http://localhost:5001/uaa/oauth/token?username=t3&password=123456&grant_type=password" \
-u 'browser:123456'
```
移除 token
[Spring security. How to log out user (revoke oauth2 token)](https://stackoverflow.com/questions/21987589/spring-security-how-to-log-out-user-revoke-oauth2-token)
#### 2 创建数据库
遇到的问题:
1. hibernate sequence 问题,先删除 hibernate_sequence 表,让服务自动生成即可。
近期下载者:
相关文件:
收藏者: