Added unauthorized access response. Added logout.

2026-04-05 23:11:24 +08:00 · 2023-05-05 02:31:35 +08:00
parent ac39f886b6
commit 3c8adffe42
7 changed files with 78 additions and 6 deletions
--- a/Pinnacle/src/main/java/com/cfive/pinnacle/config/SecurityConfig.java
+++ b/Pinnacle/src/main/java/com/cfive/pinnacle/config/SecurityConfig.java
@@ -1,6 +1,7 @@
 package com.cfive.pinnacle.config;

 import com.cfive.pinnacle.filter.JwtAuthenticationTokenFilter;
+import com.cfive.pinnacle.handler.AuthenticationEntryPointHandler;
 import com.cfive.pinnacle.service.permission.impl.UserDetailsServiceImpl;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.context.annotation.Bean;
@@ -18,6 +19,7 @@ import org.springframework.security.web.authentication.UsernamePasswordAuthentic
 public class SecurityConfig {
    private UserDetailsServiceImpl userDetailsService;
    private JwtAuthenticationTokenFilter jwtAuthenticationTokenFilter;
+    private AuthenticationEntryPointHandler authenticationEntryPointHandler;

    @Autowired
    public void setUserDetailsService(UserDetailsServiceImpl userDetailsService) {
@@ -29,6 +31,11 @@ public class SecurityConfig {
        this.jwtAuthenticationTokenFilter = jwtAuthenticationTokenFilter;
    }

+    @Autowired
+    public void setAuthenticationEntryPointHandler(AuthenticationEntryPointHandler authenticationEntryPointHandler) {
+        this.authenticationEntryPointHandler = authenticationEntryPointHandler;
+    }
+
    @Bean
    public PasswordEncoder passwordEncoder() {
        return new BCryptPasswordEncoder();
@@ -55,12 +62,19 @@ public class SecurityConfig {

                // Allow anonymous access
                .authorizeHttpRequests()
-                .requestMatchers("/user/login").anonymous()
+                .requestMatchers("/login").anonymous()

                // Authentication required
                .anyRequest().authenticated()
                .and()

+                .logout()
+                .disable()
+
+                .exceptionHandling()
+                .authenticationEntryPoint(authenticationEntryPointHandler)
+                .and()
+
                .addFilterBefore(jwtAuthenticationTokenFilter, UsernamePasswordAuthenticationFilter.class)
                .build();
    }