解决安全漏扫问题

5cad9f21 · 阳浪 · 4e498847 · 5cad9f21 · 5cad9f21
Commit 5cad9f21 authored Dec 26, 2024 by 阳浪
Show whitespace changes
Inline Side-by-side

Showing with 26 additions and 1 deletions

cloud-point/src/main/java/com/yizhi/application/PointApplication.java
+8 -0

cloud-point/src/main/java/com/yizhi/application/SwaggerConfig.java
+18 -1

No files found.
--- a/cloud-point/src/main/java/com/yizhi/application/PointApplication.java
+++ b/cloud-point/src/main/java/com/yizhi/application/PointApplication.java
 package com.yizhi.application;

+import com.yizhi.core.application.security.config.SpringSecurityConfig;
 import org.hibernate.annotations.Entity;
 import org.springframework.boot.SpringApplication;
 import org.springframework.boot.autoconfigure.SpringBootApplication;
@@ -7,7 +8,9 @@ import org.springframework.boot.autoconfigure.amqp.RabbitAutoConfiguration;
 import org.springframework.cache.annotation.EnableCaching;
 import org.springframework.cloud.client.discovery.EnableDiscoveryClient;
 import org.springframework.cloud.openfeign.EnableFeignClients;
+import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.ComponentScan;
+import org.springframework.context.annotation.DependsOn;
 import org.springframework.data.jpa.repository.config.EnableJpaAuditing;
 import org.springframework.data.jpa.repository.config.EnableJpaRepositories;

@@ -22,4 +25,9 @@ public class PointApplication {
    public static void main(String[] args) {
        SpringApplication.run(PointApplication.class, args);
    }
+    @Bean
+
+    public SpringSecurityConfig springSecurityConfig(){
+        return new SpringSecurityConfig();
+    }
 }
--- a/cloud-point/src/main/java/com/yizhi/application/SwaggerConfig.java
+++ b/cloud-point/src/main/java/com/yizhi/application/SwaggerConfig.java
@@ -10,11 +10,14 @@ import org.springframework.web.servlet.config.annotation.WebMvcConfigurerAdapter
 import springfox.documentation.builders.ApiInfoBuilder;
 import springfox.documentation.builders.PathSelectors;
 import springfox.documentation.builders.RequestHandlerSelectors;
-import springfox.documentation.service.ApiInfo;
+import springfox.documentation.service.*;
 import springfox.documentation.spi.DocumentationType;
+import springfox.documentation.spi.service.contexts.SecurityContext;
 import springfox.documentation.spring.web.plugins.Docket;
 import springfox.documentation.swagger2.annotations.EnableSwagger2;

+import java.util.Collections;
+
 @Configuration
 @EnableSwagger2
 public class SwaggerConfig extends WebMvcConfigurerAdapter {
@@ -29,6 +32,20 @@ public class SwaggerConfig extends WebMvcConfigurerAdapter {
                .select()
                .apis(RequestHandlerSelectors.basePackage("com.fulan.application"))
                .paths(PathSelectors.any())
+                .build()
+                .securitySchemes(Collections.singletonList(securitySchema()))
+                .securityContexts(Collections.singletonList(securityContext()));
+    }
+
+    private SecurityScheme securitySchema() {
+        return new BasicAuth("BasicAuth");
+    }
+
+    private SecurityContext securityContext() {
+        return SecurityContext.builder()
+                .securityReferences(Collections.singletonList(
+                        new SecurityReference("BasicAuth", new AuthorizationScope[] {new AuthorizationScope("global", "accessAll")})))
+                .forPaths(PathSelectors.any())
                .build();
    }