From c3271d7407e43c176d03c777a89367357c2262e2 Mon Sep 17 00:00:00 2001
From: 64850858 <648540858@qq.com>
Date: Thu, 8 Jul 2021 09:26:12 +0800
Subject: [PATCH] =?UTF-8?q?=E4=BC=98=E5=8C=96=E9=89=B4=E6=9D=83=E4=BE=8B?=
 =?UTF-8?q?=E5=A4=96=EF=BC=8C=20=E6=B7=BB=E5=8A=A0.gitignore?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .gitignore                                           |  1 +
 .../iot/vmp/conf/security/WebSecurityConfig.java     | 12 ++++++++++--
 src/main/resources/all-application.yml               |  2 +-
 3 files changed, 12 insertions(+), 3 deletions(-)

diff --git a/.gitignore b/.gitignore
index 54054a0f..51ebf9e9 100644
--- a/.gitignore
+++ b/.gitignore
@@ -26,3 +26,4 @@ hs_err_pid*
 /.idea/
 /target/
 
+/src/main/resources/static/
diff --git a/src/main/java/com/genersoft/iot/vmp/conf/security/WebSecurityConfig.java b/src/main/java/com/genersoft/iot/vmp/conf/security/WebSecurityConfig.java
index 2841681c..1c06e0c9 100644
--- a/src/main/java/com/genersoft/iot/vmp/conf/security/WebSecurityConfig.java
+++ b/src/main/java/com/genersoft/iot/vmp/conf/security/WebSecurityConfig.java
@@ -1,6 +1,8 @@
 package com.genersoft.iot.vmp.conf.security;
 
 import com.genersoft.iot.vmp.conf.UserSetup;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
@@ -24,6 +26,8 @@ import java.util.List;
 @EnableGlobalMethodSecurity(prePostEnabled = true)
 public class WebSecurityConfig extends WebSecurityConfigurerAdapter {
 
+    private final static Logger logger = LoggerFactory.getLogger(WebSecurityConfig.class);
+
     @Autowired
     private UserSetup userSetup;
 
@@ -88,9 +92,13 @@ public class WebSecurityConfig extends WebSecurityConfigurerAdapter {
                     .antMatchers("/v3/api-docs/**")
                     .antMatchers("/js/**");
             List<String> interfaceAuthenticationExcludes = userSetup.getInterfaceAuthenticationExcludes();
-            System.out.println(interfaceAuthenticationExcludes.size());
             for (String interfaceAuthenticationExclude : interfaceAuthenticationExcludes) {
-                web.ignoring().antMatchers(interfaceAuthenticationExclude);
+                if (interfaceAuthenticationExclude.split("/").length < 4 ) {
+                    logger.warn("{}不满足两极目录，已忽略", interfaceAuthenticationExclude);
+                }else {
+                    web.ignoring().antMatchers(interfaceAuthenticationExclude);
+                }
+
             }
         }
     }
diff --git a/src/main/resources/all-application.yml b/src/main/resources/all-application.yml
index 3e8456c0..127cbcf0 100644
--- a/src/main/resources/all-application.yml
+++ b/src/main/resources/all-application.yml
@@ -134,7 +134,7 @@ user-settings:
     wait-track: false
     # 是否开启接口鉴权
     interface-authentication: true
-    # 接口鉴权例外的接口, 即不进行接口鉴权的接口
+    # 接口鉴权例外的接口, 即不进行接口鉴权的接口,尽量详细书写，尽量不用/**，至少两级目录
     interface-authentication-excludes:
         - /api/v1/**
     # 推流直播是否录制