Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/hiwepy/security-pac4j-spring-boot-starter
Spring Security 整合 Pac4j 实现第三方登录
https://github.com/hiwepy/security-pac4j-spring-boot-starter
pac4j security spring-boot
Last synced: about 1 month ago
JSON representation
Spring Security 整合 Pac4j 实现第三方登录
- Host: GitHub
- URL: https://github.com/hiwepy/security-pac4j-spring-boot-starter
- Owner: hiwepy
- License: apache-2.0
- Created: 2018-03-07T14:31:39.000Z (almost 7 years ago)
- Default Branch: master
- Last Pushed: 2024-09-17T13:35:55.000Z (4 months ago)
- Last Synced: 2024-09-17T16:57:39.271Z (4 months ago)
- Topics: pac4j, security, spring-boot
- Language: Java
- Homepage:
- Size: 234 KB
- Stars: 0
- Watchers: 2
- Forks: 1
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# security-pac4j-spring-boot-starter
### 组件简介
> 基于 Security + Pac4j 的 Spring Boot Starter 实现
主要 扩展Security、Pac4j 与Spring Boot的整合,实现通过yaml配置即可实现权限拦截扩展,类似Shiro的 shiro.ini 配置方式
### 使用说明
##### 1、Spring Boot 项目添加 Maven 依赖
``` xml
com.github.hiwepy
security-pac4j-spring-boot-starter
${project.version}
```
##### 2、在`application.yml`文件中增加如下配置
```yaml
################################################################################################################
###Pac4j 第三方登录(QQ、微信、易班、康赛)配置:
################################################################################################################
pac4j:
enabled: true
default-client-name: uniauth
callback-url: http://localhost:8088/authz/login/pac4j?client_name=uniauth&proxy=false
callback-url-fixed: false
client-parameter-name: client_name
clients: uniauth
logout:
path-pattern: /**/logout/pac4j
cas:
enabled: true
accept-any-proxy: true
gateway: false
login-url: http://localhost/sso/login
logout-url: http://localhost/sso/logout
prefix-url: http://localhost/sso/
protocol: cas20-proxy
renew: false
service-url: http://localhost:8088/authz
# Cas客户端配置
#cas-client: true
#cas-client-name: cas
# Cas代理客户端配置
direct-cas-client: true
direct-cas-client-name: cas
#direct-cas-proxy-client: true
#direct-cas-proxy-client-name: cas-proxy
uniauth:
enabled: true
token:
profile-url: http://localhost:8080/yyxy_uniauth/ser/vaildTocken.action
custom-params:
syskey: xxxxxxxxx
support-post-request: true
support-get-request: true
oauth:
yiban:
name: yiban
spring:
# Spring Security 配置
security:
# 默认路径拦截规则定义
filter-chain-definition-map:
'[/]' : anon
'[/**/favicon.ico]' : anon
'[/webjars/**]': anon
'[/assets/**]' : anon
'[/error*]' : anon
'[/logo/**]' : anon
'[/swagger-ui.html**]' : anon
'[/swagger-resources/**]' : anon
'[/doc.html**]' : anon
'[/bycdao-ui/**]' : anon
'[/v2/**]' : anon
'[/kaptcha*]' : anon
'[/actuator*]' : anon
'[/actuator/**]' : anon
'[/druid/*]' : ipaddr[192.168.1.0/24]
'[/monitoring]' : roles[admin]
'[/monitoring2]' : roles[1,admin]
'[/monitoring3]' : perms[1,admin]
'[/monitoring4]' : perms[1]
# 第三方登录
pac4j:
enabled: true
authc:
path-pattern: /authz/login/pac4j
authz-proxy: false
authz-proxy-url: http://localhost:8089/#/client?client_name=cas&target=/portal
redirects:
- header-pattern:
'[x-requested-with]' : com.yiban.app
redirect-url: http://localhost:8089/#/client?client_name=cas&target=/portal
error-url: http://localhost:8089/#/client?client_name=cas&target=/portal
callback:
path-pattern: /authz/login/pac4j/callback
redirects:
- header-pattern:
token : '*'
callback-url: http://localhost:8089/#/client?client_name=cas&target=/portal
```
##### 3、使用示例
```java
SecurityPrincipal principal = SubjectUtils.getPrincipal(SecurityPrincipal.class);
```
## Jeebiz 技术社区
Jeebiz 技术社区 **微信公共号**、**小程序**,欢迎关注反馈意见和一起交流,关注公众号回复「Jeebiz」拉你入群。
|公共号|小程序|
|---|---|
| | |