package com.vincent.rsf.schedule.common.security;
|
|
import org.springframework.context.annotation.Bean;
|
import org.springframework.context.annotation.Configuration;
|
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
|
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
|
import org.springframework.security.config.http.SessionCreationPolicy;
|
import org.springframework.security.web.SecurityFilterChain;
|
|
/**
|
* Spring Security配置 - 定时任务模块,放行所有请求
|
*/
|
@Configuration
|
@EnableWebSecurity
|
public class SecurityConfig {
|
|
@Bean
|
public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
|
http.authorizeHttpRequests(authorize -> authorize.anyRequest().permitAll())
|
.sessionManagement(session -> session.sessionCreationPolicy(SessionCreationPolicy.STATELESS))
|
.csrf(csrf -> csrf.disable())
|
.cors(cors -> {})
|
.logout(logout -> logout.disable())
|
.headers(headers -> headers.frameOptions(frameOptions -> frameOptions.disable()));
|
return http.build();
|
}
|
|
}
|
