Spring security 如何开放 Swagger 访问权限_Java教程

Spring security 如何开放 Swagger 访问权限

2021-12-21 13:28李昊轩的博客 Java教程

这篇文章主要介绍了Spring security 如何开放 Swagger 访问权限操作，具有很好的参考价值，希望对大家有所帮助。如有错误或未考虑完全的地方，望不吝赐教

Spring security 开放 Swagger 访问权限

开放这四个目录

搞定

				?

									.antMatchers("/swagger-ui.html").permitAll()

									.antMatchers("/webjars/**").permitAll()

									.antMatchers("/v2/**").permitAll()

									.antMatchers("/swagger-resources/**").permitAll()

spring boot 加入拦截器后swagger不能访问

spring boot 加入拦截器后swagger不能访问问题

未加入拦截器时，swagger可以正常访问接口信息，但是加入拦截器之后swagger就不能访问了

原因分析

不能访问的原因的swagger的内置接口被拦截器拦下来了

Spring security 如何开放 Swagger 访问权限

图片中可以看到swagger的所有请求的url信息，只要把他们加到拦截器的排除列表中即可

				?

									package com.trimps928.config;

									import org.springframework.context.annotation.Bean;

									import org.springframework.context.annotation.Configuration;

									import org.springframework.web.servlet.config.annotation.InterceptorRegistry;

									import org.springframework.web.servlet.config.annotation.ResourceHandlerRegistry;

									import org.springframework.web.servlet.config.annotation.WebMvcConfigurationSupport;

									/**

									 * @author liubing

									 * @version 2018-06-26

									 * 拦截器配置

									 **/

									@Configuration

									public class MyWebAppConfig extends WebMvcConfigurationSupport {

									    @Bean

									    LoginInterceptor localInterceptor() {

									        return new LoginInterceptor();

									    }

									    @Override

									    public void addInterceptors(InterceptorRegistry registry) {

									        registry.addInterceptor(localInterceptor())

									                .addPathPatterns("/**")

									                .excludePathPatterns("/user/login")

									                .excludePathPatterns("/swagger-resources/**", "/webjars/**", "/v2/**", "/swagger-ui.html/**");

									    }

									    @Override

									    protected void addResourceHandlers(ResourceHandlerRegistry registry) {

									        registry.addResourceHandler("swagger-ui.html")

									                .addResourceLocations("classpath:/META-INF/resources/");

									        registry.addResourceHandler("/webjars/**")

									                .addResourceLocations("classpath:/META-INF/resources/webjars/");

									    }

									}

网上找的资料中大部分只说添加这个

				?

									@Override

									public void addInterceptors(InterceptorRegistry registry) { 

									registry.addInterceptor(localInterceptor()) 

									.addPathPatterns("/**") 

									.excludePathPatterns("/user/login") 

									.excludePathPatterns("/swagger-resources/**", "/webjars/**", "/v2/**", "/swagger-ui.html/**"); 

									}

或者只添加

				?

									@Override

									protected void addResourceHandlers(ResourceHandlerRegistry registry) { 

									registry.addResourceHandler("swagger-ui.html") 

									.addResourceLocations("classpath:/META-INF/resources/"); 

									registry.addResourceHandler("/webjars/**") 

									.addResourceLocations("classpath:/META-INF/resources/webjars/"); 

									}