spring security webflux ʹÓÃ

---

spring security webflux ʹÓÃ

¹ÙÍø：https://docs.spring.io/spring-security/site/docs/5.3.2.RELEASE/reference/html5/#reactive-applications

*********************

ʾÀý

***************

config ²ã

WebFluxSecurityConfig

@Configuration
@EnableWebFluxSecurity
public class WebFluxSecurityConfig {

    @Bean
    public MapReactiveUserDetailsService initMapReactiveUserDetailsService(){
        UserDetails userDetails= User.builder().username("gtlx")
                .passwordEncoder(initPasswordEncoder()::encode)
                .password("123456")
                .authorities("ROLE_USER")
                .build();

        return new MapReactiveUserDetailsService(userDetails);
    }

    @Bean
    public SecurityWebFilterChain initSecurityWebFilterChain(ServerHttpSecurity http){
        http.formLogin().and().authorizeExchange()
                .pathMatchers("/hello").hasAuthority("ROLE_USER")
                .pathMatchers("/**").permitAll();

        return http.build();
    }

    @Bean
    public PasswordEncoder initPasswordEncoder(){
        return new BCryptPasswordEncoder();
    }
}

***************

controller ²ã

HelloController

@RestController
public class HelloController {

    @RequestMapping("/hello")
    public String hello(Principal principal){
        return "hello "+principal.getName();
    }
}

*********************

ʹÓòâÊÔ

localhost:8080/hello

ÈÏ֤ͨ¹ýºó，Êä³ö：hello gtlx