优化鉴权例外， 添加.gitignore

.gitignore

@@ -26,3 +26,4 @@ hs_err_pid*
 /.idea/
 /target/
 
+/src/main/resources/static/

src/main/java/com/genersoft/iot/vmp/conf/security/WebSecurityConfig.java

@@ -1,6 +1,8 @@
 package com.genersoft.iot.vmp.conf.security;
 
 import com.genersoft.iot.vmp.conf.UserSetup;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
@@ -24,6 +26,8 @@ import java.util.List;
 @EnableGlobalMethodSecurity(prePostEnabled = true)
 public class WebSecurityConfig extends WebSecurityConfigurerAdapter {
 
+    private final static Logger logger = LoggerFactory.getLogger(WebSecurityConfig.class);
+
     @Autowired
     private UserSetup userSetup;
 
@@ -88,10 +92,14 @@ public class WebSecurityConfig extends WebSecurityConfigurerAdapter {
                     .antMatchers("/v3/api-docs/**")
                     .antMatchers("/js/**");
             List<String> interfaceAuthenticationExcludes = userSetup.getInterfaceAuthenticationExcludes();
-            System.out.println(interfaceAuthenticationExcludes.size());
             for (String interfaceAuthenticationExclude : interfaceAuthenticationExcludes) {
+                if (interfaceAuthenticationExclude.split("/").length < 4 ) {
+                    logger.warn("{}不满足两极目录，已忽略", interfaceAuthenticationExclude);
+                }else {
                     web.ignoring().antMatchers(interfaceAuthenticationExclude);
                 }
+
+            }
         }
     }
 

src/main/resources/all-application.yml

@@ -134,7 +134,7 @@ user-settings:
     wait-track: false
     # 是否开启接口鉴权
     interface-authentication: true
-    # 接口鉴权例外的接口, 即不进行接口鉴权的接口
+    # 接口鉴权例外的接口, 即不进行接口鉴权的接口,尽量详细书写，尽量不用/**，至少两级目录
     interface-authentication-excludes:
         - /api/v1/**
     # 推流直播是否录制