提供URL级别的访问保护

pom.xml

@@ -79,6 +79,19 @@
 			<artifactId>spring-boot-configuration-processor</artifactId>
 			<optional>true</optional>
 		</dependency>
+		<!-- -->
+		<dependency>
+			<groupId>org.springframework.security</groupId>
+			<artifactId>spring-security-web</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.springframework.security</groupId>
+			<artifactId>spring-security-config</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.thymeleaf.extras</groupId>
+			<artifactId>thymeleaf-extras-springsecurity4</artifactId>
+		</dependency>
 	</dependencies>
 
 	<build>
@@ -91,4 +104,5 @@
 	</build>
 
 
+
 </project>

src/main/java/org/scutsu/market/configuration/SecurityConfig.java

@@ -1,17 +1,38 @@
 package org.scutsu.market.configuration;
-
+import org.scutsu.market.controllers.wechat.*;
+import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.context.annotation.Configuration;
+import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
 
 @Configuration
 public class SecurityConfig extends WebSecurityConfigurerAdapter {
 
+	@Autowired
+	private WeChatProperties admin;
 	@Override
 	protected void configure(HttpSecurity http) throws Exception {
 		http
 			.authorizeRequests()
-				.anyRequest().permitAll().and()
+					.anyRequest().authenticated()
+					.antMatchers("/**").hasRole("ADMIN")
+				.and()
+			.formLogin().loginPage(admin.getLoginURL())
+						.defaultSuccessUrl(admin.getLoginSuccess())
+						.failureForwardUrl(admin.getLoginError())
+				.and()
+			.logout().logoutSuccessUrl(admin.getLogoutURL())
+				.and()
 			.csrf().disable();
 	}
+
+	@Autowired
+	protected void Authorize(AuthenticationManagerBuilder Author)throws Exception{
+		Author
+			.inMemoryAuthentication()
+				.passwordEncoder(new BCryptPasswordEncoder()).withUser(admin.getAppId())
+				.password(new BCryptPasswordEncoder().encode(admin.getSecret())).roles("ADMIN");
+	}
 }

src/main/java/org/scutsu/market/controllers/wechat/LoginController.java

@@ -17,6 +17,7 @@
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.boot.context.properties.ConfigurationProperties;
 import org.springframework.stereotype.Component;
+import org.springframework.stereotype.Repository;
 import org.springframework.validation.annotation.Validated;
 import org.springframework.web.bind.annotation.PostMapping;
 import org.springframework.web.bind.annotation.RequestBody;
@@ -28,21 +29,6 @@
 import java.net.URISyntaxException;
 import java.util.Map;
 
-@ConfigurationProperties(prefix = "we-chat")
-@Validated
-@Component
-@Data
-class WeChatProperties {
-
-	@NotNull
-	private String appId;
-
-	@NotNull
-	private String secret;
-
-	@NotNull
-	private String grantType = "authorization_code";
-}
 
 @Data
 class LoginResult {

src/main/java/org/scutsu/market/controllers/wechat/WeChatProperties.java

@@ -0,0 +1,37 @@
+package org.scutsu.market.controllers.wechat;
+
+import lombok.Data;
+import org.springframework.boot.context.properties.ConfigurationProperties;
+import org.springframework.stereotype.Component;
+import org.springframework.validation.annotation.Validated;
+
+import javax.validation.constraints.NotNull;
+
+@ConfigurationProperties(prefix = "we-chat")
+@Validated
+@Component
+@Data
+public class WeChatProperties {
+
+	@NotNull
+	private String appId;
+
+	@NotNull
+	private String secret;
+
+	@NotNull
+	private String loginURL;
+
+	@NotNull
+	private String logoutURL;
+
+	@NotNull
+	private String loginSuccess;
+
+	@NotNull
+	private String loginError;
+
+	@NotNull
+	private String grantType = "authorization_code";
+}
+