最新版的 flowable 6.6.0 绕过自带的登录限制(之前6.5版配置无效)
找到项目maven目录
2.在自己项目里面建相同包名,类名
package org.flowable.ui.modeler.conf; 重写ModelerSecurityConfiguration
package org.flowable.ui.modeler.conf; import org.flowable.ui.common.security.SecurityConstants;import org.springframework.context.annotation.Configuration;import org.springframework.core.annotation.Order;import org.springframework.security.config.annotation.web.builders.HttpSecurity;import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;import org.springframework.security.web.authentication.SavedRequestAwareAuthenticationSuccessHandler; /** * 说明:重构ModelerSecurity * from:www.fhadmin.org */@Configuration(proxyBeanMethods = false)@EnableWebSecuritypublic class ModelerSecurityConfiguration { @Configuration @Order(SecurityConstants.MODELER_API_SECURITY_ORDER) public static class ModelerApiWebSecurityConfigurationAdapter extends WebSecurityConfigurerAdapter { @Override protected void configure(HttpSecurity http) throws Exception { SavedRequestAwareAuthenticationSuccessHandler successHandler = new SavedRequestAwareAuthenticationSuccessHandler(); successHandler.setTargetUrlParameter("redirectTo"); http.headers().frameOptions().disable(); http.csrf().disable().authorizeRequests().antMatchers("/**/**").permitAll().anyRequest().authenticated().and().httpBasic(); } } }
赞 (0)