最新版的 flowable 6.6.0 绕过自带的登录限制(之前6.5版配置无效)
找到项目maven目录
2.在自己项目里面建相同包名,类名
package org.flowable.ui.modeler.conf; 重写ModelerSecurityConfiguration
package org.flowable.ui.modeler.conf;
import org.flowable.ui.common.security.SecurityConstants;import org.springframework.context.annotation.Configuration;import org.springframework.core.annotation.Order;import org.springframework.security.config.annotation.web.builders.HttpSecurity;import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;import org.springframework.security.web.authentication.SavedRequestAwareAuthenticationSuccessHandler;
/** * 说明:重构ModelerSecurity * from:www.fhadmin.org */@Configuration(proxyBeanMethods = false)@EnableWebSecuritypublic class ModelerSecurityConfiguration {
@Configuration @Order(SecurityConstants.MODELER_API_SECURITY_ORDER) public static class ModelerApiWebSecurityConfigurationAdapter extends WebSecurityConfigurerAdapter {
@Override protected void configure(HttpSecurity http) throws Exception {
SavedRequestAwareAuthenticationSuccessHandler successHandler = new SavedRequestAwareAuthenticationSuccessHandler(); successHandler.setTargetUrlParameter("redirectTo");
http.headers().frameOptions().disable();
http.csrf().disable().authorizeRequests().antMatchers("/**/**").permitAll().anyRequest().authenticated().and().httpBasic(); }
}
}
赞 (0)