81,092
社区成员
发帖
与我相关
我的任务
分享
[code=xml]
<bean id="shiroFilter" class="org.apache.shiro.spring.web.ShiroFilterFactoryBean">
<property name="securityManager" ref="securityManager" />
<property name="loginUrl" value="/home" />
<property name="successUrl" value="/home" />
<!-- shiro过滤器的具体配置 -->
<!-- anon-匿名访问,authc-需要认证 -->
<property name="filterChainDefinitions">
<value>
/** = authc
/static/** = anon
/home = anon
/loginPage = anon
/img/** = anon
</value>
</property>
</bean>
[/code]
<property name="filterChainDefinitions">
<value>
/** = authc
/static/** = anon
/home = anon
/loginPage = anon
/img/** = anon
</value>
</property>
正确写法:
<property name="filterChainDefinitions">
<value>
/** = authc <!-- /** 中 ** 替换到你的controller,这里注意你的controller路径规范。比如采用统一前缀可减少配置 -->
/static/** = anon
/home = anon
/loginPage = anon
/img/** = anon
</value>
</property>
<property name="filterChainDefinitions">
<value>
/** = authc
/static/** = anon
/home = anon
/loginPage = anon
/img/** = anon
</value>
</property>
配置错误,/** 代码任何URL 会走authc 过滤器执行权限验证。书写规则应该是 我的例子如下,也就是最不想拦截的地址应该卸载最下面。满意请赏
/manage/** = authc
/manage/index = user
/druid/** = user
/swagger-ui.html = user
/resources/** = anon
/** = anon