oaut2.0使用自定义身份验证拦截OAuth2AuthenticationException异常

最新推荐文章于 2024-06-07 15:47:33 发布

玄命Candy

最新推荐文章于 2024-06-07 15:47:33 发布

阅读量438

点赞数

文章标签： java spring spring cloud

本文链接：https://blog.youkuaiyun.com/weixin_46569400/article/details/131865295

版权

首先在资源服务中配置一个自定义OAuth2身份验证入口点

@Component
public class CustomOAuth2AuthenticationEntryPoint implements AuthenticationEntryPoint {

    @Override
    public void commence(HttpServletRequest request, HttpServletResponse response, AuthenticationException authException) throws IOException {
        response.setContentType("application/json;charset=UTF-8");
        // 设置响应状态码为 401 Unauthorized
        response.setStatus(HttpServletResponse.SC_UNAUTHORIZED);
        // 将业务异常转换为自定义的错误响应
        Result<Object> failed = Result.failed(ResultCode.INVALID_TOKEN);
        // 将错误响应转换为 JSON 并写入响应体
        ObjectMapper objectMapper = new ObjectMapper();
        response.getWriter().write(objectMapper.writeValueAsString(failed));

    }
}

然后在ResourceConfig重写configure(ResourceServerSecurityConfigurer resources)方法

    @Autowired
    private CustomOAuth2AuthenticationEntryPoint customOAuth2AuthenticationEntryPoint;

    @Override
    public void configure(ResourceServerSecurityConfigurer resources) {
        resources.authenticationEntryPoint(customOAuth2AuthenticationEntryPoint);
    }