SpringSecurity
基本概念RBAC
用户(User)
userRole 多2多
角色 (Role)
userMenu 多2多
权限(Menu/API)
认证Authentication
登录,判断是否为系统合法用户
授权Authorization
分配权限,判断该合法用户的权限
默认配置SpringBootWebSecurityConfiguration会将配置包装成一个chain返回
12345678910111213@Configuration(proxyBeanMethods = false)@ConditionalOnDefaultWebSecurity@ConditionalOnWebApplication(type = Type.SERVLET)class SpringBootWebSecurityConfiguration { @Bean @Order(SecurityProperties.BASIC_AUTH_ORDER) SecurityFilterChain defaultSecurityFilterChain(HttpSecurity http) t ...