blame | 历史 | 原始文档
chenjiahe
2022-06-16 0cbabb6f4b9e00c1c659674a93db9feb5e62b33b 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39

package com.hx.security.request;


 


import org.apache.tomcat.util.descriptor.web.SecurityCollection;


import org.apache.tomcat.util.descriptor.web.SecurityConstraint;


import org.springframework.boot.web.embedded.tomcat.TomcatServletWebServerFactory;


import org.springframework.boot.web.servlet.server.ConfigurableServletWebServerFactory;


import org.springframework.context.annotation.Bean;


import org.springframework.context.annotation.Configuration;


 


/**设置限制请求*/


@Configuration


public class RequestRestriction {


 


    @Bean


    public ConfigurableServletWebServerFactory configurableServletWebServerFactory() {


        TomcatServletWebServerFactory factory = new TomcatServletWebServerFactory();


        factory.addContextCustomizers(context -> {


            SecurityConstraint securityConstraint = new SecurityConstraint();


            securityConstraint.setUserConstraint("CONFIDENTIAL");


            SecurityCollection collection = new SecurityCollection();


            //设置不安全请求不能通过


            collection.addPattern("/*");


            collection.addMethod("HEAD");


            collection.addMethod("PUT");


            collection.addMethod("DELETE");


            collection.addMethod("OPTIONS");


            collection.addMethod("TRACE");


            collection.addMethod("COPY");


            collection.addMethod("SEARCH");


            collection.addMethod("PROPFIND");


            //collection.addMethod("PATCH");


            securityConstraint.addCollection(collection);


            context.addConstraint(securityConstraint);


        });


        return factory;


    }


 


 


}