Home Verkennen Help
Registreren Inloggen
zrd
/
server
1
0
Vork 0
Bestanden Issues 0 Pull-aanvragen 0 Wiki
Bladeren bron

【功能优化】AI:DispatcherType.ASYNC 时,不进行认证,解决 Spring AI SSE 的认证问题

https://github.com/YunaiV/yudao-cloud/issues/197
YunaiV 5 maanden geleden
bovenliggende
a7e5aaec3b
commit
deca69ada6
4 gewijzigde bestanden met toevoegingen van 4 en 7 verwijderingen
Zij-aan-zij weergave Toon Diff Stats
  1. 4 1
      yudao-framework/yudao-spring-boot-starter-security/src/main/java/cn/iocoder/yudao/framework/security/config/YudaoWebSecurityConfigurerAdapter.java
  2. 0 2
      yudao-module-ai/yudao-module-ai-biz/src/main/java/cn/iocoder/yudao/module/ai/controller/admin/chat/AiChatMessageController.java
  3. 0 2
      yudao-module-ai/yudao-module-ai-biz/src/main/java/cn/iocoder/yudao/module/ai/controller/admin/mindmap/AiMindMapController.java
  4. 0 2
      yudao-module-ai/yudao-module-ai-biz/src/main/java/cn/iocoder/yudao/module/ai/controller/admin/write/AiWriteController.java

+ 4 - 1
yudao-framework/yudao-spring-boot-starter-security/src/main/java/cn/iocoder/yudao/framework/security/config/YudaoWebSecurityConfigurerAdapter.java
Bestand weergeven 

@@ -7,6 +7,7 @@ import com.google.common.collect.HashMultimap;
 
 import com.google.common.collect.Multimap;
 
 import jakarta.annotation.Resource;
 
 import jakarta.annotation.security.PermitAll;
 
+import jakarta.servlet.DispatcherType;
 
 import org.springframework.boot.autoconfigure.AutoConfiguration;
 
 import org.springframework.boot.autoconfigure.AutoConfigureOrder;
 
 import org.springframework.context.ApplicationContext;
 
@@ -142,7 +143,9 @@ public class YudaoWebSecurityConfigurerAdapter {
 
                 // ②:每个项目的自定义规则
 
                 .authorizeHttpRequests(c -> authorizeRequestsCustomizers.forEach(customizer -> customizer.customize(c)))
 
                 // ③:兜底规则,必须认证
 
-                .authorizeHttpRequests(c -> c.anyRequest().authenticated());
 
+                .authorizeHttpRequests(c -> c
 
+                        .dispatcherTypeMatchers(DispatcherType.ASYNC).permitAll() // WebFlux 异步请求,无需认证,目的:SSE 场景
 
+                        .anyRequest().authenticated());
 
 
         // 添加 Token Filter
 
         httpSecurity.addFilterBefore(authenticationTokenFilter, UsernamePasswordAuthenticationFilter.class);

+ 0 - 2
yudao-module-ai/yudao-module-ai-biz/src/main/java/cn/iocoder/yudao/module/ai/controller/admin/chat/AiChatMessageController.java
Bestand weergeven 

@@ -20,7 +20,6 @@ import io.swagger.v3.oas.annotations.Operation;
 
 import io.swagger.v3.oas.annotations.Parameter;
 
 import io.swagger.v3.oas.annotations.tags.Tag;
 
 import jakarta.annotation.Resource;
 
-import jakarta.annotation.security.PermitAll;
 
 import jakarta.validation.Valid;
 
 import lombok.extern.slf4j.Slf4j;
 
 import org.springframework.http.MediaType;
 
@@ -57,7 +56,6 @@ public class AiChatMessageController {
 
 
     @Operation(summary = "发送消息(流式)", description = "流式返回,响应较快")
 
     @PostMapping(value = "/send-stream", produces = MediaType.TEXT_EVENT_STREAM_VALUE)
 
-    @PermitAll // 解决 SSE 最终响应的时候,会被 Access Denied 拦截的问题
 
     public Flux<CommonResult<AiChatMessageSendRespVO>> sendChatMessageStream(@Valid @RequestBody AiChatMessageSendReqVO sendReqVO) {
 
         return chatMessageService.sendChatMessageStream(sendReqVO, getLoginUserId());
 
     }

+ 0 - 2
yudao-module-ai/yudao-module-ai-biz/src/main/java/cn/iocoder/yudao/module/ai/controller/admin/mindmap/AiMindMapController.java
Bestand weergeven 

@@ -12,7 +12,6 @@ import io.swagger.v3.oas.annotations.Operation;
 
 import io.swagger.v3.oas.annotations.Parameter;
 
 import io.swagger.v3.oas.annotations.tags.Tag;
 
 import jakarta.annotation.Resource;
 
-import jakarta.annotation.security.PermitAll;
 
 import jakarta.validation.Valid;
 
 import org.springframework.http.MediaType;
 
 import org.springframework.security.access.prepost.PreAuthorize;
 
@@ -32,7 +31,6 @@ public class AiMindMapController {
 
 
     @PostMapping(value = "/generate-stream", produces = MediaType.TEXT_EVENT_STREAM_VALUE)
 
     @Operation(summary = "导图生成(流式)", description = "流式返回,响应较快")
 
-    @PermitAll  // 解决 SSE 最终响应的时候,会被 Access Denied 拦截的问题
 
     public Flux<CommonResult<String>> generateMindMap(@RequestBody @Valid AiMindMapGenerateReqVO generateReqVO) {
 
         return mindMapService.generateMindMap(generateReqVO, getLoginUserId());
 
     }

+ 0 - 2
yudao-module-ai/yudao-module-ai-biz/src/main/java/cn/iocoder/yudao/module/ai/controller/admin/write/AiWriteController.java
Bestand weergeven 

@@ -12,7 +12,6 @@ import io.swagger.v3.oas.annotations.Operation;
 
 import io.swagger.v3.oas.annotations.Parameter;
 
 import io.swagger.v3.oas.annotations.tags.Tag;
 
 import jakarta.annotation.Resource;
 
-import jakarta.annotation.security.PermitAll;
 
 import jakarta.validation.Valid;
 
 import org.springframework.http.MediaType;
 
 import org.springframework.security.access.prepost.PreAuthorize;
 
@@ -32,7 +31,6 @@ public class AiWriteController {
 
 
     @PostMapping(value = "/generate-stream", produces = MediaType.TEXT_EVENT_STREAM_VALUE)
 
     @Operation(summary = "写作生成(流式)", description = "流式返回,响应较快")
 
-    @PermitAll  // 解决 SSE 最终响应的时候,会被 Access Denied 拦截的问题
 
     public Flux<CommonResult<String>> generateWriteContent(@RequestBody @Valid AiWriteGenerateReqVO generateReqVO) {
 
         return writeService.generateWriteContent(generateReqVO, getLoginUserId());
 
     }