尝试websocket支持登陆

2024-11-02 12:11:52 +08:00
parent 84be003a8f
commit 9789fcd3fa
3 changed files with 18 additions and 5 deletions
--- a/src/main/java/com/genersoft/iot/vmp/conf/security/JwtAuthenticationFilter.java
+++ b/src/main/java/com/genersoft/iot/vmp/conf/security/JwtAuthenticationFilter.java
@@ -50,11 +50,20 @@ public class JwtAuthenticationFilter extends OncePerRequestFilter {
            chain.doFilter(request, response);
            return;
        }
+
+
+
        String jwt = request.getHeader(JwtUtils.getHeader());
        // 这里如果没有jwt，继续往后走，因为后面还有鉴权管理器等去判断是否拥有身份凭证，所以是可以放行的
        // 没有jwt相当于匿名访问，若有一些接口是需要权限的，则不能访问这些接口
+        System.out.println("sec-websocket-protocol==" + request.getHeader("sec-websocket-protocol"));
        if (StringUtils.isBlank(jwt)) {
-            jwt = request.getParameter(JwtUtils.getHeader());
+            String secWebsocketProtocolHeader = request.getHeader("sec-websocket-protocol");
+            if (secWebsocketProtocolHeader != null) {
+                jwt = secWebsocketProtocolHeader;
+            }else {
+                jwt = request.getParameter(JwtUtils.getHeader());
+            }
            if (StringUtils.isBlank(jwt)) {
                jwt = request.getHeader(JwtUtils.getApiKeyHeader());
                if (StringUtils.isBlank(jwt)) {
--- a/src/main/java/com/genersoft/iot/vmp/conf/webLog/LogChannel.java
+++ b/src/main/java/com/genersoft/iot/vmp/conf/webLog/LogChannel.java
@@ -19,8 +19,6 @@ public class LogChannel {
    @OnMessage(maxMessageSize = 1) // MaxMessage 1 byte
    public void onMessage(String message) {

-        log.debug("Recv Message: {}", message);
-
        try {
            this.session.close(new CloseReason(CloseReason.CloseCodes.TOO_BIG, "此节点不接收任何客户端信息"));
        } catch (IOException e) {