堆栈内存溢出
  简体   繁体   English

Spring Cloud配置服务器禁用加密和解密端点

[英]Spring Cloud config server disable encryption and decryption endpoint

 原文  2018-11-02 17:19:30       java/ spring/ spring-boot/ encryption/ spring-cloud-config

问题描述

I am trying to disable encrypt and decrypt end points in spring cloud config server. 我试图在spring cloud配置服务器中禁用加密和解密端点。 My Bootstrap.yml file is 我的Bootstrap.yml文件是 

spring:
  cloud:
    config:
      server:
        encrypt:
          enabled: false

encrypt:
  keyStore:
    location: ####
    password: ####
    alias: ####
    secret: ###

I tried this properties file with different verions of spring cloud and spring boot Tried spring boot version 1.5.8.RELEASE and springCloudVersion = 'Dalston.SR4' 我尝试了这个属性文件,其中包含不同版本的spring cloud和spring boot试用的spring boot版本1.5.8.RELEASE和springCloudVersion ='Dalston.SR4'

also tried 也试过了

springBootVersion = '2.0.5.RELEASE' and springCloudVersion = 'Finchley.SR1' springBootVersion ='2.0.5.RELEASE'和springCloudVersion ='Finchley.SR1'

but still I encryption and decryption endpoints are working. 但我仍然加密和解密端点正在工作。

1 个解决方案

解决方案1
 3 已采纳  2018-11-02 19:38:53

Use Spring Security to block this URI, with this configuration endpoint URLs are not publicly available. 使用Spring Security来阻止此URI,此配置端点URL不公开。 

package com.debopam.configserver;

import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;

/**
 * @author Debopam
 *
 */
@Configuration
@EnableWebSecurity
public class SecurityConfig extends WebSecurityConfigurerAdapter {

    @Autowired
    public void configureGlobal(AuthenticationManagerBuilder auth) throws Exception {
        auth.inMemoryAuthentication()
        .withUser("configUser").password("configPassword").roles("SYSTEM")
            .and()
        .withUser("admin").password("admin").roles("SUPERUSER","ADMIN")
            .and()
        .withUser("actuator").password("actuator").roles("ACTUATOR");;
    }

    @Override
    protected void configure(HttpSecurity http) throws Exception {
        http.authorizeRequests()
            .antMatchers("/encrypt**").hasAnyRole("SUPERUSER","ADMIN")
            .antMatchers("/decrypt**").hasAnyRole("SUPERUSER","ADMIN")
            .anyRequest().hasRole("SYSTEM").and().httpBasic().and().csrf().disable();


    }
}

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 无法在Spring云配置服务器中禁用解密服务器端 - Failed to disable decryption server side in spring cloud config server Spring 配置服务器安全加密和解密不起作用 - Spring config server security encryption and decryption not working Spring Cloud Config-属性解密在客户端不起作用 - Spring Cloud Config- Decryption of properties is not working on Client Side 无法使用非对称加密解密Spring Cloud配置中的配置属性 - Unable to decrypt config property in Spring Cloud config using asymmetric encryption 带有配置服务器的 Spring Cloud Eureka - Spring Cloud Eureka with Config Server 使用 Spring 的密码加密/解密 - Password Encryption / Decryption using Spring Spring Cloud Config Encryption API最后会忽略特殊字符 - Spring Cloud Config Encryption API ignores special characters at the end 当 Spring Security 在 Spring Cloud Config Server 上处于活动状态时,Spring Cloud Config Client 不获取配置 - Spring Cloud Config Client not fetching config when Spring Security is active on Spring Cloud Config Server 配置Spring Cloud Config Server和Spring Cloud Vault以进行生产 - Configuring Spring Cloud Config Server and Spring Cloud Vault for production Spring Cloud Config服务器显示invalidPrivateKey - Spring Cloud Config server showing invalidPrivateKey
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM