From 7d06b42ea69526d8937e6a47c2f6ec03d43a0fad Mon Sep 17 00:00:00 2001
From: guanshubiao <ljx2751@163.com>
Date: Thu, 17 Mar 2022 23:33:48 +0800
Subject: [PATCH] =?UTF-8?q?=E4=BF=AE=E6=94=B9bug-=E6=B7=BB=E5=8A=A0?=
 =?UTF-8?q?=E8=AE=A4=E8=AF=81=E5=A4=B1=E8=B4=A5=E5=A4=84=E7=90=86=E7=B1=BB?=
 =?UTF-8?q?=20=E5=AF=BC=E8=87=B4=E5=90=AF=E7=94=A8=E8=87=AA=E5=AE=9A?=
 =?UTF-8?q?=E4=B9=89=E8=AE=A4=E8=AF=81=E4=BC=9A=E5=AF=BC=E8=87=B4oauth?=
 =?UTF-8?q?=E6=8E=88=E6=9D=83=E5=9C=B0=E5=9D=80=E4=B8=8D=E8=83=BD=E8=AE=BF?=
 =?UTF-8?q?=E9=97=AE?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .../ruoyi/framework/config/SecurityConfig.java   |  2 +-
 .../handle/AuthenticationEntryPointImpl.java     | 16 +++++++++++++---
 2 files changed, 14 insertions(+), 4 deletions(-)

diff --git a/springboot/wumei-framework/src/main/java/com/ruoyi/framework/config/SecurityConfig.java b/springboot/wumei-framework/src/main/java/com/ruoyi/framework/config/SecurityConfig.java
index ada966ca..b1fef096 100644
--- a/springboot/wumei-framework/src/main/java/com/ruoyi/framework/config/SecurityConfig.java
+++ b/springboot/wumei-framework/src/main/java/com/ruoyi/framework/config/SecurityConfig.java
@@ -93,7 +93,7 @@ public class SecurityConfig extends WebSecurityConfigurerAdapter
                 // CSRF禁用，因为不使用session
                 .csrf().disable()
                 // 认证失败处理类 TODO 启用自定义认证会导致oauth授权地址不能访问
-                //.exceptionHandling().authenticationEntryPoint(unauthorizedHandler).and()
+                .exceptionHandling().authenticationEntryPoint(unauthorizedHandler).and()
                 // 基于token，所以不需要session
                 .sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS).and()
                 // 过滤请求
diff --git a/springboot/wumei-framework/src/main/java/com/ruoyi/framework/security/handle/AuthenticationEntryPointImpl.java b/springboot/wumei-framework/src/main/java/com/ruoyi/framework/security/handle/AuthenticationEntryPointImpl.java
index c22dd324..6a934c77 100644
--- a/springboot/wumei-framework/src/main/java/com/ruoyi/framework/security/handle/AuthenticationEntryPointImpl.java
+++ b/springboot/wumei-framework/src/main/java/com/ruoyi/framework/security/handle/AuthenticationEntryPointImpl.java
@@ -27,8 +27,18 @@ public class AuthenticationEntryPointImpl implements AuthenticationEntryPoint, S
     public void commence(HttpServletRequest request, HttpServletResponse response, AuthenticationException e)
             throws IOException
     {
-        int code = HttpStatus.UNAUTHORIZED;
-        String msg = StringUtils.format("请求访问：{}，认证失败，无法访问系统资源", request.getRequestURI());
-        ServletUtils.renderString(response, JSON.toJSONString(AjaxResult.error(code, msg)));
+        if (isAjaxRequest(request)){
+            int code = HttpStatus.UNAUTHORIZED;
+            String msg = StringUtils.format("请求访问：{}，认证失败，无法访问系统资源", request.getRequestURI());
+            ServletUtils.renderString(response, JSON.toJSONString(AjaxResult.error(code, msg)));
+        }else {
+            response.sendRedirect("/oauth/login");
+        }
+    }
+
+
+    public static boolean isAjaxRequest(HttpServletRequest request) {
+        String ajaxFlag = request.getHeader("X-Requested-With");
+        return ajaxFlag != null && "XMLHttpRequest".equals(ajaxFlag);
     }
 }