要启用#oAuth2安全表达式,只需要将默认表达式处理程序设置为OAuth2MethodSecurityexpressionHandler而不是DefaultMethodSecurityexpressionHandler。由于OAuth2MethodSecurityexpressionHandler仍然对其进行了扩展,因此整个先前的功能保持不变。在我的配置中,我同时使用了GlobalMethodSecurityConfiguration和WebSecurityConfigurerAdapter。
@Configuration@EnableGlobalMethodSecuritypublic class MethodSecurityConfiguration extends GlobalMethodSecurityConfiguration { @Override protected MethodSecurityexpressionHandler createexpressionHandler() { return new OAuth2MethodSecurityexpressionHandler(); }}@Configuration@EnableWebSecuritypublic class SecurityConfiguration extends WebSecurityConfigurerAdapter { ...}@Configuration@import({ SecurityConfiguration.class, MethodSecurityConfiguration.class })public class AppConfiguration { ...}
