在SpringSecurity中定义一个匿名访问权限,实现未登录用户可以访问默写页面
1 <http use-expressions="false" entry-point-ref="casProcessingFilterEntryPoint"> 2 <intercept-url pattern="/cart/**" access="IS_AUTHENTICATED_ANONYMOUSLY"/> 3 <intercept-url pattern="/**" access="ROLE_USER"/> 4 <custom-filter position="CAS_FILTER" ref="casAuthenticationFilter" /> 5 <custom-filter ref="requestSingleLogoutFilter" before="LOGOUT_FILTER"/> 6 <custom-filter ref="singleLogoutFilter" before="CAS_FILTER"/> 7 </http>
就是在第2行添加的内容。此处的意思是所有的/cart/**目录下的都可以访问,并且用户名统一为annonymousUser