我为我的Spring Web应用程序添加了基于自定义令牌的身份验证,并将其扩展到Spring WebSocket,如下所示。
public class WebSocketConfig extends AbstractWebSocketMessageBrokerConfigurer {
@Override
public void configureMessageBroker(MessageBrokerRegistry config) {
config.enableSimpleBroker("/topic", "/queue");
config.setApplicationDestinationPrefixes("/app");
config.setUserDestinationPrefix("/user");
}
@Override
public void registerStompEndpoints(StompEndpointRegistry registry) {
registry.addEndpoint("/gs-guide-websocket").setAllowedOrigins("*").withSockJS();
}
@Override
public void configureClientInboundChannel(ChannelRegistration registration) {
registration.setInterceptors(new ChannelInterceptorAdapter() {
@Override
public Message<?> preSend(Message<?> message, MessageChannel channel) {
StompHeaderAccessor accessor =
MessageHeaderAccessor.getAccessor(message, StompHeaderAccessor.class);
if (StompCommand.CONNECT.equals(accessor.getCommand())) {
String jwtToken = accessor.getFirstNativeHeader("Auth-Token");
if (!StringUtils.isEmpty(jwtToken)) {
Authentication auth = tokenService.retrieveUserAuthToken(jwtToken);
SecurityContextHolder.getContext().setAuthentication(auth);
accessor.setUser(auth);
//for Auth-Token '12345token' the user name is 'user1' as auth.getName() returns 'user1'
}
}
return message;
}
});
}
}
连接到socket的客户端代码为:
var socket = new SockJS('http://localhost:8080/gs-guide-websocket');
stompClient = Stomp.over(socket);
stompClient.connect({'Auth-Token': '12345token'}, function (frame) {
stompClient.subscribe('/user/queue/greetings', function (greeting) {
alert(greeting.body);
});
});
我从我的控制器发送消息如下:
messagingTemplate.convertAndSendToUser("user1", "/queue/greetings", "Hi User1");
对于身份验证令牌12345token
,用户名是user1
。但是当我向user1
发送消息时,在客户端端没有接收到。这里有什么我忽略了的吗?
@SendTo("/user/queue/greetings")
,应用程序如何知道我要将消息发送给哪个用户。另外,我尝试了你建议的方法,但客户端没有收到任何通知。 - BiJfunction sendName()
这里 中暴露了subscriber/user
吗?任何人都可以猜到Subscriber
,例如John, Harry ... etc
。 - Shantaram Tupe