PasswordEncoder 加密复杂度自定义，可在nacos中配置

Signed-off-by: Fanjc <271366833@qq.com>
2023-02-23 05:24:54 +00:00 · 2023-02-23 05:24:54 +00:00 · c2d70ce831
commit c2d70ce831
parent 220d727605
2 changed files with 7 additions and 1 deletions
--- a/yudao-framework/yudao-spring-boot-starter-security/src/main/java/cn/iocoder/yudao/framework/security/config/SecurityProperties.java
+++ b/yudao-framework/yudao-spring-boot-starter-security/src/main/java/cn/iocoder/yudao/framework/security/config/SecurityProperties.java
@ -32,6 +32,12 @@ public class SecurityProperties {
    @NotEmpty(message = "mock 模式的密钥不能为空") // 这里设置了一个默认值，因为实际上只有 mockEnable 为 true 时才需要配置。
    private String mockSecret = "test";

+    
+    /**
+     * PasswordEncoder 加密复杂度，越高开销越大
+     */
+    private Integer passwordEncoderLength =4;
+
    /**
     * 免登录的 URL 列表
     */
--- a/yudao-framework/yudao-spring-boot-starter-security/src/main/java/cn/iocoder/yudao/framework/security/config/YudaoSecurityAutoConfiguration.java
+++ b/yudao-framework/yudao-spring-boot-starter-security/src/main/java/cn/iocoder/yudao/framework/security/config/YudaoSecurityAutoConfiguration.java
@ -69,7 +69,7 @@ public class YudaoSecurityAutoConfiguration {
     */
    @Bean
    public PasswordEncoder passwordEncoder() {
-        return new BCryptPasswordEncoder();
+        return new BCryptPasswordEncoder(securityProperties.getPasswordEncoderLength());
    }

    /**