~admin/kidgrow-microservices-platform.git

spring:
  application:
    name: zuul-server
  #配置Redis
  redis:
    host: ${spring.redis.host}
    port: ${spring.redis.port}
    password: ${spring.redis.password}
    timeout: ${spring.redis.timeout}
server:
  tomcat:
    uri-encoding: UTF-8
    max-threads: 1000
    min-spare-threads: 30
  port: 8888
 
 
eureka:
  instance:
    ###注册中心ip地址
    hostname: ${kidgrow.eureka.instance.hostname}
    instance-id: ${spring.cloud.client.ip-address}:${spring.application.name}:${server.port}
    prefer-ip-address: true
  client:
    serviceUrl:
      defaultZone: ${kidgrow.eureka.client.serviceUrl.defaultZone}
 
zuul:
  ignoredServices: '*'
  add-proxy-headers: false
  # 使用 prefix 添加前缀
  #prefix: /api
  #关闭重试
  retryable: false
  ignored-headers: Access-Control-Allow-Credentials,Access-Control-Allow-Origin,Access-Control-Allow-Methods
  add-host-header: true
  host:
    connectTimeoutMillis: 10000
  routes:
    auth:
      path: /api-uaa/**
      service-id: uaa-server
      strip-prefix: true
      sensitive-headers: '*'
      custom-sensitive-headers: true
    auth-login-page:
      path: /login.html
      service-id: uaa-server
      strip-prefix: true
      sensitive-headers: '*'
      custom-sensitive-headers: true
    auth-login-process:
      path: /user/login
      service-id: uaa-server
      strip-prefix: true
      sensitive-headers: '*'
      custom-sensitive-headers: true
    auth-login-token:
      path: /oauth/token
      service-id: uaa-server
      strip-prefix: true
      sensitive-headers: '*'
      custom-sensitive-headers: true
    auth-login-authorize:
      path: /oauth/authorize
      service-id: uaa-server
      strip-prefix: true
      sensitive-headers: '*'
      custom-sensitive-headers: true
    auth-check-process:
      path: /oauth/check_token
      service-id: uaa-server
      strip-prefix: true
      sensitive-headers: '*'
      custom-sensitive-headers: true
    user:
      path: /api-user/**
      service-id: usercenter-server
      strip-prefix: true
      sensitive-headers: '*'
      custom-sensitive-headers: true
    codegenerator:
      path: /api-generator/**
      service-id: code-generator
      strip-prefix: true
      sensitive-headers: '*'
      custom-sensitive-headers: true
    file:
      path: /api-file/**
      service-id: filecenter-server
      strip-prefix: true
      sensitive-headers: '*'
      custom-sensitive-headers: true
    record-center:
      path: /api-record/**
      service-id: recordcenter-server
      strip-prefix: true
      sensitive-headers: '*'
      custom-sensitive-headers: true
    log:
      path: /api-log/**
      service-id: logcenter-server
      strip-prefix: true
      sensitive-headers: '*'
      custom-sensitive-headers: true
    search:
      path: /api-search/**
      service-id: searchcenter-server
      strip-prefix: true
      sensitive-headers: '*'
      custom-sensitive-headers: true
    oprationcenter:
      path: /api-opration/**
      service-id: oprationcenter-server
      strip-prefix: true
      sensitive-headers: '*'
      custom-sensitive-headers: true
    demo-order:
      path: /api-order/**
      service-id: demo-order-server
      strip-prefix: true
      sensitive-headers: '*'
      custom-sensitive-headers: true
    demo-product:
      path: /api-product/**
      service-id: demo-product-server
      strip-prefix: true
      sensitive-headers: '*'
      custom-sensitive-headers: true
    client-service-routes:
      path: /clienttest/**
      service-id: client-service
      strip-prefix: true
      sensitive-headers: '*'
      custom-sensitive-headers: true
  ssl-hostname-validation-enabled: false
 
 
 
#全局的ribbon设置
ribbon:
  ConnectTimeout: 15000
  ReadTimeout: 16000
hystrix:
  threadpool:
    default:
      coreSize: 100
      maximumSize: 2000
      allowMaximumSizeToDivergeFromCoreSize: true
      maxQueueSize: -1
  command:
    default:
      execution:
        isolation:
          thread:
            timeoutInMilliseconds: 100000
 
kidgrow:
  oauth2:
    token:
      store:
        type: redis
  api:
    #动态权限控制
    access-control: false
    #校验参数签名
    check-sign: false
    #接口调试,生产环境设为false
    api-debug: true
    # 始终放行
    permit-all:
      - /*/login/**
      - /*/logout/**
      - /*/oauth/**
      - /actuator/health
      - /actuator/info
    # 忽略权限鉴定
    authority-ignores:
      - /*/authority/granted/me
      - /*/authority/granted/me/menu
      - /*/current/user/**
    # 签名忽略
    sign-ignores:
      - /**/login/**
      - /**/logout/**
  security:
    ignore:
      # 忽略认证的地址
      httpUrls: >
        /api-uaa/oauth/**,
        /api-uaa/validata/**,
        /api-uaa/css/**,
        /api-uaa/images/**,
        /api-uaa/js/**,
        /api-user/users-anon/**,
        /login.html,
        /user/login
    auth:
      #开启时间戳验证
      timestampenable: false
      #时间戳校验时长，单位秒
      timestampnum: 1000
      #不需要校验时间戳的Url
      httpTimestampUrl: >
        /api-uaa/oauth/**,
        /api-uaa/validata/**
      urlPermission:
        #是否开启url级别权限
        enable: false
        #配置只进行登录认证，不进行url权限认证的api
        ignoreUrls: >
          /api-user/menus/current,
          /api-user/users/current,
          /api-log/requestStat
        #白名单，需要URL认证的应用ID
        includeClientIds:
          - webApp
          - hospital
          - kidgrow
      renew:
        #是否开启token自动续签（目前只有redis实现）
        enable: false
        #白名单
        includeClientIds:
          - webApp
          - hospital
          - kidgrow
authentication:
  user:
    header-name: token
    pub-key: client/pub.key    # 解密
 
swagger:
  butler:
    auto-generate-from-zuul-routes: true
    generate-routes: user,file,log,codegenerator,auth
    apiDocsPath: v2/api-docs