add controller

@@ -32,6 +32,16 @@
             <artifactId>mybatis-spring-boot-starter</artifactId>
             <version>2.1.0</version>
         </dependency>
+        <dependency>
+            <groupId>org.springframework.security.oauth</groupId>
+            <artifactId>spring-security-oauth2</artifactId>
+            <version>2.3.6.RELEASE</version>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.security</groupId>
+            <artifactId>spring-security-jwt</artifactId>
+            <version>1.0.10.RELEASE</version>
+        </dependency>
 
         <dependency>
             <groupId>org.postgresql</groupId>
@@ -48,6 +58,8 @@
             <artifactId>spring-boot-starter-test</artifactId>
             <scope>test</scope>
         </dependency>
+
+
     </dependencies>
 
     <build>

+package com.chinadci.rdc.apidemo.config;
+
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.oauth2.config.annotation.web.configuration.EnableResourceServer;
+import org.springframework.security.oauth2.config.annotation.web.configuration.ResourceServerConfigurerAdapter;
+
+@Configuration
+@EnableResourceServer
+public class ResourceServerConfiguration extends ResourceServerConfigurerAdapter  {
+    @Override
+    public void configure(HttpSecurity http) throws Exception
+    {
+        http.authorizeRequests().antMatchers("/order/*")
+                .authenticated();
+    }
+
+
+}

+package com.chinadci.rdc.apidemo.controller;
+
+import org.apache.tomcat.util.http.parser.Authorization;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.security.core.Authentication;
+import org.springframework.security.core.context.SecurityContextHolder;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PathVariable;
+import org.springframework.web.bind.annotation.RestController;
+
+@RestController
+public class TestEndPoints {
+    private Logger logger = LoggerFactory.getLogger(TestEndPoints.class);
+
+    @GetMapping("/product/{id}")
+    public String getProduct(@PathVariable String id)
+    {
+        Authentication authentication = SecurityContextHolder.getContext().getAuthentication();
+        logger.debug("authentication:{}", authentication);
+        return "product id:" + id;
+    }
+
+    @GetMapping("/order/{id}")
+    public String getOrder(@PathVariable String id)
+    {
+        return "Order id:" +id;
+    }
+}

+server:
+  port: 8080
+  servlet:
+    context-path: /api
+
+spring:
+  datasource:
+    name: postgresqlDataSource
+    url:  jdbc:postgresql://192.168.200.149:5432/gisdata
+    username: gisdata
+    password: gisdata
+
+security:
+  oauth2:
+    resource: