Spring Security Core Plugin 二 (领域类)

最新推荐文章于 2021-11-23 20:42:04 发布
最新推荐文章于 2021-11-23 20:42:04 发布
阅读量253 收藏
点赞数
分类专栏: spring/hibernate/mybatis grails/groovy/gradle 秒扒Spring

Person Class

自定义时username, enabled 和password是必备三个属性, 另外还需要定义一个authorities属性或getAuthorities方法.

package com.mycompany.myapp

import groovy.transform.EqualsAndHashCode
import groovy.transform.ToString
import grails.compiler.GrailsCompileStatic

@GrailsCompileStatic
@EqualsAndHashCode(includes='username')
@ToString(includes='username', includeNames=true, includePackage=false)
class User implements Serializable {

	private static final long serialVersionUID = 1

	String username
	String password
	boolean enabled = true
	boolean accountExpired
	boolean accountLocked
	boolean passwordExpired

	Set<Role> getAuthorities() {
		(UserRole.findAllByUser(this) as List<UserRole>)*.role as Set<Role>
	}

	static constraints = {
		password blank: false, password: true
		username blank: false, unique: true
	}

	static mapping = {
		password column: '`password`'
	}
}
PropertyDefault ValueMeaning

userLookup.userDomainClassName

none

User class name

userLookup.usernamePropertyName

“username”

User class username property

userLookup.passwordPropertyName

“password”

User class password property

userLookup.authoritiesPropertyName

“authorities”

User class role collection property

userLookup.enabledPropertyName

“enabled”

User class enabled property

userLookup.accountExpiredPropertyName

“accountExpired”

User class account expired property

userLookup.accountLockedPropertyName

“accountLocked”

User class account locked property

userLookup.passwordExpiredPropertyName

“passwordExpired”

User class password expired property

userLookup.authorityJoinClassName

none

User/Role many-many join class name

Authority Class

没有权限时, 对应一个虚拟的角色ROLE_NO_ROLES.

自定义时, authority属性是必须属性. 角色名称必须以ROLE_开头

package com.mycompany.myapp

import groovy.transform.EqualsAndHashCode
import groovy.transform.ToString
import grails.compiler.GrailsCompileStatic

@GrailsCompileStatic
@EqualsAndHashCode(includes='authority')
@ToString(includes='authority', includeNames=true, includePackage=false)
class Role implements Serializable {

	private static final long serialVersionUID = 1

	String authority

	static constraints = {
		authority blank: false, unique: true
	}

	static mapping = {
		cache true
	}
}
PropertyDefault ValueMeaning

authority.className

none

Role class name

authority.nameField

“authority”

Role class role name property

PersonAuthority Class

角色和用户多对多关系映射

package com.mycompany.myapp

import grails.gorm.DetachedCriteria
import groovy.transform.ToString

import org.codehaus.groovy.util.HashCodeHelper
import grails.compiler.GrailsCompileStatic

@GrailsCompileStatic
@ToString(cache=true, includeNames=true, includePackage=false)
class UserRole implements Serializable {

	private static final long serialVersionUID = 1

	User user
	Role role

	@Override
	boolean equals(other) {
		if (other instanceof UserRole) {
			other.userId == user?.id && other.roleId == role?.id
		}
	}

    @Override
	int hashCode() {
	    int hashCode = HashCodeHelper.initHash()
        if (user) {
            hashCode = HashCodeHelper.updateHash(hashCode, user.id)
		}
		if (role) {
		    hashCode = HashCodeHelper.updateHash(hashCode, role.id)
		}
		hashCode
	}

	static UserRole get(long userId, long roleId) {
		criteriaFor(userId, roleId).get()
	}

	static boolean exists(long userId, long roleId) {
		criteriaFor(userId, roleId).count()
	}

	private static DetachedCriteria criteriaFor(long userId, long roleId) {
		UserRole.where {
			user == User.load(userId) &&
			role == Role.load(roleId)
		}
	}

	static UserRole create(User user, Role role, boolean flush = false) {
		def instance = new UserRole(user: user, role: role)
		instance.save(flush: flush)
		instance
	}

	static boolean remove(User u, Role r) {
		if (u != null && r != null) {
			UserRole.where { user == u && role == r }.deleteAll()
		}
	}

	static int removeAll(User u) {
		u == null ? 0 : UserRole.where { user == u }.deleteAll() as int
	}

	static int removeAll(Role r) {
		r == null ? 0 : UserRole.where { role == r }.deleteAll() as int
	}

	static constraints = {
		role validator: { Role r, UserRole ur ->
			if (ur.user?.id) {
				UserRole.withNewSession {
					if (UserRole.exists(ur.user.id, r.id)) {
						return ['userRole.exists']
					}
				}
			}
		}
	}

	static mapping = {
		id composite: ['user', 'role']
		version false
	}
}
PropertyDefault ValueMeaning

userLookup.authorityJoinClassName

none

User/Role many-many join class name

 

Group Class

 

组用户类

package com.mycompany.myapp

import groovy.transform.EqualsAndHashCode
import groovy.transform.ToString
import grails.compiler.GrailsCompileStatic

@GrailsCompileStatic
@EqualsAndHashCode(includes='name')
@ToString(includes='name', includeNames=true, includePackage=false)
class RoleGroup implements Serializable {

	private static final long serialVersionUID = 1

	String name

	Set<Role> getAuthorities() {
		(RoleGroupRole.findAllByRoleGroup(this) as List<RoleGroupRole>)*.role as Set<Role>
	}

	static constraints = {
		name blank: false, unique: true
	}

	static mapping = {
		cache true
	}
}
PropertyDefault ValueMeaning

useRoleGroups

false

Whether to use “authority group” implementation when loading user authorities

authority.groupAuthorityNameField

none 

RoleGroup class role collection property

PersonGroup Class

用户和组多对多映射.

package com.mycompany.myapp

import grails.gorm.DetachedCriteria
import groovy.transform.ToString
import org.codehaus.groovy.util.HashCodeHelper
import grails.compiler.GrailsCompileStatic

@GrailsCompileStatic
@ToString(cache=true, includeNames=true, includePackage=false)
class UserRoleGroup implements Serializable {

	private static final long serialVersionUID = 1

	User user
	RoleGroup roleGroup

	@Override
	boolean equals(other) {
		if (other instanceof UserRoleGroup) {
			other.userId == user?.id && other.roleGroupId == roleGroup?.id
		}
	}

    @Override
	int hashCode() {
	    int hashCode = HashCodeHelper.initHash()
        if (user) {
            hashCode = HashCodeHelper.updateHash(hashCode, user.id)
		}
		if (roleGroup) {
		    hashCode = HashCodeHelper.updateHash(hashCode, roleGroup.id)
		}
		hashCode
	}

	static UserRoleGroup get(long userId, long roleGroupId) {
		criteriaFor(userId, roleGroupId).get()
	}

	static boolean exists(long userId, long roleGroupId) {
		criteriaFor(userId, roleGroupId).count()
	}

	private static DetachedCriteria criteriaFor(long userId, long roleGroupId) {
		UserRoleGroup.where {
			user == User.load(userId) &&
			roleGroup == RoleGroup.load(roleGroupId)
		}
	}

	static UserRoleGroup create(User user, RoleGroup roleGroup, boolean flush = false) {
		def instance = new UserRoleGroup(user: user, roleGroup: roleGroup)
		instance.save(flush: flush)
		instance
	}

	static boolean remove(User u, RoleGroup rg) {
		if (u != null && rg != null) {
			UserRoleGroup.where { user == u && roleGroup == rg }.deleteAll()
		}
	}

	static int removeAll(User u) {
		u == null ? 0 : UserRoleGroup.where { user == u }.deleteAll() as int
	}

	static int removeAll(RoleGroup rg) {
		rg == null ? 0 : UserRoleGroup.where { roleGroup == rg }.deleteAll() as int
	}

	static constraints = {
		user validator: { User u, UserRoleGroup ug ->
			if (ug.roleGroup?.id) {
				UserRoleGroup.withNewSession {
					if (UserRoleGroup.exists(u.id, ug.roleGroup.id)) {
						return ['userGroup.exists']
					}
				}
			}
		}
	}

	static mapping = {
		id composite: ['roleGroup', 'user']
		version false
	}
}

GroupAuthority Class

组和权限多对多映射

package com.mycompany.myapp

import grails.gorm.DetachedCriteria
import groovy.transform.ToString

import org.codehaus.groovy.util.HashCodeHelper
import grails.compiler.GrailsCompileStatic

@GrailsCompileStatic
@ToString(cache=true, includeNames=true, includePackage=false)
class RoleGroupRole implements Serializable {

	private static final long serialVersionUID = 1

	RoleGroup roleGroup
	Role role

	@Override
	boolean equals(other) {
		if (other instanceof RoleGroupRole) {
			other.roleId == role?.id && other.roleGroupId == roleGroup?.id
		}
	}

	@Override
	int hashCode() {
	    int hashCode = HashCodeHelper.initHash()
        if (roleGroup) {
            hashCode = HashCodeHelper.updateHash(hashCode, roleGroup.id)
		}
		if (role) {
		    hashCode = HashCodeHelper.updateHash(hashCode, role.id)
		}
		hashCode
	}

	static RoleGroupRole get(long roleGroupId, long roleId) {
		criteriaFor(roleGroupId, roleId).get()
	}

	static boolean exists(long roleGroupId, long roleId) {
		criteriaFor(roleGroupId, roleId).count()
	}

	private static DetachedCriteria criteriaFor(long roleGroupId, long roleId) {
		RoleGroupRole.where {
			roleGroup == RoleGroup.load(roleGroupId) &&
			role == Role.load(roleId)
		}
	}

	static RoleGroupRole create(RoleGroup roleGroup, Role role, boolean flush = false) {
		def instance = new RoleGroupRole(roleGroup: roleGroup, role: role)
		instance.save(flush: flush)
		instance
	}

	static boolean remove(RoleGroup rg, Role r) {
		if (rg != null && r != null) {
			RoleGroupRole.where { roleGroup == rg && role == r }.deleteAll()
		}
	}

	static int removeAll(Role r) {
		r == null ? 0 : RoleGroupRole.where { role == r }.deleteAll() as int
	}

	static int removeAll(RoleGroup rg) {
		rg == null ? 0 : RoleGroupRole.where { roleGroup == rg }.deleteAll() as int
	}

	static constraints = {
		role validator: { Role r, RoleGroupRole rg ->
			if (rg.roleGroup?.id) {
				RoleGroupRole.withNewSession {
					if (RoleGroupRole.exists(rg.roleGroup.id, r.id)) {
						return ['roleGroup.exists']
					}
				}
			}
		}
	}

	static mapping = {
		id composite: ['roleGroup', 'role']
		version false
	}
}

Requestmap Class

在数据库中保存request mapping.

 

PropertyDefault ValueMeaning

requestMap.className

none

requestmap class name

requestMap.urlField

“url”

URL pattern property name

requestMap.configAttributeField

“configAttribute”

authority pattern property name

requestMap.httpMethodField

“httpMethod”

HTTP method property name (optional, does not have to exist in the class if you don’t require URL/method security)

 

package com.mycompany.myapp

import org.springframework.http.HttpMethod

import groovy.transform.EqualsAndHashCode
import groovy.transform.ToString
import grails.compiler.GrailsCompileStatic

@GrailsCompileStatic
@EqualsAndHashCode(includes=['configAttribute', 'httpMethod', 'url'])
@ToString(includes=['configAttribute', 'httpMethod', 'url'], cache=true, includeNames=true, includePackage=false)
class RequestMap implements Serializable {

	private static final long serialVersionUID = 1

	String configAttribute
	HttpMethod httpMethod
	String url

	static constraints = {
		configAttribute blank: false
		httpMethod nullable: true
		url blank: false, unique: 'httpMethod'
	}

	static mapping = {
		cache true
	}
}

 

最后欢迎大家访问我的个人网站:1024s​​​​​​​

崔世勋
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
spring-plugin-core-1.2.0.RELEASE-API文档-中文版.zip
04-08
赠送jar包:spring-plugin-core-1.2.0.RELEASE.jar; 赠送原API文档:spring-plugin-core-1.2.0.RELEASE-javadoc.jar; 赠送源代码:spring-plugin-core-1.2.0.RELEASE-sources.jar; 包含翻译后的API文档:spring-plugin-core-1.2.0.RELEASE-javadoc-API文档-中文(简体)版.zip 对应Maven信息:groupId:org.springframework.plugin,artifactId:spring-plugin-core,version:1.2.0.RELEASE 使用方法:解压翻译后的API文档,用浏览器打开“index.html”文件,即可纵览文档内容。 人性化翻译,文档中的代码和结构保持不变,注释和说明精准翻译,请放心使用。
Spring Security Core Plugin
金溪的博客
04-12 275
配置 默认值在插件的DefaultSecurityConfig.groovy文件中. 在应用中可以通过grails-app/conf/application.groovy和grails-app/conf/application.yml进行应用级配置. (1) 默认的只有POST请求才会触发登录, 为了允许GET访问, 添加 grails.plugin.springsecurity.logo...
SpringCore模块
weixin_30909575的博客
03-05 256
Core模块主要的功能是实现了控制反转与依赖注入、Bean配置以及加载。Core模块中有Beans、BeanFactory、BeanDefinitions、ApplicationContext等概念 BeanFactory BeanFactory是实例化、配置、管理众多bean的容器 在Web程序中用户不需要实例化Beanfactory,Web程序加载的时候会自动实例化B...
Spring Security Core Plugin 四(Filters)
金溪的博客
04-12 409
filterNames 通过rails.plugin.springsecurity.filterChain.filterNames来定制过滤器. grails.plugin.springsecurity.filterChain.filterNames = [ 'securityContextPersistenceFilter', 'logoutFilter', 'authenti...
Spring Security Core Plugin 九(URL属性)
金溪的博客
04-13 373
PropertyDefault ValueMeaningapf.filterProcessesUrl“/login/authenticate”Login form post URL, intercepted by Spring Security filterapf.usernameParameter“username”Login form username parameterapf.passwor...
Grails-spring-security-rest-plugin-configuration
07-04
excludes: 'spring-security-core' } 上面的行将在您的应用程序中安装 spring security rest 插件。 步骤 3. 在您的 grails 应用程序中创建一个新域 AuthToken,它将在用户登录 AuthToken.groovy 时存储身份验证...
spring cloud 集成相关中间件
最新发布
12-23
分布式基础公共支持:robert-core包含了常用的公共核心类和常见的中间件集成包,开箱即用。 网关服务:以Spring Cloud官方的spring-cloud-gateway作为网关,支持动态路由、参数验签、token验证、限流和熔断等服务。 ...
springmvn搭建的Maven项目入门
06-22
- 在`pom.xml`文件中配置项目依赖,包括SpringMVC、Spring CoreSpring Web以及Jetty Server等。 2. **配置SpringMVC** - 引入SpringMVC的依赖,在`pom.xml`中添加对应的`<dependency>`标签。 - 配置`web.xml`...
Spring毕业
02-22
1. **Spring Core**:它是整个Spring框架的基础,提供了依赖注入(Dependency Injection, DI)和面向切面编程(Aspect-Oriented Programming, AOP)的支持。DI允许开发者将对象的创建和管理交给Spring容器,而AOP则...
spring-plugin-core-2.0.0.RELEASE-API文档-中文版.zip
05-09
赠送jar包:spring-plugin-core-2.0.0.RELEASE.jar; 赠送原API文档:spring-plugin-core-2.0.0.RELEASE-javadoc.jar; 赠送源代码:spring-plugin-core-2.0.0.RELEASE-sources.jar; 赠送Maven依赖信息文件:spring-plugin-core-2.0.0.RELEASE.pom; 包含翻译后的API文档:spring-plugin-core-2.0.0.RELEASE-javadoc-API文档-中文(简体)版.zip; Maven坐标:org.springframework.plugin:spring-plugin-core:2.0.0.RELEASE; 标签:springcorepluginspringframework、jar包、java、中文文档; 使用方法:解压翻译后的API文档,用浏览器打开“index.html”文件,即可纵览文档内容。 人性化翻译,文档中的代码和结构保持不变,注释和说明精准翻译,请放心使用。
spring-plugin-core-2.0.0.RELEASE-API文档-中英对照版.zip
05-03
赠送jar包:spring-plugin-core-2.0.0.RELEASE.jar; 赠送原API文档:spring-plugin-core-2.0.0.RELEASE-javadoc.jar; 赠送源代码:spring-plugin-core-2.0.0.RELEASE-sources.jar; 赠送Maven依赖信息文件:spring-plugin-core-2.0.0.RELEASE.pom; 包含翻译后的API文档:spring-plugin-core-2.0.0.RELEASE-javadoc-API文档-中文(简体)-英语-对照版.zip; Maven坐标:org.springframework.plugin:spring-plugin-core:2.0.0.RELEASE; 标签:springcorepluginspringframework、jar包、java、中英对照文档; 使用方法:解压翻译后的API文档,用浏览器打开“index.html”文件,即可纵览文档内容。 人性化翻译,文档中的代码和结构保持不变,注释和说明精准翻译,请放心使用。 双语对照,边学技
spring-core-4.1.1.RELEASE.jar
12-27
报错:java.lang.NoClassDefFoundError: org/springframework/core/io/Resource,为缺少spring-core.jar
Spring security core plugin 八(Event)
金溪的博客
04-13 332
主要涉及两个事件类:AbstractAuthenticationEvent和AbstractAuthorizationEvent 事件通知 1. 注册事件监听器,添加感兴趣的事件,这样当相关事件类及其子类发生时,会接到通知。 MySecurityEventListener.groovy package com.foo.bar import org.springframework.cont...
spring-plugin-core-1.2.0.RELEASE.jar下载
aeaxea43的博客
11-23 359
spring-plugin-core-1.2.0.RELEASE.jar - 文件下载http://kk263.cn/ft-9433.html
Spring-Security-core插件使用教程
Grails&drupal
08-07 1780
作者: 伯特·贝克威思,贝弗利塔尔博特 版本: 1.2.7.3 1. 创建Grails应用程序 $ grails create-app bookstore $ cd bookstore 2. 安装该插件 $ grails install-plugin spring-security-core 3. 创建User和 Role 领域类。 $ grails s2-quickstart c
Swagger3和SpringBoot搭配,spring-plugin-core报错
跑码场
11-07 6633
错误详情如下 *************************** APPLICATION FAILED TO START *************************** Description: An attempt was made to call the method org.springframework.plugin.core.PluginRegistry.getPluginFor(Ljava/lang/Object;)Ljava/util/Optional; but it does
SpringPlugin-Core在业务中的应用
乌托拉赛文的博客
10-14 1677
前言 一直负责部门的订单模块,从php转到Java也是如此,换了一种语言来实现订单相关功能。那么Spring里有很多已经搭建好基础模块的设计模式来帮助我们解耦实际业务中的逻辑,用起来非常的方便!就比如我们的订单操作模块。生成订单后,有很多操作。比如:取消、支付、关闭…等等。那么用设计模式的思想去处理这些不同的操作,最好用的就是策略模式来解决它们!把不同的操作分配到不同的实现类里去。这不,我发现了一个不错的东西Spring plugin! Spring Plugin Spring plugin这个小东西我也是
源码系列之spring源码查看笔记spring-core(4)
automannn
08-25 265
  lang包: objenesis包:、   util包:   ---------------------------------------------------------------------     spring-core的内容完结,最大的感觉就是,它对很多java的基础内容做了包装,或者说用于定制化。。;所...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值