Spring mvc+shiro+ehcache整合

最新推荐文章于 2021-05-22 21:31:49 发布
最新推荐文章于 2021-05-22 21:31:49 发布
阅读量736 收藏 1
点赞数
分类专栏: 后台开发 框架搭建 文章标签: shiro
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/Java__han/article/details/75340238
版权

Spring mvc+shiro+ehcache整合(详细配置)

发现最近写博客写的少了,正好有时间,把shiro的配置步骤搞上来
本项目是spring mvc整合shiro,用了md5加密,各种配置文件都是从官方例子中拷贝来,注释比较多,
此项目目前只涉及简单的登陆验证。
1.没用maven,直接贴jar包地址: http://download.csdn.net/detail/java__han/9903446
2.web.xml配置 
<?xml version="1.0" encoding="UTF-8"?>
<web-app xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://xmlns.jcp.org/xml/ns/javaee" xsi:schemaLocation="http://xmlns.jcp.org/xml/ns/javaee http://xmlns.jcp.org/xml/ns/javaee/web-app_3_1.xsd" id="WebApp_ID" version="3.1">
  <display-name>shiro1</display-name>
  <welcome-file-list>
    <welcome-file>index.html</welcome-file>
    <welcome-file>index.htm</welcome-file>
    <welcome-file>login.jsp</welcome-file>
    <welcome-file>default.html</welcome-file>
    <welcome-file>default.htm</welcome-file>
    <welcome-file>default.jsp</welcome-file>
  </welcome-file-list>
  
  <!-- needed for ContextLoaderListener -->
	<context-param>
		<param-name>contextConfigLocation</param-name>
		<param-value>classpath:applicationContext.xml</param-value>
	</context-param>

	<!-- Bootstraps the root web application context before servlet initialization -->
	<listener>
		<listener-class>org.springframework.web.context.ContextLoaderListener</listener-class>
	</listener>
	
	<!-- The front controller of this Spring Web application, responsible for handling all application requests -->
	<servlet>
		<servlet-name>spring</servlet-name>
		<servlet-class>org.springframework.web.servlet.DispatcherServlet</servlet-class>
		<load-on-startup>1</load-on-startup>
	</servlet>

	<!-- Map all requests to the DispatcherServlet for handling -->
	<servlet-mapping>
		<servlet-name>spring</servlet-name>
		<url-pattern>/</url-pattern>
	</servlet-mapping>
  <!-- 
  	1.配置shiro拦截器 
	2.DelegatingFilterProxy实际上是Filterde 的一个代理对象。默认情况下Spring 会在IOC 
	容器中查找<filter-name>对应的filter bean.也可以通过targetBeanName的初始化参数来配置filter bean的id
  	-->
  <!-- ==================================================================
         Filters
         ================================================================== -->
    <!-- Shiro Filter is defined in the spring application context: -->
    <filter>
        <filter-name>shiroFilter</filter-name>
        <filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class>
        <init-param>
            <param-name>targetFilterLifecycle</param-name>
            <param-value>true</param-value>
        </init-param>
    </filter>

    <filter-mapping>
        <filter-name>shiroFilter</filter-name>
        <url-pattern>/*</url-pattern>
    </filter-mapping>
    
 </web-app>
3.配置的spring-servlet.xml: 
<?xml version="1.0" encoding="UTF-8"?>
<beans xmlns="http://www.springframework.org/schema/beans"
	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
	xmlns:mvc="http://www.springframework.org/schema/mvc"
	xmlns:context="http://www.springframework.org/schema/context"
	xsi:schemaLocation="http://www.springframework.org/schema/mvc http://www.springframework.org/schema/mvc/spring-mvc-4.0.xsd
		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd
		http://www.springframework.org/schema/context http://www.springframework.org/schema/context/spring-context-4.0.xsd">
	
	<context:component-scan base-package="com.hc.shiro.ce"></context:component-scan>
	
	<bean class="org.springframework.web.servlet.view.InternalResourceViewResolver">
		<property name="prefix" value="/"></property>
		<property name="suffix" value=".jsp"></property>
	</bean>
	
	<mvc:annotation-driven></mvc:annotation-driven>
	<mvc:default-servlet-handler/>

</beans>
4.applicationContext.xml: 实现了md5加密,如果不需要,请自行去掉 
<?xml version="1.0" encoding="UTF-8"?>
<beans xmlns="http://www.springframework.org/schema/beans"
	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd">
 
    <!-- =========================================================
         Shiro Core Components - Not Spring Specific
         ========================================================= -->
    <!-- Shiro's main business-tier object for web-enabled applications
         (use DefaultSecurityManager instead when there is no web environment)-->
     <!-- 
     1.配置securityManager 
     -->    
    <bean id="securityManager" class="org.apache.shiro.web.mgt.DefaultWebSecurityManager">
        <property name="cacheManager" ref="cacheManager"/>
        <property name="realm" ref="jdbcRealm"/>
    </bean>

    <!-- Let's use some enterprise caching support for better performance.  You can replace this with any enterprise
         caching framework implementation that you like (Terracotta+Ehcache, Coherence, GigaSpaces, etc -->
      <!--    
     	2. 配置cacheManager
       -->   
    <bean id="cacheManager" class="org.apache.shiro.cache.ehcache.EhCacheManager">
        <!-- Set a net.sf.ehcache.CacheManager instance here if you already have one.  If not, a new one
             will be creaed with a default config:
             <property name="cacheManager" ref="ehCacheManager"/> -->
        <!-- If you don't have a pre-built net.sf.ehcache.CacheManager instance to inject, but you want
             a specific Ehcache configuration to be used, specify that here.  If you don't, a default
             will be used.:-->
        <property name="cacheManagerConfigFile" value="classpath:ehcache.xml"/> 
    </bean>

    <!-- Used by the SecurityManager to access security data (users, roles, etc).
         Many other realm implementations can be used too (PropertiesRealm,
         LdapRealm, etc. -->
     <!-- 
     3.配置realm
     3.1直接配置实现了Realm接口的bean
      -->
    <bean id="jdbcRealm" class="com.hc.shiro.ce.realms.ShiroRealm">
        <property name="credentialsMatcher">
    		<bean class="org.apache.shiro.authc.credential.HashedCredentialsMatcher">
    			<property name="hashAlgorithmName" value="MD5"></property>
    			<property name="hashIterations" value="1024"></property>
    		</bean>
    	</property>
    </bean>

    <!-- =========================================================
         Shiro Spring-specific integration
         ========================================================= -->
    <!-- Post processor that automatically invokes init() and destroy() methods
         for Spring-configured Shiro objects so you don't have to
         1) specify an init-method and destroy-method attributes for every bean
            definition and
         2) even know which Shiro objects require these methods to be
            called. -->
      <!-- 
      4.配置lifecycleBeanPostProcessor。自动调用配置在spring ioc 容器中shiro bean的生命周期方法
       -->      
    <bean id="lifecycleBeanPostProcessor" class="org.apache.shiro.spring.LifecycleBeanPostProcessor"/>

    <!-- Enable Shiro Annotations for Spring-configured beans.  Only run after
         the lifecycleBeanProcessor has run: -->
      <!-- 
      5.启用ioc容器中使用shiro的注解,但必须在配置了lifecycleBeanPostProcessor后才能使用
       -->
    <bean class="org.springframework.aop.framework.autoproxy.DefaultAdvisorAutoProxyCreator"
          depends-on="lifecycleBeanPostProcessor"/>
    <bean class="org.apache.shiro.spring.security.interceptor.AuthorizationAttributeSourceAdvisor">
        <property name="securityManager" ref="securityManager"/>
    </bean>

   
    <!-- Define the Shiro Filter here (as a FactoryBean) instead of directly in web.xml -
         web.xml uses the DelegatingFilterProxy to access this bean.  This allows us
         to wire things with more control as well utilize nice Spring things such as
         PropertiesPlaceholderConfigurer and abstract beans or anything else we might need: -->
    <!-- 
    6.配置shiroFilter
    6.1 id必须和web.xml中的配合的DelegatingFilterProxy 的filtername一致
    	如果不一致会抛异常
     -->
    <bean id="shiroFilter" class="org.apache.shiro.spring.web.ShiroFilterFactoryBean">
        <property name="securityManager" ref="securityManager"/>
        <property name="loginUrl" value="/login.jsp"/>
        <property name="successUrl" value="/list.jsp"/>
        <property name="unauthorizedUrl" value="/unauthorized.jsp"/>
        <!-- The 'filters' property is not necessary since any declared javax.servlet.Filter bean
             defined will be automatically acquired and available via its beanName in chain
             definitions, but you can perform overrides or parent/child consolidated configuration
             here if you like: -->
        <!-- <property name="filters">
            <util:map>
                <entry key="aName" value-ref="someFilterPojo"/>
            </util:map>
        </property> -->
        <!-- 
       		 配置那些页面需要受保护,以及访问这些页面需要的权限
       		 1)anon 可以别匿名访问
       		 2)authc 必须认证即登陆后才能访问的页面
       		 3)logout登出
       		url权限采用第一册匹配优先的方式 
         -->
        <property name="filterChainDefinitions">
            <value>
                /login.jsp = anon
                /shiro/login = anon
                /shiro/logout = logout
                # everything else requires authentication:
                /** = authc
            </value>
        </property>
    </bean>
 
</beans>
5.ehcache.xml: 
<ehcache>

    <!-- Sets the path to the directory where cache .data files are created.

         If the path is a Java System Property it is replaced by
         its value in the running VM.

         The following properties are translated:
         user.home - User's home directory
         user.dir - User's current working directory
         java.io.tmpdir - Default temp file path -->
    <diskStore path="java.io.tmpdir"/>
    
    <cache name="authorizationCache"
           eternal="false"
           timeToIdleSeconds="3600"
           timeToLiveSeconds="0"
           overflowToDisk="false"
           statistics="true">
    </cache>

    <cache name="authenticationCache"
           eternal="false"
           timeToIdleSeconds="3600"
           timeToLiveSeconds="0"
           overflowToDisk="false"
           statistics="true">
    </cache>

    <cache name="shiro-activeSessionCache"
           eternal="false"
           timeToIdleSeconds="3600"
           timeToLiveSeconds="0"
           overflowToDisk="false"
           statistics="true">
    </cache>

    <!--Default Cache configuration. These will applied to caches programmatically created through
        the CacheManager.

        The following attributes are required for defaultCache:

        maxInMemory       - Sets the maximum number of objects that will be created in memory
        eternal           - Sets whether elements are eternal. If eternal,  timeouts are ignored and the element
                            is never expired.
        timeToIdleSeconds - Sets the time to idle for an element before it expires. Is only used
                            if the element is not eternal. Idle time is now - last accessed time
        timeToLiveSeconds - Sets the time to live for an element before it expires. Is only used
                            if the element is not eternal. TTL is now - creation time
        overflowToDisk    - Sets whether elements can overflow to disk when the in-memory cache
                            has reached the maxInMemory limit.

        -->
    <defaultCache
        maxElementsInMemory="10000"
        eternal="false"
        timeToIdleSeconds="120"
        timeToLiveSeconds="120"
        overflowToDisk="true"
        />

    <!--Predefined caches.  Add your cache configuration settings here.
        If you do not have a configuration for your cache a WARNING will be issued when the
        CacheManager starts

        The following attributes are required for defaultCache:

        name              - Sets the name of the cache. This is used to identify the cache. It must be unique.
        maxInMemory       - Sets the maximum number of objects that will be created in memory
        eternal           - Sets whether elements are eternal. If eternal,  timeouts are ignored and the element
                            is never expired.
        timeToIdleSeconds - Sets the time to idle for an element before it expires. Is only used
                            if the element is not eternal. Idle time is now - last accessed time
        timeToLiveSeconds - Sets the time to live for an element before it expires. Is only used
                            if the element is not eternal. TTL is now - creation time
        overflowToDisk    - Sets whether elements can overflow to disk when the in-memory cache
                            has reached the maxInMemory limit.

        -->

    <!-- Sample cache named sampleCache1
        This cache contains a maximum in memory of 10000 elements, and will expire
        an element if it is idle for more than 5 minutes and lives for more than
        10 minutes.

        If there are more than 10000 elements it will overflow to the
        disk cache, which in this configuration will go to wherever java.io.tmp is
        defined on your system. On a standard Linux system this will be /tmp"
        -->
    <cache name="sampleCache1"
        maxElementsInMemory="10000"
        eternal="false"
        timeToIdleSeconds="300"
        timeToLiveSeconds="600"
        overflowToDisk="true"
        />

    <!-- Sample cache named sampleCache2
        This cache contains 1000 elements. Elements will always be held in memory.
        They are not expired. -->
    <cache name="sampleCache2"
        maxElementsInMemory="1000"
        eternal="true"
        timeToIdleSeconds="0"
        timeToLiveSeconds="0"
        overflowToDisk="false"
        /> -->

    <!-- Place configuration for your caches following -->

</ehcache>

6.ShiroRealm.java:注意package的路径 
package com.hc.shiro.ce.realms;

import org.apache.shiro.authc.AuthenticationException;
import org.apache.shiro.authc.AuthenticationInfo;
import org.apache.shiro.authc.AuthenticationToken;
import org.apache.shiro.authc.LockedAccountException;
import org.apache.shiro.authc.SimpleAuthenticationInfo;
import org.apache.shiro.authc.UnknownAccountException;
import org.apache.shiro.authc.UsernamePasswordToken;
import org.apache.shiro.authc.credential.CredentialsMatcher;
import org.apache.shiro.authc.credential.HashedCredentialsMatcher;
import org.apache.shiro.crypto.hash.SimpleHash;
import org.apache.shiro.realm.AuthenticatingRealm;
import org.apache.shiro.util.ByteSource;

public class ShiroRealm extends  AuthenticatingRealm {

	@Override
	protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken token) throws AuthenticationException {
		System.out.println("进入"+token);
		//1.把AuthenticationToken转换为UsernamePasswordToken
		UsernamePasswordToken uptoken = (UsernamePasswordToken) token;
		//2.从UsernamePasswordToken获取username
		String username= uptoken.getUsername();
		
		//3.调用数据库的方法,获取数据库中的username对应的用户记录
		System.out.println("从数据库查询数据username:"+username+"对应的信息");
		//4.若用户不存在,则可以抛出异常UnknownAccountException
		if("unname".equals(username)){
			throw new UnknownAccountException("用户不存在");
		}
		//5.根据用户信息,决定是否需要抛出其他u异常
		if("dahuang".equals(username)){
			throw new LockedAccountException("用户被锁定");
		}
		//6.根据用户的情况构建AuthenticationInfo对象并返回,通常使用	
		//以下信息是从数据库获取的
		//1.principal:认证的实体信息。可以是username,也可以是数据库对应的用户实体对象
		Object principal= username;
		//2.credentials:密码
		Object credentials="fc1709d0a95a6be30bc5926fdb7f22f4";
		//realmName:当前realm对象的name,调用父类的getName()方法即可
		String realmName= getName();
		SimpleAuthenticationInfo info = new SimpleAuthenticationInfo(principal, credentials, realmName);
		return info;
	}

	public static void main(String[] args) {
		String hashAlgorithmName = "MD5";
		Object credentials = "123456";
		Object salt = ByteSource.Util.bytes("user");
		int hashIterations = 1024;
		Object result = new SimpleHash(hashAlgorithmName, credentials, null, hashIterations);
		System.out.println(result);
	}

}

7.写个登陆的控制器UserAction.java 
package com.hc.shiro.ce.action;

import org.apache.commons.logging.Log;
import org.apache.commons.logging.LogFactory;
import org.apache.shiro.SecurityUtils;
import org.apache.shiro.authc.AuthenticationException;
import org.apache.shiro.authc.UsernamePasswordToken;
import org.apache.shiro.subject.Subject;
import org.springframework.stereotype.Controller;
import org.springframework.web.bind.annotation.RequestMapping;

@Controller
@RequestMapping("/shiro")
public class UserAction {
	private Log log = LogFactory.getLog(UserAction.class);
	@RequestMapping("/login")
	public String login(String name,String password){
		   Subject currentUser = SecurityUtils.getSubject();
		   // Do some stuff with a Session (no need for a web or EJB container!!!)
	        //测试使用session
	        //获取session 调用Subject.getSession() 
	        /*Session session = currentUser.getSession();
	        session.setAttribute("someKey", "aValue");
	        String value = (String) session.getAttribute("someKey");
	        if (value.equals("aValue")) {
	            log.info("--》Retrieved the correct value! [" + value + "]");
	        }*/

	        // let's login the current user so we can check against roles and permissions:
	        //测试当前的用户是否已经被认证,既是否已经登录
	        //调用Subject 的isAuthenticated
	        if (!currentUser.isAuthenticated()) {
	        	//吧用户名和密码封装成UsernamePasswordToken
	            UsernamePasswordToken token = new UsernamePasswordToken(name, password);
	            //RememberMe
	            token.setRememberMe(true);
	            try {
	            	//执行登录
	                currentUser.login(token);
	            }
	           /* //若没有指定的账户,shiro会抛出UnknownAccountException
	            catch (UnknownAccountException uae) {
	                log.info("There is no user with username of " + token.getPrincipal());
	            } 
	            //密码不对,shiro会抛出IncorrectCredentialsException
	            catch (IncorrectCredentialsException ice) {
	                log.info("Password for account " + token.getPrincipal() + " was incorrect!");
	            } 
	            //用户被锁定异常
	            catch (LockedAccountException lae) {
	                log.info("The account for username " + token.getPrincipal() + " is locked.  " +
	                        "Please contact your administrator to unlock it.");
	            }*/
	            // ... catch more exceptions here (maybe custom ones specific to your application?
	            //所有认证异常的父类
	            catch (AuthenticationException e) {
	               System.out.println("登录失败:  "+e.getMessage());
	            }
	        }
		return "redirect:/list.jsp";
	}
	
}
8.登陆页面login.jsp 
<%@ page language="java" contentType="text/html; charset=utf-8"
    pageEncoding="utf-8"%>
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
<title>Insert title here</title>
</head>
<body>
<h1>登陆页面</h1>
<form action="shiro/login" method="post">
username:<input type="text" name="name">
<br>
password:<input type="text" name="password">
<br>
<input type="submit" value="提交">
</form>
</body>
</html>
9.登陆成功的页面list.jsp 
<%@ page language="java" contentType="text/html; charset=utf-8"
    pageEncoding="utf-8"%>
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
<title>Insert title here</title>
</head>
<body>
<h1>登陆成功页面</h1>
<a href="shiro/logout">logout</a>
</body>
</html>
10.项目一览




Java__han
关注
  • 0
    点赞
  • 1
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
springboot整合shiro,ehcache
Super_dena的博客
04-24 307
springboot整合shiro,ehcache
Shiro 教程基于SSM(SpringMVC + Spring + Mybatis)EHCache版本
sojson.com站长的专栏
01-04 576
一、Shiro简介 Apache Shiro 是 Java  的一个安全框架。我们经常看到它被拿来和 Spring  的 Security  来对比。大部分人认为 Shiro  比 Security  要简单。我的观点赞成一半一半吧。 首先 Shiro  确实和 Security  是同类型的框架,主要用来做安全,也就是我们俗称的权限校验(控制)。居多人对 Shrio  的定义为好...
SpringMVC+Mybatis+Spring+Shiro+ehcache整合配置文件
08-20
SpringMVC+Mybatis+Spring+Shiro+ehcache整合配置文件
ehcache配置:使用Spring+SpringMVC+Mybatis或者有shiro
dinie6516的博客
05-30 113
SSM框架的搭建就不在叙述了 本文主要是讲解在SSM基础上再加上ehcache 1:首先:pom.xml需要的jar <dependency> <groupId>org.mybatis</groupId> <artifactId>mybatis-ehcache</artifactId> <ver...
SpringMVC+shiro+ehcache整合
CQHaveADream的博客
02-01 1178
最近一直想总结下最近学习shiro权限管理的收获,惰性使然,没有去整理。春节放假前一天没什么工作,闲来总结下。 shiro是一个用来管理权限的框架。经过两个项目的整合,个人认为,整合shiro的重点在于配置文件的配置还有Realm自定义拦截器的编写。当然,想要良好的把shiro用于开发环境,前提需要有一套合适的表结构,最基础的权限模块应包含:用户表、角色表、权限表。再复杂一些的,...
spring+shiro+ehcache整合
weixin_33709364的博客
01-02 110
1.导入jar包(pom.xml文件) <!-- ehcache缓存框架 --> <dependency> <groupId>net.sf.ehcache</groupId> <artifactId>ehcache-core</artifactId> &lt...
基于springMVC+shiro+Mybaits+ehcache缓存+Easyui的权限系统框架
hf1034440658的博客
05-26 1967
本系统纯属是业余爱好,个人认为还是比较满足现在的web开发! QQ:13637050677 本系统中主要使用springMVC4.x+shiro+spring4.x+Mybaits+Ajax+ehcache缓存等技术。 主要前端框架是:easyui(后期版本会增加bootstrap版本,敬请期待,很快发布出来) 系统是MAVEN构建 主要结构分工具通用工程+服务端工程+we
Spring MVC+Mybatis+Ehcache+Apache Shiro+Bootstrap整合开发java仓库管理系统源码
06-22
积分最低,Spring MVC+Mybatis+Ehcache+Apache Shiro+Bootstrap整合开发java仓库管理系统源码 开发环境:Eclipse ,JDK 1.8 ,Tomcat7 技术选型 后端技术 SpringMVC MVC框架 Spring Framework 容器 Apache ...
Spring MVC+Mybatis+Ehcache+Apache Shiro+Bootstrap整合开发java仓库管理系统
最新发布
06-11
SpringMVC MVC框架 Spring Framework 容器 Apache Shiro 安全框架 Mybatis ORM框架 MyBatis Generator 代码生成 C3P0 数据库连接池 Ehcache 进程内缓存框架 Apache poi 文件导入导出 Maven 项目构建管理 ...
java SSM 框架 多数据源
jimaosuanpi1的博客
08-01 8415
A集成代码生成器 [正反双向(单表、主表、明细表、树形表,开发利器)+快速构建表单; freemaker模版技术 ,0个代码不用写,生成完整的一个模块,带页面、建表sql脚本,处理类,service等完整模块 B 集成阿里巴巴数据库连接池druid;   数据库连接池  阿里巴巴的 druid。Druid在监控、可扩展性、稳定性和性能方面都有明显的优势 C 集成安全权限框架shiro
spring springmvc mybatis shiro 以及 ehcache(配合shiro实现缓存验证 配合spring实现二级缓存)
12-14
spring springmvc mybatis shiro 以及 ehcache(配合shiro实现缓存验证 配合spring实现二级缓存) 测试 二级缓存 访问http://localhost:8080/vkblog/test/ehcacheuserlist.action 测试 访问限制 访问任意的action
springmvc Ehcache
05-30
测试springmvc ehcache demo 以及必要的jar包 。
spring mvc、mybatis、ehcache、apache shiro、bootstrap整合开发仓库管理系统源码
07-18
spring mvc、mybatis、ehcache、apache shiro、bootstrap整合开发仓库管理系统源码
spring+shiro+ehcache例子
06-23
项目地址:https://code.csdn.net/qq_29962235/shiroehcache.git 一: 项目简介:此项目只是简单的集成spring+springmvc+shiro+ehcahce 二: 步骤说明: 1:项目集成spring 在web.xml中配置spring容器的监听器。 2:项目集成springmvc 在web.xml中配置前端控制器 3:项目集成shiro 在web.xml中配置shiro过滤器 4:项目post乱码处理 在web.xml中配置字符过滤器 5:项目运行信息查看 在web.xml中配置log4j信息打印 (需要自己将log4j的配置文件给打开) 三: 配置文件 查看/src/config/ ,配置文件可观察文件名称理解 四: 登录名为2:可以进行权限的验证,以及shiro的缓存。 登录名为任意用户:可以验证mycache的缓存。 缓存的验证都是观察控制台的输出信息 此项目有shiro验证码的实现,更改用户userState状态可以实现用户锁定,密码次数过多未写(异常类型为ExcessiveAttemptsException),自己累计次数吧。 五: 此例子是给一哥们理解的,一些注释和代码未做删减。
sprintmvc+shiro中的ehcache配置
dianpinxiao7850的博客
01-30 96
<!-- 缓存管理器开始 --> <bean id="cacheManager" class="org.apache.shiro.cache.ehcache.EhCacheManager"> <property name="cacheManager" ref="ehCacheManager"/> ...
Shiro安全框架的使用步骤
Xiao_CaCg的博客
10-11 489
shiro安全框架: +ehcache缓存 1、引入依赖pom.xml                               org.apache.shiro             shiro-all             1.2.3          2、核心filter,一个filter相当于10个filter;web.xml     注意:shi
spring+springmvc+mybatis+shiro+ehcache集成demo
allen的博客
12-12 3430
实际使用shiro的时候大部分都是和spring等框架结合使用,主要就是配置web.xml将shiro的filter和spring容器bean的filter关联起来,生命周期由servlet容器来控制,然后配置shirospring的xml文件,其中主要配置shiro过滤器securityManager、认证成功失败的跳转页面、过滤链、凭证匹配器(hash 还是 sha1等)、自定义的realm、
Shiro】5、Shiro整合Ehcache实现热点数据缓存
热门推荐
Asurplus
05-22 20万+
SpringBoot 中整合 Ehcache 非常简单,只需要在启动类加上注解 @EnableCaching,那么就会自动加载默认的 EhcacheManager,从而达到快速使用,那么我们需要在 Shiro 中有自己的 EhcacheManager 对象,我们就需要自己加载属于我们 ShiroEhcacheManager 1、引入 maven 依赖 <!-- ehcache整合 --> <dependency> <groupId>org.apach
Spring MVCShiro整合详解
"Spring MVC与Apache Shiro整合的相关学习资料" Spring MVC和Apache Shiro整合是Web应用中实现用户认证和授权的一种常见方法。Apache Shiro是一个强大且易用的Java安全框架,提供了身份验证(Authentication)、...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值