springboot——security基于内存的多用户支持

最新推荐文章于 2024-05-13 22:14:29 发布

换了马甲的小强

最新推荐文章于 2024-05-13 22:14:29 发布

阅读量370

点赞数

分类专栏： springboot

本文链接：https://blog.csdn.net/cockroach02/article/details/102422145

版权

springboot 专栏收录该内容

16 篇文章 0 订阅

订阅专栏

一、pom.xml配置

<dependencies>
	<dependency>
		<groupId>org.springframework.boot</groupId>
		<artifactId>spring-boot-starter-web</artifactId>
	</dependency>
	<dependency>
		<groupId>org.springframework.boot</groupId>
		<artifactId>spring-boot-starter-actuator</artifactId>
	</dependency>
	<dependency>
		<groupId>org.springframework.boot</groupId>
		<artifactId>spring-boot-starter-security</artifactId>
	</dependency>

	<dependency>
		<groupId>org.springframework.boot</groupId>
		<artifactId>spring-boot-configuration-processor</artifactId>
		<optional>true</optional>
	</dependency>
	<dependency>
		<groupId>org.projectlombok</groupId>
		<artifactId>lombok</artifactId>
		<optional>true</optional>
	</dependency>
	<dependency>
		<groupId>org.springframework.boot</groupId>
		<artifactId>spring-boot-starter-test</artifactId>
		<scope>test</scope>
	</dependency>
	<dependency>
		<groupId>org.springframework.security</groupId>
		<artifactId>spring-security-test</artifactId>
		<scope>test</scope>
	</dependency>
</dependencies>

二、测试接口

@RestController
public class AdminController {
    @RequestMapping("/admin/api/hello")
    public String hello() {
        return "hello, admin!";
    }
}
@RestController
public class AppController {
    @RequestMapping("/app/api/hello")
    public String hello() {
        return "hello, app!";
    }
}
@RestController
public class UserController {
    @RequestMapping("/user/api/hello")
    public String hello() {
        return "hello, user!";
    }
}

三、security代码

@EnableWebSecurity
public class WebSecurityConfig extends WebSecurityConfigurerAdapter {
    @Override
    protected void configure(HttpSecurity http) throws Exception {
        http.authorizeRequests()
                .antMatchers("/admin/api/**").hasRole("ADMIN")
                .antMatchers("/user/api/**").hasRole("USER")
                .antMatchers("/app/api/**").permitAll()
                .anyRequest().authenticated()
                .and()
                .formLogin()
                .and()
                .csrf().disable();
    }

    @Override
    protected void configure(AuthenticationManagerBuilder auth) throws Exception {
        auth
                .inMemoryAuthentication()
                .passwordEncoder(new InMemoryPasswordEncoder())
                .withUser("root").password("root").roles("ADMIN")
                .and()
                .withUser("chopper").password("123456").roles("USER");
    }

    /**
     * 默认的密码加密器
     */
    private static class InMemoryPasswordEncoder implements PasswordEncoder {
        @Override
        public String encode(CharSequence rawPassword) {
            return rawPassword.toString();
        }

        @Override
        public boolean matches(CharSequence rawPassword, String encodedPassword) {
            return rawPassword.equals(encodedPassword);
        }
    }
}

注意：
security5必须设置PasswordEncoder接口，否则会报下面错误：
java.lang.IllegalArgumentException: There is no PasswordEncoder mapped for the id "null

四、参考链接

换了马甲的小强

关注

0
点赞
踩
0

收藏

觉得还不错? 一键收藏
0
评论
springboot——security基于内存的多用户支持

一、pom.xml配置<dependencies> <dependency> <groupId>org.springframework.boot</groupId> <artifactId>spring-boot-starter-web</artifactId> </dependency> <...
复制链接

扫一扫

专栏目录