SpringBoot+Mybatis-Plus+Shiro整合的RBAC权限系统

最新推荐文章于 2023-03-05 14:54:26 发布
最新推荐文章于 2023-03-05 14:54:26 发布
阅读量911 收藏 2
点赞数 2
文章标签: shiro spring boot mybatis
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/gaolengroujiamo/article/details/107469225
版权

Maven仓库:

dependencies>
        <dependency>
            <groupId>org.springframework.boot</groupId>
            <artifactId>spring-boot-starter</artifactId>
        </dependency>
        <dependency>
            <groupId>org.springframework.boot</groupId>
            <artifactId>spring-boot-starter-web</artifactId>
        </dependency>
        <!-- https://mvnrepository.com/artifact/mysql/mysql-connector-java -->
        <!-- mysql -->
        <dependency>
            <groupId>mysql</groupId>
            <artifactId>mysql-connector-java</artifactId>
            <version>8.0.15</version>
        </dependency>
        <dependency>
            <groupId>com.baomidou</groupId>
            <artifactId>mybatis-plus-boot-starter</artifactId>
            <version>3.2.0</version>
        </dependency>
        <!-- 代码生成器 -->
        <dependency>
            <groupId>com.baomidou</groupId>
            <artifactId>mybatis-plus-generator</artifactId>
            <version>3.3.2</version>
        </dependency>
        <!-- 引擎模板-->
        <dependency>
            <groupId>org.apache.velocity</groupId>
            <artifactId>velocity-engine-core</artifactId>
            <version>2.2</version>
        </dependency>
        <!-- get set-->
        <dependency>
            <groupId>org.projectlombok</groupId>
            <artifactId>lombok</artifactId>
            <version>1.18.10</version>
            <scope>provided</scope>
        </dependency>
        <dependency>
            <groupId>org.apache.shiro</groupId>
            <artifactId>shiro-spring</artifactId>
            <version>1.3.2</version>
        </dependency>
        <dependency>
            <groupId>org.springframework.boot</groupId>
            <artifactId>spring-boot-starter-test</artifactId>
            <scope>test</scope>
            <exclusions>
                <exclusion>
                    <groupId>org.junit.vintage</groupId>
                    <artifactId>junit-vintage-engine</artifactId>
                </exclusion>
            </exclusions>
        </dependency>
    </dependencies>

    <build>
        <plugins>
            <plugin>
                <groupId>org.springframework.boot</groupId>
                <artifactId>spring-boot-maven-plugin</artifactId>
            </plugin>
        </plugins>
    </build>

五个模型类,User(用户),Role(角色),UserRole(中间表),Permission(权限表),RolePermission(用户权限中间表)

package com.example.rbac.entity;

import com.baomidou.mybatisplus.annotation.IdType;
import com.baomidou.mybatisplus.annotation.TableId;
import java.time.LocalDateTime;
import com.baomidou.mybatisplus.annotation.TableField;
import java.io.Serializable;
import lombok.Data;
import lombok.EqualsAndHashCode;

/**
 * <p>
 * �û���
 * </p>
 *
 * @author mgk
 * @since 2020-07-16
 */
@Data
@EqualsAndHashCode(callSuper = false)
public class User implements Serializable {

    private static final long serialVersionUID=1L;

    @TableId(value = "u_id", type = IdType.AUTO)
    private Integer uId;

    private String name;

    @TableField("passWord")
    private String passWord;

    private Integer status;

    @TableField("create_Time")
    private LocalDateTime createTime;

    @TableField("update_Time")
    private LocalDateTime updateTime;


}

package com.example.rbac.entity;

import com.baomidou.mybatisplus.annotation.IdType;
import com.baomidou.mybatisplus.annotation.TableId;
import java.time.LocalDateTime;
import java.io.Serializable;
import lombok.Data;
import lombok.EqualsAndHashCode;

/**
 * <p>
 * ��ɫ��
 * </p>
 *
 * @author mgk
 * @since 2020-07-16
 */
@Data
@EqualsAndHashCode(callSuper = false)
public class Role implements Serializable {

    private static final long serialVersionUID=1L;

    @TableId(value = "role_id", type = IdType.AUTO)
    private Integer roleId;

    private String name;

    private Integer status;

    private LocalDateTime createTime;

    private LocalDateTime updateTime;


}

package com.example.rbac.entity;

import com.baomidou.mybatisplus.annotation.IdType;
import com.baomidou.mybatisplus.annotation.TableId;
import java.io.Serializable;
import lombok.Data;
import lombok.EqualsAndHashCode;

/**
 * <p>
 * 
 * </p>
 *
 * @author mgk
 * @since 2020-07-16
 */
@Data
@EqualsAndHashCode(callSuper = false)
public class UserRole implements Serializable {

    private static final long serialVersionUID=1L;

    @TableId(value = "u_r_id", type = IdType.AUTO)
    private Integer uRId;

    private Integer uId;

    private Integer roleId;


}

package com.example.rbac.entity;

import com.baomidou.mybatisplus.annotation.IdType;
import com.baomidou.mybatisplus.annotation.TableId;
import java.time.LocalDateTime;
import java.io.Serializable;
import lombok.Data;
import lombok.EqualsAndHashCode;

/**
 * <p>
 * Ȩ�ޱ�
 * </p>
 *
 * @author mgk
 * @since 2020-07-16
 */
@Data
@EqualsAndHashCode(callSuper = false)
public class Permission implements Serializable {

    private static final long serialVersionUID=1L;

    @TableId(value = "permission_id", type = IdType.AUTO)
    private Integer permissionId;

    private String title;

    private String action;

    private Integer status;

    private LocalDateTime createTime;

    private LocalDateTime updateTime;


}

package com.example.rbac.entity;

import com.baomidou.mybatisplus.annotation.IdType;
import com.baomidou.mybatisplus.annotation.TableId;
import java.time.LocalDateTime;
import java.io.Serializable;
import lombok.Data;
import lombok.EqualsAndHashCode;

/**
 * <p>
 * 
 * </p>
 *
 * @author mgk
 * @since 2020-07-16
 */
@Data
@EqualsAndHashCode(callSuper = false)
public class RolePermission implements Serializable {

    private static final long serialVersionUID=1L;

    @TableId(value = "r_p_id", type = IdType.AUTO)
    private Integer rPId;

    private Integer roleId;

    private Integer permissionId;

    private LocalDateTime createTime;


}

工具包:Result(返回类),ResuleCode(枚举类),自动生成代码类(CodeGenerator)

package com.example.util;

import com.baomidou.mybatisplus.core.exceptions.MybatisPlusException;
import com.baomidou.mybatisplus.core.toolkit.StringPool;
import com.baomidou.mybatisplus.core.toolkit.StringUtils;
import com.baomidou.mybatisplus.generator.AutoGenerator;
import com.baomidou.mybatisplus.generator.InjectionConfig;
import com.baomidou.mybatisplus.generator.config.*;
import com.baomidou.mybatisplus.generator.config.po.TableInfo;
import com.baomidou.mybatisplus.generator.config.rules.NamingStrategy;
import com.baomidou.mybatisplus.generator.engine.FreemarkerTemplateEngine;

import java.util.ArrayList;
import java.util.List;
import java.util.Scanner;

// 演示例子,执行 main 方法控制台输入模块表名回车自动生成对应项目目录中
public class CodeGenerator {

    /**
     * <p>
     * 读取控制台内容
     * </p>
     */
    public static String scanner(String tip) {
        Scanner scanner = new Scanner(System.in);
        StringBuilder help = new StringBuilder();
        help.append("请输入" + tip + ":");
        System.out.println(help.toString());
        if (scanner.hasNext()) {
            String ipt = scanner.next();
            if (StringUtils.isNotEmpty(ipt)) {
                return ipt;
            }
        }
        throw new MybatisPlusException("请输入正确的" + tip + "!");
    }

    public static void main(String[] args) {
        // 代码生成器
        AutoGenerator mpg = new AutoGenerator();

        // 全局配置
        GlobalConfig gc = new GlobalConfig();
        String projectPath = System.getProperty("user.dir");
        gc.setOutputDir(projectPath + "/src/main/java");
        gc.setAuthor("mgk");
        gc.setOpen(false);
        // gc.setSwagger2(true); 实体属性 Swagger2 注解
        mpg.setGlobalConfig(gc);

        // 数据源配置
        DataSourceConfig dsc = new DataSourceConfig();
        dsc.setUrl("jdbc:mysql://127.0.0.1:3306/mgk?useUnicode=true&characterEncoding=UTF-8&serverTimezone=UTC");
        // dsc.setSchemaName("public");
        dsc.setDriverName("com.mysql.cj.jdbc.Driver");
        dsc.setUsername("root");
        dsc.setPassword("123456");

        mpg.setDataSource(dsc);

        // 包配置
        PackageConfig pc = new PackageConfig();
        pc.setModuleName(scanner("模块名"));
        pc.setParent("com.example");
        mpg.setPackageInfo(pc);

        // 自定义配置
        InjectionConfig cfg = new InjectionConfig() {
            @Override
            public void initMap() {
                // to do nothing
            }
        };
        // 配置模板
        TemplateConfig templateConfig = new TemplateConfig();

        // 配置自定义输出模板
        //指定自定义模板路径,注意不要带上.ftl/.vm, 会根据使用的模板引擎自动识别
        // templateConfig.setEntity("templates/entity2.java");
        // templateConfig.setService();
        // templateConfig.setController();

        templateConfig.setXml(null);
        mpg.setTemplate(templateConfig);

        // 策略配置
        StrategyConfig strategy = new StrategyConfig();
        strategy.setNaming(NamingStrategy.underline_to_camel);
        strategy.setColumnNaming(NamingStrategy.underline_to_camel);
        //strategy.setSuperEntityClass("你自己的父类实体,没有就不用设置!");
        strategy.setEntityLombokModel(true);
        strategy.setRestControllerStyle(true);
        // 公共父类
        //strategy.setSuperControllerClass("你自己的父类控制器,没有就不用设置!");
        // 写于父类中的公共字段
        //strategy.setSuperEntityColumns("id");
        strategy.setInclude(scanner("表名,多个英文逗号分割").split(","));
        strategy.setControllerMappingHyphenStyle(true);
        strategy.setTablePrefix(pc.getModuleName() + "_");
        mpg.setStrategy(strategy);
        //mpg.setTemplateEngine(new FreemarkerTemplateEngine());
        mpg.execute();
    }

}
package com.example.util;

import java.util.HashMap;
import java.util.Map;

public class Result {
    private ResultCode code;//响应码
    private int status;
    private String message;//响应信息
    private Object body;//相应对象

    private Result() {
        this.code = ResultCode.SUCCESS;
        this.status=this.code.getCode();
        this.message=this.code.getMessage();
        this.body = null;
    }
    private Result(Object body,ResultCode code) {
        this.code = code;
        this.status=this.code.getCode();
        this.message=this.code.getMessage();
        this.body = body;
    }
    public static Result createFail(){
        Result result = new Result();
        result.status=ResultCode.FAIL.getCode();
        result.message=ResultCode.FAIL.getMessage();
        return result;
    }
    public static Result createResult(Object body,ResultCode code){
        return new Result(body, code);
    }

    public static Result createSuccessful(){
        return new Result();
    }
    public Map<String,Object> toJsonMap(){
        Map<String,Object> map = new HashMap<>();
        map.put("data",this.body);
        map.put("message",this.message);
        map.put("status",this.status);
        return  map;
    }
}

package com.example.util;

public enum  ResultCode {
    SUCCESS(1001,"成功"),
    FAIL(1002,"失败"),
    WRONGPASSWORD(1101,"密码错误"),
    USERNOTEXIST(1102,"用户不存在"),
    USEREXIST(1103,"用户已存在"),
    USERNAMEERROR(1104,"用户名称错误"),
    USERNOTLOGIN(1105,"用户未登陆"),
    ROLEEXIST(1201,"权限已存在"),
    ROLEEXISTINSUFFICIENT (1202,"无访问操作权限");



    ResultCode(int code,String message) {
        this.message = message;
        this.code = code;
    }
    private int code;
    private String message;
    public String getMessage() {
        return message;
    }

    public void setMessage(String message) {
        this.message = message;
    }

    public int getCode() {
        return code;
    }

    public void setCode(int code) {
        this.code = code;
    }
}

Service层两个类

package com.example.rbac.service;

import com.example.rbac.entity.Role;
import com.example.rbac.entity.User;
import com.baomidou.mybatisplus.extension.service.IService;

import java.util.Set;

/**
 * <p>
 * �û��� 服务类
 * </p>
 *
 * @author mgk
 * @since 2020-07-16
 */
public interface IUserService extends IService<User> {
    Set<Role> getUserRoles(Integer userId);
}

package com.example.rbac.service.impl;

import com.example.rbac.entity.Role;
import com.example.rbac.entity.User;
import com.example.rbac.mapper.UserMapper;
import com.example.rbac.service.IUserService;
import com.baomidou.mybatisplus.extension.service.impl.ServiceImpl;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Service;

import java.util.Set;

/**
 * <p>
 * �û��� 服务实现类
 * </p>
 *
 * @author mgk
 * @since 2020-07-16
 */
@Service
public class UserServiceImpl extends ServiceImpl<UserMapper, User> implements IUserService {
    @Autowired(required = true)
    private UserMapper userMapper;
    @Override
    public Set<Role> getUserRoles(Integer userId) {
            return userMapper.getUserRoles(userId);
    }
}

package com.example.rbac.service.impl;

import com.example.rbac.entity.Role;
import com.example.rbac.mapper.RoleMapper;
import com.example.rbac.mapper.UserMapper;
import com.example.rbac.service.IRoleService;
import com.baomidou.mybatisplus.extension.service.impl.ServiceImpl;
import org.springframework.stereotype.Service;

import java.util.Set;

/**
 * <p>
 * ��ɫ�� 服务实现类
 * </p>
 *
 * @author mgk
 * @since 2020-07-16
 */
@Service
public class RoleServiceImpl extends ServiceImpl<RoleMapper, Role> implements IRoleService {

}

package com.example.rbac.service;

import com.example.rbac.entity.Role;
import com.baomidou.mybatisplus.extension.service.IService;

/**
 * <p>
 * ��ɫ�� 服务类
 * </p>
 *
 * @author mgk
 * @since 2020-07-16
 */
public interface IRoleService extends IService<Role> {

}

Mapper层

package com.example.rbac.mapper;

import com.example.rbac.entity.Role;
import com.example.rbac.entity.User;
import com.baomidou.mybatisplus.core.mapper.BaseMapper;
import org.apache.ibatis.annotations.Mapper;
import org.apache.ibatis.annotations.Select;
import org.springframework.stereotype.Service;

import java.util.Set;

/**
 * <p>
 * �û��� Mapper 接口
 * </p>
 *
 * @author mgk
 * @since 2020-07-16
 */
public interface UserMapper extends BaseMapper<User> {
    @Select("select * from  role where role_id in(select role_id from user_role where u_id = #{userId})")
    Set<Role> getUserRoles(Integer userId);
}

package com.example.rbac.mapper;

import com.example.rbac.entity.Role;
import com.baomidou.mybatisplus.core.mapper.BaseMapper;

/**
 * <p>
 * ��ɫ�� Mapper 接口
 * </p>
 *
 * @author mgk
 * @since 2020-07-16
 */
public interface RoleMapper extends BaseMapper<Role> {

}

Controller层

package com.example.rbac.controller;


import com.baomidou.mybatisplus.core.conditions.Wrapper;
import com.baomidou.mybatisplus.core.conditions.query.QueryWrapper;
import com.example.config.CustomRealm;
import com.example.rbac.entity.User;
import com.example.rbac.service.IUserService;
import com.example.rbac.service.impl.UserServiceImpl;
import com.example.util.Result;
import com.example.util.ResultCode;
import org.apache.commons.lang3.StringUtils;
import org.apache.shiro.SecurityUtils;
import org.apache.shiro.authc.AuthenticationException;
import org.apache.shiro.authc.UsernamePasswordToken;
import org.apache.shiro.authz.AuthorizationException;
import org.apache.shiro.subject.Subject;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.web.bind.annotation.PostMapping;
import org.springframework.web.bind.annotation.RequestMapping;

import org.springframework.web.bind.annotation.RestController;

import java.util.Map;

/**
 * <p>
 * �û��� 前端控制器
 * </p>
 *
 * @author mgk
 * @since 2020-07-16
 */
@RestController
@RequestMapping("/rbac")
public class UserController {
    @Autowired(required = true)
    private IUserService userService;
    @Autowired
    private CustomRealm myShiroRealm;
    @PostMapping("/login")
    public Map<String, Object> login(User user){
        Subject subject = SecurityUtils.getSubject();
        UsernamePasswordToken usernamePasswordToken = new UsernamePasswordToken(
                user.getName(),
                user.getPassWord()
        );
        try {
            //进行验证,这里可以捕获异常,然后返回对应信息
            subject.login(usernamePasswordToken);
        } catch (AuthenticationException e) {
            e.printStackTrace();
            Result fail = Result.createResult(null, ResultCode.WRONGPASSWORD);
            return fail.toJsonMap();
        } catch (AuthorizationException e) {
            e.printStackTrace();

        }
        return Result.createResult(null, ResultCode.SUCCESS).toJsonMap();
    }


    /**
     * 注册用户
     * @return
     */
    @PostMapping("/user")
    public Map<String, Object> registerUser(User user){
        QueryWrapper<User> wrapper = new QueryWrapper();
        wrapper.eq("name",user.getName());
        User one = userService.getOne(wrapper);
        if(!(one==null)){
            Result fail = Result.createResult(null, ResultCode.USEREXIST);
            return fail.toJsonMap();
        }
        if(StringUtils.isEmpty(user.getName())){
            Result fail = Result.createResult(null, ResultCode.USERNAMEERROR);
            return fail.toJsonMap();
        }
        userService.save(user);
    return Result.createSuccessful().toJsonMap();
    }
}


package com.example.rbac.controller;


import com.baomidou.mybatisplus.core.conditions.query.QueryWrapper;
import com.example.rbac.entity.Role;
import com.example.rbac.entity.User;
import com.example.rbac.service.IRoleService;
import com.example.util.Result;
import com.example.util.ResultCode;
import org.apache.commons.lang3.StringUtils;
import org.apache.shiro.SecurityUtils;
import org.apache.shiro.subject.Subject;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.web.bind.annotation.PostMapping;
import org.springframework.web.bind.annotation.RequestMapping;

import org.springframework.web.bind.annotation.RestController;

import java.util.Map;

/**
 * <p>
 * ��ɫ�� 前端控制器
 * </p>
 *
 * @author mgk
 * @since 2020-07-16
 */
@RestController
@RequestMapping("/rbac")
public class RoleController {
    @Autowired(required = true)
    private IRoleService roleService;
    /**
     * 添加角色
     * @param role
     * @return
     */
    @PostMapping("/role")
    public Map<String,Object> addRole(Role  role){
        Subject subject = SecurityUtils.getSubject();
        if(subject.hasRole("viewManager")){
            System.out.println("有viewManager权限");
        }else {
            System.out.println("无viewManager权限");
        }
        QueryWrapper<Role> wrapper = new QueryWrapper();
        wrapper.eq("name",role.getName());
        Role one = roleService.getOne(wrapper);
        if(one!=null){
            Result fail = Result.createResult(null, ResultCode.ROLEEXIST);
            return fail.toJsonMap();
        }
        if(StringUtils.isEmpty(role.getName())){
            Result fail = Result.createResult(null, ResultCode.FAIL);
            return fail.toJsonMap();
        }
        roleService.save(role);
        Result fail = Result.createResult(null, ResultCode.SUCCESS);
        return fail.toJsonMap();
    }
}

主程序入口:

package com.example;

import org.mybatis.spring.annotation.MapperScan;
import org.springframework.boot.SpringApplication;
import org.springframework.boot.autoconfigure.SpringBootApplication;

@SpringBootApplication
@MapperScan("com.example.rbac.mapper")
public class RbacApplication {

    public static void main(String[] args) {
        SpringApplication.run(RbacApplication.class, args);
    }

}

sql数据:

INSERT INTO `user`(`u_id`, `name`, `passWord`, `status`, `create_Time`, `update_Time`) VALUES (2, 'mgk', '123456', 1, '2020-02-26 17:23:30', '2020-02-26 17:23:30');
INSERT INTO `user`(`u_id`, `name`, `passWord`, `status`, `create_Time`, `update_Time`) VALUES (7, 'admin', '123456', NULL, '2020-07-17 16:10:23', '2020-07-17 16:10:23');
INSERT INTO `user`(`u_id`, `name`, `passWord`, `status`, `create_Time`, `update_Time`) VALUES (8, '\"\"', '123456', NULL, '2020-07-17 16:33:19', '2020-07-17 16:33:19');
INSERT INTO `role`(`role_id`, `name`, `status`, `create_time`, `update_time`) VALUES (1, 'viewManager', NULL, '2020-07-20 10:42:36', '2020-07-20 10:42:36');
INSERT INTO `role`(`role_id`, `name`, `status`, `create_time`, `update_time`) VALUES (2, 'roleAddManager', NULL, '2020-07-20 10:43:05', '2020-07-20 10:43:05');
INSERT INTO `role`(`role_id`, `name`, `status`, `create_time`, `update_time`) VALUES (3, 'roleDelManager', NULL, '2020-07-20 10:43:13', '2020-07-20 10:43:13');
INSERT INTO `role`(`role_id`, `name`, `status`, `create_time`, `update_time`) VALUES (4, 'roleEditManager', NULL, '2020-07-20 10:43:20', '2020-07-20 10:43:20');
    INSERT INTO `user_role`(`u_r_id`, `u_id`, `role_id`) VALUES (1, 7, 1);
INSERT INTO `user_role`(`u_r_id`, `u_id`, `role_id`) VALUES (2, 7, 2);
INSERT INTO `user_role`(`u_r_id`, `u_id`, `role_id`) VALUES (3, 7, 3);
INSERT INTO `user_role`(`u_r_id`, `u_id`, `role_id`) VALUES (4, 7, 4);

SQL结构:

drop table if exists user;

/*==============================================================*/
/* Table: user                                                  */
/*==============================================================*/
create table user
(
   u_id                 int not null auto_increment,
   name                 varchar(32),
   passWord             varchar(32),
   status               tinyint,
   create_Time          timestamp default CURRENT_TIMESTAMP,
   update_Time          timestamp default CURRENT_TIMESTAMP,
   primary key (u_id)
);

alter table user comment '用户表';
drop table if exists role;

/*==============================================================*/
/* Table: role                                                  */
/*==============================================================*/
create table role
(
   role_id              int not null auto_increment,
   name                 varchar(32),
   status               tinyint,
   create_time          timestamp default CURRENT_TIMESTAMP,
   update_time          timestamp default CURRENT_TIMESTAMP,
   primary key (role_id)
);

alter table role comment '角色表';
drop table if exists user_role;

/*==============================================================*/
/* Table: user_role                                             */
/*==============================================================*/
create table user_role
(
   u_r_id               int not null auto_increment,
   u_id                 int,
   role_id              int,
   primary key (u_r_id)
);

alter table user_role add constraint FK_Reference_1 foreign key (u_id)
      references user (u_id) on delete restrict on update restrict;

alter table user_role add constraint FK_Reference_2 foreign key (role_id)
      references role (role_id) on delete restrict on update restrict;
drop table if exists permission;

/*==============================================================*/
/* Table: permission                                            */
/*==============================================================*/
create table permission
(
   permission_id        int not null auto_increment,
   title                varchar(50),
   action               varchar(50),
   status               tinyint,
   create_time          timestamp default CURRENT_TIMESTAMP,
   update_time          timestamp default CURRENT_TIMESTAMP,
   primary key (permission_id)
);

alter table permission comment '权限表';
drop table if exists role_permission;

/*==============================================================*/
/* Table: role_permission                                       */
/*==============================================================*/
create table role_permission
(
   r_p_id               int not null auto_increment,
   role_id              int,
   permission_id        int,
   create_time          timestamp,
   primary key (r_p_id)
);

alter table role_permission add constraint FK_Reference_3 foreign key (role_id)
      references role (role_id) on delete restrict on update restrict;

表关系:

Shiro类,ShiroConfig(配置类)CustomReaml(自定义权限验证)

package com.example.config;


import com.baomidou.mybatisplus.core.conditions.query.QueryWrapper;
import com.example.rbac.entity.Role;
import com.example.rbac.entity.User;
import com.example.rbac.entity.UserRole;
import com.example.rbac.service.IUserRoleService;
import com.example.rbac.service.IUserService;
import org.apache.shiro.authc.AuthenticationException;
import org.apache.shiro.authc.AuthenticationInfo;
import org.apache.shiro.authc.AuthenticationToken;
import org.apache.shiro.authc.SimpleAuthenticationInfo;
import org.apache.shiro.authz.AuthorizationInfo;
import org.apache.shiro.authz.SimpleAuthorizationInfo;
import org.apache.shiro.realm.AuthorizingRealm;
import org.apache.shiro.subject.PrincipalCollection;
import org.springframework.beans.factory.annotation.Autowired;

import java.security.Permissions;
import java.util.List;
import java.util.Map;
import java.util.Set;

public class CustomRealm extends AuthorizingRealm {

    @Autowired
    private IUserService userService;
    @Autowired
    private IUserRoleService userRoleService;
    @Override
    public AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principalCollection) {
        //获取登录用户名
        String name = (String) principalCollection.getPrimaryPrincipal();
        //根据用户名去数据库查询用户信息
        QueryWrapper<User> userQueryWrapper = new QueryWrapper<>();
        userQueryWrapper.eq("name",name);
        User user = userService.getOne(userQueryWrapper);
        Set<Role> userRoles = userService.getUserRoles(user.getUId());
        //添加角色和权限
        SimpleAuthorizationInfo simpleAuthorizationInfo = new SimpleAuthorizationInfo();
//        //角色关联表

        for (Role role : userRoles) {
            //添加角色
            simpleAuthorizationInfo.addRole(role.getName());
            //添加权限
//            for (Permissions permissions : role.getPermissions()) {
//                simpleAuthorizationInfo.addStringPermission(permissions.getPermissionsName());
//            }
        }
        return simpleAuthorizationInfo;
    }

    @Override
    protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken authenticationToken) throws AuthenticationException {
        //加这一步的目的是在Post请求的时候会先进认证,然后在到请求
        if (authenticationToken.getPrincipal() == null) {
            return null;
        }
        //获取用户信息
        String name = authenticationToken.getPrincipal().toString();
        QueryWrapper<User> userQueryWrapper = new QueryWrapper<>();
        userQueryWrapper.eq("name",name);
        User user = userService.getOne(userQueryWrapper);
        if (user == null) {
            //这里返回后会报出对应异常
            return null;
        } else {
            //这里验证authenticationToken和simpleAuthenticationInfo的信息
            SimpleAuthenticationInfo simpleAuthenticationInfo = new SimpleAuthenticationInfo(name, user.getPassWord().toString(), getName());
            return simpleAuthenticationInfo;
        }
    }
}

package com.example.config;

import org.apache.shiro.mgt.SecurityManager;
import org.apache.shiro.spring.security.interceptor.AuthorizationAttributeSourceAdvisor;
import org.apache.shiro.spring.web.ShiroFilterFactoryBean;
import org.apache.shiro.web.mgt.DefaultWebSecurityManager;
import org.springframework.aop.framework.autoproxy.DefaultAdvisorAutoProxyCreator;
import org.springframework.boot.autoconfigure.condition.ConditionalOnMissingBean;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;

import java.util.HashMap;
import java.util.Map;

@Configuration
public class ShiroConfig {

    /**
     * 解决和Spring注解一起使用使,导致Shiro注解使用时不能被映射
     * @return
     */
//    @Bean
//    @ConditionalOnMissingBean
//    public DefaultAdvisorAutoProxyCreator defaultAdvisorAutoProxyCreator() {
//        DefaultAdvisorAutoProxyCreator defaultAAP = new DefaultAdvisorAutoProxyCreator();
//        defaultAAP.setProxyTargetClass(true);
//        return defaultAAP;
//    }

    //将自己的验证方式加入容器
    @Bean
    public CustomRealm myShiroRealm() {
        CustomRealm customRealm = new CustomRealm();
        return customRealm;
    }

    //权限管理,配置主要是Realm的管理认证
    @Bean
    public SecurityManager securityManager() {
        DefaultWebSecurityManager securityManager = new DefaultWebSecurityManager();
        securityManager.setRealm(myShiroRealm());
        return securityManager;
    }

    //Filter工厂,设置对应的过滤条件和跳转条件
    @Bean
    public ShiroFilterFactoryBean shiroFilterFactoryBean(SecurityManager securityManager) {
        ShiroFilterFactoryBean shiroFilterFactoryBean = new ShiroFilterFactoryBean();
        shiroFilterFactoryBean.setSecurityManager(securityManager);
        Map<String, String> map = new HashMap<>();
        //登出
        map.put("/logout", "logout");
        //对所有用户认证
        map.put("/**", "authc");
        //登录
        shiroFilterFactoryBean.setLoginUrl("/rbac/login");
        //首页
        shiroFilterFactoryBean.setSuccessUrl("/index");
        //错误页面,认证不通过跳转
        shiroFilterFactoryBean.setUnauthorizedUrl("/error");
        shiroFilterFactoryBean.setFilterChainDefinitionMap(map);
        return shiroFilterFactoryBean;
    }

//    /**
//     * 支持注解方式需要加入该Bean
//     * @param securityManager
//     * @return
//     */
//    @Bean
//    public AuthorizationAttributeSourceAdvisor authorizationAttributeSourceAdvisor(SecurityManager securityManager) {
//        AuthorizationAttributeSourceAdvisor authorizationAttributeSourceAdvisor = new AuthorizationAttributeSourceAdvisor();
//        authorizationAttributeSourceAdvisor.setSecurityManager(securityManager);
//        return authorizationAttributeSourceAdvisor;
//    }
}

配置文件:

server.port=9999
spring.datasource.driver-class-name=com.mysql.cj.jdbc.Driver
spring.datasource.url=jdbc:mysql://127.0.0.1:3306/mgk?useSSL=false&useUnicode=true&characterEncoding=UTF-8&serverTimezone=GMT%2B8&useTimezone=true
spring.datasource.username=root
spring.datasource.password=123456

手码不易点个赞再走吧谢谢啦

maguangkun
关注
  • 2
    点赞
  • 2
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
SpringBoot+Mybatis-plus+shiro
xin_xin_jie的博客
04-08 356
首先创建springboot项目,引入相关依赖 一、引入依赖(pox.xml) <dependencies> <dependency> <groupId>com.alibaba</groupId> <artifactId>druid-spring-boot-starter</artifactId> <version>1.1.21&
longmarch:长征后台管理系统,采用前后端分离技术,后端SpringBoot+Mybatis-plus+Shiro框架,前端vue-element-admin框架,代码规范,学习简单,易于扩展,可作为基础框架使用
05-28
长征后台管理系统,采用前后端分离技术,后端SpringBoot+Mybatis-plus+Shiro框架,前端vue-element-admin框架,代码规范,学习简单,易于扩展,可作为基础框架使用。 项目演示 在线演示: 后端仓库: 前端仓库: ...
SpringBoot+Mybatis+Mybatis Plus+Shiro实现一个简单的项目架构
08-07
此项目是一个SpringBoot中集成了Mybatis+Mybatis Plus+Shiro实现登录和权限验证的示例,代码完整下载后可以直接运行
SpringBoot+MybatisPlus+Shiro整合
04-26
该项目是SpringBoot+MybatisPlus+Shiro整合,实现了身份认证和授权,授权可以动态从数据库加载权限拦截的URL,解决了在ShiroConfig中注入Service失败的问题。
SpringBoot整合Shiro实现基于角色的权限访问控制(RBAC)系统简单设计从零搭建
weixin_30505751的博客
03-28 351
SpringBoot整合Shiro实现基于角色的权限访问控制(RBAC)系统简单设计从零搭建 技术栈 : SpringBoot + shiro + jpa + freemark ,因为篇幅原因,这里只贴了部分代码说明,完整项目地址 : https://github.com/EalenXie/shiro-rbac-system 1 . 新建一个项目名为shiro-rbac-system,pom.xm...
springboot整合shirorbac权限控制
lixuanfeng blog
06-23 3438
github地址:https://github.com/lixuanfenghyperchain/spring-boot-shiro
erp:springboot+shiro+mybatis-plus前后端分离
05-14
系统设计-后台 1.引入mybatis-plus使用说明 需要引入...RBAC控制权限模式,即用户-角色-权限 控制到按钮级别,即在接口上面添加@RequiresPermissions(value="user:list") 而不是@Require
springboot+shiro+cas+redis+mybatis+thymeleaf 集成开发框架
01-30
由于项目需要从网上搜集的相关的集成框架,很多都是部分集成,一直没有找到整个流程全部集成好的,所以将集成好的框架分享出来供...主要实现SSO、后台RBAC角色认证管理。 下载后需要自行修改配置,项目包内带sql脚本
springboot-manager:基于SpringBoot + Thymeleaf + Layui + Apache Shiro + Redis + Mybatis Plus 的后台管理系统 提供代码生成器,基本增删改查无需编写,可快速完成开发任务。 后台接口RESTful 风格,支持前后端分离,可与app公用一套接口。 开发最精简,可当脚手架,适合你来diy
05-08
springboot-manager介绍基于SpringBoot + Thymeleaf + Layui + Apache Shiro + Redis + Mybatis Plus 的后台管理系统支持菜单权限与数据权限数据库支持 MySQL、Oracle、sqlServer 等主流数据库提供代码生成器,基本...
采用SpringBoot2、MyBatis-PlusShiro框架,开发的一套权限系统,极低门槛,拿来即用
最新发布
08-11
总结,本权限系统巧妙地融合了SpringBoot2的快速开发能力、MyBatis-Plus的数据库操作便利性和Shiro的安全管理机制,实现了低门槛、高效率的权限管理解决方案。对于希望快速搭建安全的企业系统的企业和个人来说,这是...
springboot-shiromybatis-plus+shiro-redis+druid+thymeleaf+jasypt)
12-08
springboot整合shiro使用mybatis-plus作为持久层,管理页面为thymeleaf模版。jasypt加密配置文件信息。使用druid数据源以及数据源监控。shiro-redis开源插件
Springboot+Mybatis-plus+ SpringMvc+Shiro+Redis企业级报表后台管理系统
12-15
项目描述 在上家公司自己集成的一套系统,用了两个多月的时间完成的:Springboot+Mybatis-plus+ SpringMvc+Shiro+Redis企业级开发系统 Springboot作为容器,使用mybatis作为持久层框架 使用官方推荐的thymeleaf做为模板引擎,shiro作为安全框架,主流技术 几乎零XML,极简配置 两套UI实现(bootstrap+layer ui),可以自由切换 报表后端采用技术: SpringBoot整合SSM(Spring+Mybatis-plus+ SpringMvc),spring security 全注解式的权限管理和JWT方式禁用Session,采用redis存储token及权限信息 报表前端采用Bootstrap框架,结合Jquery Ajax,整合前端Layer.js(提供弹窗)+Bootstrap-table(数据列表展示)+ Bootstrap-Export(各种报表导出SQL,Excel,pdf等)框架,整合Echars,各类图表的展示(折线图,饼图,直方图等),使用了layui的弹出层、菜单、文件上传、富文本编辑、日历、选项卡、数据表格等 Oracle关系型数据库以及非关系型数据库(Redis),Oracle 性能调优(PL/SQL语言,SQL查询优化,存储过程等),用Redis做中间缓存,缓存数据 实现异步处理,定时任务,整合Quartz Job以及Spring Task 邮件管理功能, 整合spring-boot-starter-mail发送邮件等, 数据源:druid 用户管理,菜单管理,角色管理,代码生成 运行环境 jdk8+oracle+redis+IntelliJ IDEA+maven 项目技术(必填) Springboot+Mybatis-plus+ SpringMvc+Shiro+Redis 数据库文件 压缩包内 jar包文件 maven搭建 Springboot+Mybatis-plus+ SpringMvc+Shiro+Redis企业级报表后台管理系统 http://localhost:/8080/login admin admin Springboot+Mybatis-plus+ SpringMvc+Shiro+Redis企业级报表后台管理系统Springboot+Mybatis-plus+ SpringMvc+Shiro+Redis企业级报表后台管理系统Springboot+Mybatis-plus+ SpringMvc+Shiro+Redis企业级报表后台管理系统Springboot+Mybatis-plus+ SpringMvc+Shiro+Redis企业级报表后台管理系统Springboot+Mybatis-plus+ SpringMvc+Shiro+Redis企业级报表后台管理系统
Springboot+Shiro+Redis实现RBAC用户权限管理
07-22
Springboot+Shiro+Redis实现RBAC用户权限管理,其中采用org.creazycake的插件将Redis整合Shiro中管理
springboot + shiro + mybatis-plus + beetl后台管理系统
01-30
springboot + shiro + mybatis-plus + beetl后台管理系统
SpringBoot+mybatis-plus
03-26
根据Spring-boot整合mybatis-plus的简单示例,其中包括简单的增删改查操作,因为演示功能,数据大部分在controller中写死,也可使用工具调用测试,可参考最后一个方法。压缩包中有说明以及sql文件,可进行参考查看。
SpringBoot + MyBatis-Plus + Shiro授权认证
Wxin0721的博客
04-16 1624
一、引入依赖 <!-- Spring Boot SpringMVC 框架 --> <dependency> <groupId>org.springframework.boot</groupId> <artifactId>spring-boot-starter-web</artifactId> </dependency> <!--lombok--> <dependency>
SpringBoot整合Shiro+mybatis-plus
TD317640729的博客
04-09 648
https://blog.csdn.net/qwqw3333333/article/details/82956447
springBoot项目搭建包含RBAC模块 -- 整合mybatis-Plus(二)
weixin_43470322的博客
06-21 389
1. 上一章已经介绍了项目基础框架的搭建,这一章我们介绍项目用到mybatis-Plus如何和springboot整合
springboot整合shiro完成RBAC功能
m0_73414822的博客
03-05 338
springboot整合shiro实现加密,权限管理.......
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值