SpringBoot系列教程(五)整合Shiro进行权限控制

最新推荐文章于 2024-04-12 13:23:07 发布
最新推荐文章于 2024-04-12 13:23:07 发布
阅读量173 收藏
点赞数
分类专栏: SpringBoot 文章标签: shiro spring boot
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/m0_37774134/article/details/107748696
版权

本文采用shiro-spring-boot-starter方式将Shiro集成到SpringBoot开发环境中,对于Shiro不做过多的功能介绍。

1.引入相关依赖

<!-- Shiro -->
<dependency>
    <groupId>org.apache.shiro</groupId>
    <artifactId>shiro-spring-boot-starter</artifactId>
    <version>1.5.2</version>
</dependency>

<!-- 使用Shiro相关注解时必须映入,否则可能出现拦截失效-->
<dependency>
    <groupId>org.springframework.boot</groupId>
    <artifactId>spring-boot-starter-aop</artifactId>
</dependency>

2、数据表

  • tb_menu:菜单表
  • tb_role:角色表
  • tb_role_menu:角色菜单表
  • tb_user_role:用户角色表

数据表结构

tb_menu

tb_role

tb_role_menutb_user_role

3.定义MenuMapper

package com.lemonzuo.mapper;

import com.lemonzuo.model.Menu;
import org.springframework.stereotype.Repository;

import java.util.List;

/**
 * @author LemonZuo
 * @create 2020-04-19 16:40
 */
@Repository
public interface MenuMapper {
    /**
     * 根据RoleId获取菜单信息
     * @param roleId
     * @return
     */
    List<Menu> getMenuByRoleId(String roleId);

    /**
     * 查询子菜单
     * @param menuId
     * @return
     */
    List<Menu> findChildMenu(String menuId);

    void addMenu(Menu menu);

    List<Menu> getMenuList();

    void deleteMenu(String menuId);

    Menu getMenuByMenuId(String menuId);

    void updateMenu(Menu menu);
}

<!DOCTYPE mapper
        PUBLIC "-//mybatis.org//DTD Mapper 3.0//EN"
        "http://mybatis.org/dtd/mybatis-3-mapper.dtd">
<mapper namespace="com.lemonzuo.mapper.MenuMapper">
    <resultMap id="baseMap" type="com.lemonzuo.model.Menu">
        <id property="id" column="id"></id>
        <result property="menuId" column="menu_id"></result>
        <result property="menuName" column="menu_name"></result>
        <result property="menuUrl" column="menu_url"></result>
        <result property="menuPermission" column="menu_permission"></result>
        <result property="parentMenuId" column="parent_menu_id"></result>
        <collection property="childMenu" column="{menuId=menu_id}" select="findChildMenu"></collection>
    </resultMap>
    <insert id="addMenu" useGeneratedKeys="true" keyColumn="id" keyProperty="id">
        INSERT INTO tb_menu(menu_id, menu_level, menu_name, menu_url, menu_permission, parent_menu_id, menu_hide)
        VALUES (#{menuId}, #{menuLevel}, #{menuName}, #{menuUrl}, #{menuPermission}, #{parentMenuId}, #{menuHide})
    </insert>
    <update id="updateMenu">
        UPDATE tb_menu
        SET
            menu_name = #{menuName},
            menu_url = #{menuUrl},
            menu_permission = #{menuPermission},
            menu_hide = #{menuHide}
        WHERE
            menu_id = #{menuId}
    </update>
    <delete id="deleteMenu">
        DELETE FROM tb_menu
        WHERE menu_id = #{menuId}
    </delete>
    <select id="getMenuByRoleId" resultMap="baseMap">
	SELECT
		id,
		menu.menu_id,
		menu_level,
		menu_hide,
		menu_name,
		menu_url,
		menu_permission,
		parent_menu_id
	FROM
		(SELECT menu_id FROM tb_role_menu WHERE role_id = #{roleId}) rm
		INNER JOIN tb_menu menu ON rm.menu_id = menu.menu_id
    </select>

    <select id="findChildMenu" resultType="com.lemonzuo.model.Menu">
        SELECT
             id,
             menu_id,
             menu_level,
             menu_hide,
             menu_name,
             menu_url,
             menu_permission,
             parent_menu_id
        FROM
            tb_menu
        WHERE
            parent_menu_id = #{menuId}
    </select>
    <select id="getMenuList" resultMap="baseMap">
        SELECT
             id,
             menu_id,
             menu_level,
             menu_hide,
             menu_name,
             menu_url,
             menu_permission,
             parent_menu_id
        FROM
            tb_menu
        WHERE
            menu_level = 1;
    </select>
    <select id="getMenuByMenuId" resultType="com.lemonzuo.model.Menu">
        SELECT
             id,
             menu_id,
             menu_level,
             menu_hide,
             menu_name,
             menu_url,
             menu_permission,
             parent_menu_id
        FROM
            tb_menu
        WHERE
            menu_id = #{menuId};
    </select>
</mapper>

定义RoleMapper

package com.lemonzuo.mapper;

import com.lemonzuo.shiro.Role;
import org.apache.ibatis.annotations.Param;
import org.springframework.stereotype.Repository;

import java.util.List;

/**
 * @author LemonZuo
 * @create 2020-04-19 16:23
 */
@Repository
public interface RoleMapper {
    /**
     * 获取用户角色列表
     * @param userId
     * @return
     */
    List<Role> getUserRoleList(String userId);

    void addRole(Role role);

    void updateRole(Role role);

    void deleteRole(String roleId);

    List<Role> getRoleList(Role role);

    Role getRoleById(String roleId);

    void addRoleRelateMenu(@Param("roleId") String roleId, @Param("menuIds") String[] menuIds);

    void deleteRoleRelateMenu(String roleId);

    void addUserRole(@Param("userIds") String[] userIds, @Param("roleId") String roleId);

    void deleteUserRoleByRoleId(String roleId);

    List<String> findUserIdByRoleId(String roleId);

    List<String> findRoleIdByUserId(String userId);


}

<!DOCTYPE mapper
        PUBLIC "-//mybatis.org//DTD Mapper 3.0//EN"
        "http://mybatis.org/dtd/mybatis-3-mapper.dtd">
<mapper namespace="com.lemonzuo.mapper.RoleMapper">
    <resultMap id="baseResMap" type="com.lemonzuo.shiro.Role">
        <id property="id" column="id"></id>
        <result property="roleId" column="role_id"></result>
        <result property="roleName" column="role_name"></result>
        <result property="roleValue" column="role_value"></result>
        <collection property="menuList" select="com.lemonzuo.mapper.MenuMapper.getMenuByRoleId"
                     column="{roleId=role_id}"></collection>
    </resultMap>
    <insert id="addRole" useGeneratedKeys="true" keyProperty="id" keyColumn="id">
        INSERT INTO tb_role(role_id, role_name, role_value)
        VALUES (#{roleId}, #{roleName}, #{roleValue})
    </insert>

    <insert id="addRoleRelateMenu">
    INSERT INTO tb_role_menu (`role_id`, `menu_id`)
    VALUES
    <foreach collection="menuIds" item="menuId" separator=",">
        (#{roleId}, #{menuId})
    </foreach>
    </insert>
    <insert id="addUserRole">
    INSERT INTO `tb_user_role` (`user_id`, `role_id`)
    VALUES
    <foreach collection="userIds" item="userId" separator=",">
        (#{userId}, #{roleId})
    </foreach>
    </insert>

    <update id="updateRole">
        UPDATE tb_role
        SET
            role_name = #{roleName},
            role_value = #{roleValue}
        WHERE
            role_id = #{roleId}
    </update>
    <delete id="deleteRole">
        DELETE FROM tb_role
        WHERE role_id = #{roleId}
    </delete>
    <delete id="deleteRoleRelateMenu">
        DELETE FROM tb_role_menu
        WHERE role_id = #{roleId}
    </delete>
    <delete id="deleteUserRoleByRoleId">
        DELETE FROM tb_user_role
        WHERE role_id = #{roleId}
    </delete>

    <select id="getUserRoleList" resultMap="baseResMap">
        SELECT
             role.id,
             role.role_id,
             role.role_name,
             role.role_value
        FROM
            tb_role role
        WHERE
            EXISTS (
                SELECT 1
                FROM tb_user_role WHERE role.role_id = tb_user_role.role_id AND tb_user_role.user_id = #{userId}
            )
    </select>
    <select id="getRoleList" resultType="com.lemonzuo.shiro.Role">
        SELECT
        role.id,
        role.role_id,
        role.role_name,
        role.role_value
        FROM
        tb_role role
        <where>
            <if test="roleId != null and roleId != ''">
                role_id = #{roleId}
            </if>
            <if test="roleName != null and roleName != ''">
                role_name = #{roleName}
            </if>
            <if test="roleValue != null and roleValue != ''">
                role_value = #{roleValue}
            </if>
        </where>
    </select>
    <select id="getRoleById" resultMap="baseResMap">
        SELECT
        role.id,
        role.role_id,
        role.role_name,
        role.role_value
        FROM
        tb_role role
        WHERE
        role_id = #{roleId}
    </select>
    <select id="findUserIdByRoleId" resultType="java.lang.String">
        SELECT user_id
        FROM tb_user_role
        WHERE role_id = #{roleId}
    </select>
    <select id="findRoleIdByUserId" resultType="java.lang.String">
        SELECT role_id
        FROM tb_user_role
        WHERE user_id = #{userId}
    </select>

</mapper>

定义UserMapper

package com.lemonzuo.mapper;

import com.lemonzuo.model.LoginHistory;
import com.lemonzuo.model.User;
import org.springframework.stereotype.Repository;

import java.util.List;

/**
 * @author LemonZuo
 * @create 2020-04-19 12:44
 */
@Repository
public interface UserMapper {
    /**
     * 获取单个用户
     *
     * @param user
     * @return
     */
    User findUserByParam(User user);

    int countByTel(String tel);

    void addUser(User user);

    void addLoginHistory(LoginHistory history);

    void updateUser(User user);

    List<User> findUserByUserType(int userType);

    void deleteUser(String userId);
}

<!DOCTYPE mapper
        PUBLIC "-//mybatis.org//DTD Mapper 3.0//EN"
        "http://mybatis.org/dtd/mybatis-3-mapper.dtd">
<mapper namespace="com.lemonzuo.mapper.UserMapper">
    <insert id="addUser" parameterType="com.lemonzuo.model.User" useGeneratedKeys="true" keyProperty="id"
            keyColumn="id">
        INSERT INTO tb_user(user_id, user_tel, user_password, user_type, user_name, user_mail)
        VALUES (#{userId}, #{userTel}, #{userPassword}, #{userType}, #{userName}, #{userMail})
    </insert>
    <insert id="addLoginHistory" parameterType="com.lemonzuo.model.LoginHistory" useGeneratedKeys="true"
            keyProperty="id" keyColumn="id">
        INSERT INTO tb_user_login_history(user_id, login_ip, login_time, login_os, login_address, login_platform)
        VALUES (#{userId}, #{loginIp}, #{loginTime}, #{loginOs}, #{loginAddress}, #{loginPlatform});
    </insert>
    <update id="updateUser">
        UPDATE tb_user
        SET
        <if test="userTel != null and userTel != ''">
            user_tel = #{userTel},
        </if>
        <if test="userMail != null and userMail != ''">
            user_mail = #{userMail},
        </if>
        <if test="userName != null and userName != ''">
            user_name = #{userName}
        </if>
        WHERE
            user_id = #{userId}
    </update>
    <delete id="deleteUser">
     DELETE FROM tb_user
     WHERE  user_id = #{userId}
    </delete>

    <select id="findUserByParam" resultType="com.lemonzuo.model.User">
        SELECT
        user_name,
        user_status,
        user_id,
        user_password,
        user_tel,
        user_mail
        FROM
        tb_user
        <where>
            <if test="userName != null and userName != ''">
                user_name = #{userName}
            </if>
            <if test="userPassword != null and userPassword != ''">
                AND user_password = #{userPassword}
            </if>
            <if test="userTel != null and userTel != ''">
                AND user_tel = #{userTel}
            </if>
            <if test="userMail != null and userMail != ''">
                AND user_mail = #{userMail}
            </if>
            <if test="userType != null and userType != null">
                AND user_type = #{userType}
            </if>
            <if test="userId != null and userId != ''">
                AND user_id = #{userId}
            </if>
        </where>
    </select>

    <select id="countByTel" resultType="java.lang.Integer">
        SELECT count(1)
        FROM tb_user
        WHERE user_tel = #{tel}
    </select>

    <select id="findUserByUserType" resultType="com.lemonzuo.model.User">
        SELECT
        user_name,
        user_id,
        user_password,
        user_tel,
        user_mail
        FROM
        tb_user
        WHERE
        user_type = #{userType};
    </select>

</mapper>

相关实体类

package com.lemonzuo.model;

import lombok.Data;

import java.util.List;

/**
 * @author LemonZuo
 * @create 2020-04-19 14:20
 */
@Data
public class Menu {
    private int id;
    private String menuId;
    private String menuName;
    private String menuUrl;
    private String menuPermission;
    private int menuLevel;
    private int menuHide;
    private String parentMenuId;
    private List<Menu> childMenu;
}

package com.lemonzuo.model;

import lombok.Data;

import java.util.List;

/**
 * @author LemonZuo
 * @create 2020-04-25 22:23
 */
@Data
public class Role {
    private int id;
    private String roleId;
    private String roleName;
    private String roleValue;
    private List<Menu> menuList;
}

package com.lemonzuo.model;

import lombok.Data;

/**
 * @author LemonZuo
 * @create 2020-04-19 12:42
 */
@Data
public class User {
    private int id;
    private String userId;
    private String userName;
    private String userPassword;
    private String userTel;
    private String userMail;
    private int userType;
}

定义UserUtils

package com.lemonzuo.util;

import com.lemonzuo.model.Menu;
import com.lemonzuo.model.User;
import com.lemonzuo.service.RoleService;
import com.lemonzuo.service.UserService;
import com.lemonzuo.shiro.Role;
import org.apache.commons.lang3.StringUtils;
import org.apache.shiro.SecurityUtils;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Component;

import java.util.ArrayList;
import java.util.List;

/**
 * @author LemonZuo
 * @create 2020-04-19 14:28
 */
public class UserUtils {
    private static UserService userService = SpringUtil.getBean(UserService.class);
    private static RoleService roleService = SpringUtil.getBean(RoleService.class);

    public static User getCurrentUser() {
        String userName = (String) SecurityUtils.getSubject().getPrincipal();
        User user = new User();
        user.setUserName(userName);
        user.setUserType(1);
        user = userService.findUserByParam(user);
        return user;
    }

    public static List<Role> getRoleList() {
        List<Role> roleList = new ArrayList<>();
        User user = getCurrentUser();
        if (user != null && StringUtils.isNotBlank(user.getUserId())) {
            roleList = roleService.getUserRoleList(user.getUserId());
        }
        return roleList;
    }

    public static List<Menu> getMenuList() {
        List<Menu> menuList = new ArrayList<>();
        List<Role> list = getRoleList();
        for (Role role : list) {
            menuList.addAll(role.getMenuList());
        }
        return menuList;
    }
}

SpringUtils

package com.lemonzuo.util;

import org.springframework.beans.BeansException;
import org.springframework.context.ApplicationContext;
import org.springframework.context.ApplicationContextAware;
import org.springframework.stereotype.Component;

/**
 * @author LemonZuo
 * @create 2020-04-28 22:17
 */
@Component
public class SpringUtil implements ApplicationContextAware {
    private static ApplicationContext context;

    @Override
    public void setApplicationContext(ApplicationContext applicationContext) throws BeansException {
        context = applicationContext;
    }

    public static void set(ApplicationContext applicationContext) {
        context = applicationContext;
    }

    /**
     * 通过字节码获取
     * @param beanClass
     * @param <T>
     * @return
     */
    public static <T> T getBean(Class<T> beanClass) {
        return context.getBean(beanClass);
    }

    /**
     * 通过BeanName获取
     * @param beanName
     * @param <T>
     * @return
     */
    public static <T> T getBean(String beanName) {
        return (T) context.getBean(beanName);
    }

    /**
     * 通过beanName和字节码获取
     * @param name
     * @param beanClass
     * @param <T>
     * @return
     */
    public static <T> T getBean(String name, Class<T> beanClass) {
        return context.getBean(name, beanClass);
    }
}

UserService

package com.lemonzuo.service;

import com.lemonzuo.mapper.UserMapper;
import com.lemonzuo.model.LoginHistory;
import com.lemonzuo.model.User;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Service;
import org.springframework.transaction.annotation.Transactional;

import java.util.List;

/**
 * @author LemonZuo
 * @create 2020-04-19 12:52
 */
@Service
public class UserService {
    private UserMapper userMapper;

    @Autowired
    public void setUserMapper(UserMapper userMapper) {
        this.userMapper = userMapper;
    }

    @Transactional(readOnly = true)
    public User findUserByParam(User user) {
        return userMapper.findUserByParam(user);
    }

    @Transactional(readOnly = true)
    public int countByTel(String tel) {
        return userMapper.countByTel(tel);
    }

    @Transactional(rollbackFor = Exception.class)
    public void addUse(User user) {
        userMapper.addUser(user);
    }

    @Transactional
    public void addLoginHistory(LoginHistory history) {
        userMapper.addLoginHistory(history);
    }

    @Transactional(rollbackFor = Exception.class)
    public void updateUser(User user) {
        userMapper.updateUser(user);
    }

    @Transactional(readOnly = true)
    public List<User> findUserByUserType(int userType) {
        return userMapper.findUserByUserType(userType);
    }

    @Transactional(rollbackFor = Exception.class)
    public void deleteUser(String userId) {
        userMapper.deleteUser(userId);
    }
}

RoleService

package com.lemonzuo.service;

import com.lemonzuo.mapper.RoleMapper;
import com.lemonzuo.shiro.Role;
import com.lemonzuo.util.LeafUtil;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Repository;
import org.springframework.transaction.annotation.Transactional;

import java.util.List;

/**
 * @author LemonZuo
 * @create 2020-04-19 17:16
 */
@Repository
public class RoleService {
    @Autowired
    private RoleMapper roleMapper;

    public List<Role> getUserRoleList(String userId) {
        return roleMapper.getUserRoleList(userId);
    }

    public void addRole(Role role) {
        role.setRoleId(LeafUtil.getId());
        roleMapper.addRole(role);
    }

    @Transactional(rollbackFor = Exception.class)
    public void updateRole(Role role) {
        roleMapper.updateRole(role);
    }

    @Transactional(rollbackFor = Exception.class)
    public void deleteRole(String roleId) {
        roleMapper.deleteRole(roleId);
    }

    public List<Role> getRoleList(Role role) {
        return roleMapper.getRoleList(role);
    }

    public Role getRoleById(String roleId) {
        return roleMapper.getRoleById(roleId);
    }

    @Transactional(rollbackFor = Exception.class)
    public void deleteRoleRelateMenu(String roleId) {
        roleMapper.deleteRoleRelateMenu(roleId);
    }

    @Transactional(rollbackFor = Exception.class)
    public void addRoleRelateMenu(String roleId, String[] menuIds) {
        roleMapper.addRoleRelateMenu(roleId, menuIds);
    }

    @Transactional(rollbackFor = Exception.class)
    public void addUserRole(String[] userIds, String roleId) {
        roleMapper.addUserRole(userIds, roleId);
    }

    @Transactional(rollbackFor = Exception.class)
    public void deleteUserRoleByRoleId(String roleId) {
        roleMapper.deleteUserRoleByRoleId(roleId);
    }

    @Transactional(readOnly = true)
    public List<String> findUserIdByRoleId(String roleId) {
        return roleMapper.findUserIdByRoleId(roleId);
    }

    @Transactional(readOnly = true)
    public List<String> findRoleIdByUserId(String userId) {
        return roleMapper.findRoleIdByUserId(userId);
    }
}

自定义UserRealm

package com.lemonzuo.shiro;

import com.lemonzuo.model.Menu;
import com.lemonzuo.model.User;
import com.lemonzuo.service.UserService;
import com.lemonzuo.util.UserUtils;
import org.apache.shiro.authc.*;
import org.apache.shiro.authz.AuthorizationInfo;
import org.apache.shiro.authz.SimpleAuthorizationInfo;
import org.apache.shiro.realm.AuthorizingRealm;
import org.apache.shiro.subject.PrincipalCollection;
import org.springframework.beans.factory.annotation.Autowired;

import java.util.List;

/**
 * @author LemonZuo
 * @create 2020-04-19 9:05
 */
public class UserRealm extends AuthorizingRealm {
    @Autowired
    private UserService userService;
    /**
     * 认证
     *
     * @param authenticationToken
     * @return
     * @throws AuthenticationException
     */
    @Override
    protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken authenticationToken) throws AuthenticationException {
        UsernamePasswordToken token = (UsernamePasswordToken) authenticationToken;
        Object principal = token.getPrincipal();
        if (principal == null) {
            return null;
        }
        // 获取用户名
        String userName = token.getUsername();
        String password = new String(token.getPassword());
        User userToken = new User();
        userToken.setUserType(1);
        userToken.setUserName(userName);
        User user = userService.findUserByParam(userToken);
        if(user == null) {
            // 用户不存在
            throw new UnknownAccountException("用户不存在");
        } else if(user != null && !password.equals(user.getUserPassword())) {
            // 密码错误
            throw  new IncorrectCredentialsException("密码错误");
        } else {
            SimpleAuthenticationInfo authenticationInfo = new SimpleAuthenticationInfo(user.getUserName(), user.getUserPassword(), user.getUserName());
            return authenticationInfo;
        }
    }

    /**
     * 授权
     *
     * @param principalCollection
     * @return
     */
    @Override
    protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principalCollection) {
/*        // 获取用户名
        String userName = (String) principalCollection.getPrimaryPrincipal();
        User user = new User();
        user.setUserName(userName);
        user.setUserType(1);
        // 查询用户信息
        userService.findUserByParam(user);*/
        // 添加角色与权限
        SimpleAuthorizationInfo authorizationInfo = new SimpleAuthorizationInfo();
        // 获取角色
        List<Role> roleList = UserUtils.getRoleList();
        for (Role role : roleList) {
            // 添加角色
            authorizationInfo.addRole(role.getRoleName());
            for (Menu menu : role.getMenuList()) {
                // 添加权限
                authorizationInfo.addStringPermission(menu.getMenuPermission());
            }
        }
        return authorizationInfo;
    }
}

自定义RedisSessionDao

package com.lemonzuo.shiro;

import com.lemonzuo.util.RedisUtil;
import org.apache.shiro.session.Session;
import org.apache.shiro.session.UnknownSessionException;
import org.apache.shiro.session.mgt.eis.AbstractSessionDAO;
import org.springframework.stereotype.Component;

import java.io.Serializable;
import java.util.*;

/**
 * @author LemonZuo
 * @create 2020-04-19 18:41
 */
@Component
public class RedisSessionDao extends AbstractSessionDAO {
    private String prefix = "learn-";

    @Override
    protected Serializable doCreate(Session session) {
        Serializable sessionId = generateSessionId(session);
        assignSessionId(session, sessionId);
        saveSession(session);
        return sessionId;
    }

    @Override
    protected Session doReadSession(Serializable sessionId) {
        if (sessionId == null) {
            return null;
        }
        String key = prefix + sessionId;
        Object valueObject = RedisUtil.get(key);
        Session session = null;
        if(valueObject != null && valueObject instanceof Session) {
             session = (Session) valueObject;
        }
        return session;
    }

    @Override
    public void update(Session session) throws UnknownSessionException {
        saveSession(session);
    }

    @Override
    public void delete(Session session) {
        if (session != null) {
            String key = prefix + session.getId();
            RedisUtil.remove(key);
        }
    }

    @Override
    public Collection<Session> getActiveSessions() {
        Set<Session> sessionList = new HashSet<>();
        Set<String> keys = RedisUtil.keys(prefix);
        for (String key : keys) {
            Object valueObject = RedisUtil.get(key);
            Session session = null;
            if(valueObject != null && valueObject instanceof Session) {
                session = (Session) valueObject;
                sessionList.add(session);
            }
        }
        return sessionList;
    }

    private void saveSession(Session session) {
        if (session != null && session.getId() != null) {
            String key = prefix + session.getId();
            RedisUtil.set(key, session, 10 * 60 * 1000);
        }
    }
}

自定义CustomerSessionManage

package com.lemonzuo.shiro;

import com.lemonzuo.util.RedisUtil;
import org.apache.shiro.session.Session;
import org.apache.shiro.session.UnknownSessionException;
import org.apache.shiro.session.mgt.SessionKey;
import org.apache.shiro.web.session.mgt.DefaultWebSessionManager;
import org.apache.shiro.web.session.mgt.WebSessionKey;
import org.springframework.stereotype.Component;

import javax.servlet.ServletRequest;
import java.io.Serializable;

/**
 * @author LemonZuo
 * @create 2020-04-25 8:40
 */
@Component
public class CustomerSessionManage extends DefaultWebSessionManager {
    private String prefix = "learn-";

    @Override
    protected Session retrieveSession(SessionKey sessionKey) throws UnknownSessionException {
        Serializable sessionId = getSessionId(sessionKey);
        ServletRequest request = null;
        if (sessionKey instanceof WebSessionKey) {
            request = ((WebSessionKey) sessionKey).getServletRequest();
        }
        if (request != null && sessionId != null) {
            Session session = (Session) request.getAttribute(sessionId.toString());
            if (session != null) {
                return session;
            }
        }
        Session session = retrieveSessionFromDataSource(sessionId);
        if (request != null && sessionId != null) {
            request.setAttribute(sessionId.toString(), session);
        }
        return session;
    }

    @Override
    protected Session retrieveSessionFromDataSource(Serializable sessionId) throws UnknownSessionException {
        if (sessionId == null) {
            return null;
        }
        String key = prefix + sessionId;
        Object valueObject = RedisUtil.get(key);
        Session session = null;
        if (valueObject != null && valueObject instanceof Session) {
            session = (Session) valueObject;
        }
        return session;
    }
}

定义ShiroConfig配置类

package com.lemonzuo.config;

import com.lemonzuo.shiro.CustomerSessionManage;
import com.lemonzuo.shiro.RedisSessionDao;
import com.lemonzuo.shiro.UserRealm;
import org.apache.shiro.mgt.SessionsSecurityManager;
import org.apache.shiro.mgt.SecurityManager;
import org.apache.shiro.session.mgt.SessionManager;
import org.apache.shiro.spring.security.interceptor.AuthorizationAttributeSourceAdvisor;
import org.apache.shiro.spring.web.ShiroFilterFactoryBean;
import org.apache.shiro.web.mgt.DefaultWebSecurityManager;
import org.apache.shiro.web.session.mgt.DefaultWebSessionManager;
import org.springframework.aop.framework.autoproxy.DefaultAdvisorAutoProxyCreator;
import org.springframework.boot.autoconfigure.condition.ConditionalOnMissingBean;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.context.annotation.Primary;

import java.util.LinkedHashMap;
import java.util.Map;

/**
 * @author LemonZuo
 * @create 2020-04-19 8:50
 */
@Configuration
public class ShiroConfig {
    @Bean
    public UserRealm getRealm() {
        UserRealm realm = new UserRealm();
        return realm;
    }

    @Bean
    public SessionsSecurityManager getSecurityManager(UserRealm realm, CustomerSessionManage sessionManager) {
        DefaultWebSecurityManager securityManager = new DefaultWebSecurityManager();
        securityManager.setRealm(realm);
        securityManager.setSessionManager(sessionManager);
        return securityManager;
    }

    @Bean
    @Primary
    public CustomerSessionManage sessionManager(RedisSessionDao sessionDao) {
        CustomerSessionManage sessionManager = new CustomerSessionManage();
        sessionManager.setSessionDAO(sessionDao);
        return sessionManager;
    }

    @Bean
    public ShiroFilterFactoryBean getShiroFilterFactoryBean(SecurityManager securityManager) {
        ShiroFilterFactoryBean shiroFilterFactoryBean = new ShiroFilterFactoryBean();
        shiroFilterFactoryBean.setSecurityManager(securityManager);
        Map<String, String> map = new LinkedHashMap<>();
        map.put("/admin/adminLoginPage.do", "anon");
        map.put("/admin/adminLogin.do", "anon");
        map.put("/admin/adminLogout.do", "logout");
        map.put("/admin/css/**", "anon");
        map.put("/admin/images/**", "anon");
        map.put("/admin/js/**", "anon");
        map.put("/admin/lib/**", "anon");
        map.put("/admin/**", "authc");
        map.put("/**", "anon");
        shiroFilterFactoryBean.setFilterChainDefinitionMap(map);
        shiroFilterFactoryBean.setLoginUrl("/admin/adminLoginPage.do");
        shiroFilterFactoryBean.setSuccessUrl("/admin/index.do");
        shiroFilterFactoryBean.setUnauthorizedUrl("/admin/adminLoginPage.do");
        return shiroFilterFactoryBean;
    }

    @Bean
    @ConditionalOnMissingBean
    public DefaultAdvisorAutoProxyCreator defaultAdvisorAutoProxyCreator() {
        DefaultAdvisorAutoProxyCreator defaultAAP = new DefaultAdvisorAutoProxyCreator();
        defaultAAP.setProxyTargetClass(true);
        return defaultAAP;
    }

    @Bean
    @ConditionalOnMissingBean
    public AuthorizationAttributeSourceAdvisor authorizationAttributeSourceAdvisor(SecurityManager securityManager) {
        AuthorizationAttributeSourceAdvisor authorizationAttributeSourceAdvisor =
                new AuthorizationAttributeSourceAdvisor();
        authorizationAttributeSourceAdvisor.setSecurityManager(securityManager);
        return authorizationAttributeSourceAdvisor;
    }
}

 

Lemon鹿儿
关注
专栏目录
SpringBoot2.x系列教程(六十九)Spring Boot整合Shiro,两种方式实战总结(含源码)
程序新视界
01-27 888
Shiro是历史悠久的权限管理框,简单易用,易用集成,同时权限管理也是每个项目必不可少的功能。Spring Boot是Java领域炙手可热的脚手架框架。今天这篇文章就带大家将这两个框架进行整合。 通常Spring Boot整合Shiro,有两种方案:第一,基于原生API进行整合;第二,基于Shiro官方Starter整合。 整体而言,官方Starter整合并没有方便很多,因此,本文主要以原则API进行整合, 下面就来看看具体的整合方式。 创建Spring Boot项目 创建Spring Boot项目通常有
SpringBoot整合Shiro
Alankingv8的博客
12-16 447
SpringBoot整合Shiro了解认证授权了解shiro基础APIShiro QuickStart基础框架maven依赖ControllerMobileControllerSalaryControllerbeanUserBeanconfigShiroConfig(shiro配置三板斧)MyRealm基础认证功能(登录认证)ControllerLoginControllerutilTestData(模拟数据库数据)ServiceUserServiceconfigMyRealmShiroConfig(shi
springboot-shiro权限控制
sinat_40693969的博客
06-02 522
springboot-shiro权限控制
Spring整合Shiro权限控制模块详细案例分析
chutiao4683的博客
05-02 213
1.引入Shiro的Maven依赖 <!-- Spring 整合Shiro需要的依赖 --> <dependency> <groupId>org.apache.shiro</groupId> <artifactId>s...
Shiro(二)—— spring环境下shiro权限控制
shijiujiu33的博客
04-28 267
首先可以先了解一下我的上一篇博客 Shiro(一)—— spring环境下shiro认证过程 里面搭建了spring环境下shiro整合以及登录认证流程,这篇shiro权限控制是在上一篇的配置基础上 使用shiro提供的注解形式,进行请求的权限控制 spring-shiro中添加aop配置,开启注解支持 <!--配置授权注解--> <!--配置为true表示即使用cg...
SpringBoot整合系列SpringBoot整合Shiro——权限控制
低调做人,低调编码,神码都是浮云
04-12 1703
SpringBoot整合Shiro权限控制
Spring MVC 整合 Shiro 权限控制
二狗的博客
01-14 777
Apache Shiro 是一个功能强大且灵活的开放源代码安全框架,可以细粒度地处理认证 (Authentication),授权 (Authorization),会话 (Session) 管理和加密 (cryptography) 等企业级应用中常见的安全控制流程。Apache Shiro 的首要目标是易于使用和理解。有时候安全性的流程控制会非常复杂,对开发人员来说是件很头疼的事情,但并不一定如此。框架就应该尽可能地掩盖复杂性,并公开一个简洁而直观的 API,从而简化开发人员的工作,确保其应用程序安全性。
springboot系列教程(二十八):springboot整合Shiro框架,实现用户权限管理
最新发布
08-01
springboot系列教程(二十八):springboot整合Shiro框架,实现用户权限管理
SpringBoot整合Shiro实现基于角色的权限访问控制(RBAC)系统简单设计从零搭建.zip
08-05
总结来说,这个项目涉及了SpringBoot的微服务架构、Apache Shiro的安全管理,以及基于角色的权限控制。通过合理的配置和编程,我们可以从零开始搭建一个完整的RBAC系统,这对于提升个人的IT技能和理解企业级应用的...
SpringBootShiro整合-权限管理实战视频+源码
02-25
### SpringBootShiro整合-权限管理实战视频+源码 #### 一、Spring Boot简介 Spring Boot是由Pivotal团队提供的全新框架,其设计目标是简化新Spring应用的初始搭建以及开发过程。该框架使用了特定的方式(比如...
spring+shiro 增删改查权限控制
11-01
spring+shiro 增删改查权限控制,其中包括用户管理、角色管理、权限管理
shiro动态URL权限控制
04-14
Spring整合shiro,使用shiro动态URL权限控制学习教程
springboot整合shiro实现权限控制
热门推荐
jiankang66的博客
05-24 4万+
Apache Shiro是一个强大且易用的Java安全框架,执行身份验证、授权、密码学和会话管理。使用Shiro的易于理解的API,您可以快速、轻松地获得任何应用程序,从最小的移动应用程序到最大的网络和企业应用程序。上个月写了一个在线教育的项目用到了shiro权限控制,这几天又复盘了一下,对其进行了深入探究,来总结一下。 下面所总结的有关shiro的代码已经传到我的github上,可以访问下面的......
Springboot 整合shiro实现权限控制
qq_40699540的博客
11-02 370
Springboot 整合shiro实现权限控制 Author:jeffrey Date:2019-04-08 一、开发环境: 1、mysql - 5.7 2、navicat(mysql客户端管理工具) 3、idea 2017.2 4、jdk8 5、tomcat 8.5 6、springboot2.1.3 7、mybatis 3 8、shiro1.4 9、maven3.3.9 二、数据库设计 [外链图片转存失败,源站可能有防盗链机制,建议将图片保存下来直接上传(img-CB46ByC1-1604249108
springboot项目中使用shiro框架基于RBAC实现权限控制
qq_51891433的博客
06-18 436
注解标记,并在该类中进行相关的配置,包括创建SecurityManager、配置Realm等。注解标记,并在该类中进行相关的配置,包括创建SecurityManager、配置Realm等。4、创建一个登录页面和相应的登录Controller,用于处理用户登录请求。5、在需要进行权限控制的Controller方法上,添加相应的Shiro注解(如。在需要进行权限控制的Controller方法上,添加相应的Shiro注解(如。创建一个登录页面和相应的登录Controller,用于处理用户登录请求。
Shiro权限控制(七):Spring整合Shiro权限控制综合实践-按钮层级-超详细
kity9420的专栏
10-13 2350
前言 本文是Spring整合Shiro进行细粒度权限控制的综合实训,主要内容包括: 一、Spring中引入Shiro框架 二、Shiro登录控制 三、权限表设计 四、服务权限配置 、自定义标签控制页面(HTML)按钮权限 开始正文之前,先介绍一下我的工程环境:Spring+Spring MVC+Mybatis+MySql+Maven,下面从Spring引入Shiro框架开始本文的介绍 一、S...
六、Springboot 整合Shiro---04权限控制
itxsl的博客
07-21 1476
本章节基于:Springboot 整合Shiro---03认证---第三方QQ登陆 一、通过realm进行权限控制 1、在templates下创建三个html页面 user.html、admin.html、unauthorized.html 2、创建一个Action类 package com.xslde.action; import org.springframework.ste...
springboot整合shiro实现简单权限控制
听钱塘信来的博客
10-03 6941
springboot整合shiro实现简单权限控制
SpringBoot2.0与Shiro整合权限管理实战教程
"本文主要探讨如何在SpringBoot2.0项目中整合Apache Shiro框架,以实现用户权限管理。通过示例代码详细讲解了整合过程和关键配置,旨在帮助开发者理解和掌握这一技术,以提升应用的安全性和用户体验。" 在...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值