自己记录着玩
pom.xml
<!--shiro标签和thymeleaf的整合依赖-->
<dependency>
<groupId>com.github.theborakompanioni</groupId>
<artifactId>thymeleaf-extras-shiro</artifactId>
<version>2.0.0</version>
</dependency>
<!--spring和shiro的整合依赖-->
<dependency>
<groupId>org.apache.shiro</groupId>
<artifactId>shiro-spring</artifactId>
<version>1.2.3</version>
</dependency>
自定义realm
package com.aaa.config;
import com.aaa.entity.User;
import com.aaa.service.MenuService;
import com.aaa.service.UserService;
import org.apache.shiro.SecurityUtils;
import org.apache.shiro.authc.AuthenticationException;
import org.apache.shiro.authc.AuthenticationInfo;
import org.apache.shiro.authc.AuthenticationToken;
import org.apache.shiro.authc.SimpleAuthenticationInfo;
import org.apache.shiro.authz.AuthorizationInfo;
import org.apache.shiro.authz.SimpleAuthorizationInfo;
import org.apache.shiro.realm.AuthorizingRealm;
import org.apache.shiro.subject.PrincipalCollection;
import org.apache.shiro.subject.Subject;
import org.apache.shiro.util.ByteSource;
import org.springframework.beans.factory.annotation.Autowired;
import java.util.ArrayList;
import java.util.HashSet;
import java.util.List;
import java.util.Set;
public class UserRealm extends AuthorizingRealm {
@Autowired
private MenuService menuService;
/*
* 认证
* */
@Override
protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken authenticationToken) throws AuthenticationException {
//获取的前台username
String username = (String) authenticationToken.getPrincipal();
User sysUser = null;
try {
sysUser = menuService.loginname(username);
} catch (Exception e) {
e.printStackTrace();
}
//判断对象是否有值
if (sysUser == null) {
return null;
}
//密码不需要我们比对,shiro会给我们比对 //对象 //获取前台密码
SimpleAuthenticationInfo info = new SimpleAuthenticationInfo(sysUser, sysUser.getPwd(), ByteSource.Util.bytes(sysUser.getSalt()), getName());
return info;
}
/*
* 授权
* */
@Override
protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principalCollection) {
return null;
}
}
config
package com.aaa.config;
import at.pollux.thymeleaf.shiro.dialect.ShiroDialect;
import org.apache.shiro.authc.credential.HashedCredentialsMatcher;
import org.apache.shiro.spring.web.ShiroFilterFactoryBean;
import org.apache.shiro.web.mgt.DefaultWebSecurityManager;
import org.springframework.beans.factory.annotation.Qualifier;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import java.util.LinkedHashMap;
import java.util.Map;
@Configuration
public class ShiroConfig {
/**
* 第一个bean:realm 数据域
* <p>
* 第二个bean:SecurityManager 安全管理器
* <p>
* 第三个bean:shirofileterfactorybean
* <p>
* 第四个:密码匹配器
* <p>
* 第五个bean:ShiroDialect
*/
// <bean id=""> name对应bean容器的id
@Bean(name = "userRealm")
public UserRealm getUserRealm(@Qualifier("hashedCredentialsMatcher") HashedCredentialsMatcher hashedCredentialsMatcher) {
UserRealm userRealm = new UserRealm();
userRealm.setCredentialsMatcher(hashedCredentialsMatcher);
return userRealm;
}
@Bean(name = "securityManager")
public DefaultWebSecurityManager getDefaultWebSecurityManager(@Qualifier("userRealm") UserRealm userRealm) {
DefaultWebSecurityManager securityManager = new DefaultWebSecurityManager();
securityManager.setRealm(userRealm);
return securityManager;
}
@Bean(name = "shiroFilterFactoryBean")
public ShiroFilterFactoryBean getShiroFilterFactoryBean(@Qualifier("securityManager") DefaultWebSecurityManager securityManager) {
ShiroFilterFactoryBean shiroFilterFactoryBean = new ShiroFilterFactoryBean();
shiroFilterFactoryBean.setSecurityManager(securityManager);
Map<String, String> filtermap = new LinkedHashMap<String, String>();
//toLogin/login界面可以未认证直接访问
filtermap.put("/sel/login", "anon");
filtermap.put("index.html", "anon");
filtermap.put("/css/**", "anon");
filtermap.put("/layui/**", "anon");
filtermap.put("/js/**", "anon");
filtermap.put("/images/**", "anon");
filtermap.put("*.png", "anon");
filtermap.put("*jpg", "anon");
//未认证都不允许通过
filtermap.put("/**", "authc");
shiroFilterFactoryBean.setFilterChainDefinitionMap(filtermap);
//如果访问的页面未认证 跳转到登陆页面
shiroFilterFactoryBean.setLoginUrl("/sel/toLogin");
return shiroFilterFactoryBean;
}
//用来跟加密的密码进行比对的bean
@Bean(name = "hashedCredentialsMatcher")
public HashedCredentialsMatcher getHashedCredentialsMatcher() {
HashedCredentialsMatcher hashedCredentialsMatcher = new HashedCredentialsMatcher();
//设置比较规则
hashedCredentialsMatcher.setHashAlgorithmName("MD5");
//迭代2次
hashedCredentialsMatcher.setHashIterations(2);
return hashedCredentialsMatcher;
}
//shiro 与thymeleaf的整合
@Bean
public ShiroDialect getShiroDialect() {
return new ShiroDialect();
}
}