建立用户表
第一步、启动MySQL客户端Navicat(任何客户端软件),添加MySQL数据库:
第二步、连接数据库服务在默认数据库test中新建sys_user表;
创建Spring Boot 项目
第一步、浏览器访问:https://start.spring.io
配置顺序:
(1)项目构建工具是 Maven 还是 Gradle,Java后端目前来看还是Maven为主,因此这里选第一项;
(2)开发语言,当然是选择Java;
(3)Spring Boot 版本,默认选择的就是当前最新的稳定版本;
(4)既然是 Maven 工程,当然要有项目坐标,项目描述等信息了,另外这里还让输入了包名,应为创建成功后会自动创建启动类;
(5)Packing 表示项目要打包成 jar 包,还是 war 包,Spring Boot 的一大优势就是内嵌了 Servlet 容器,打成 jar包后可以直接运行,所有这里建议打成 jar 包,当然,根据实际情况,也可以选择war包;
(6)然后选择构建的 JDK 版本;
(7)最后是选择所需要的依赖,输入关键字,如 web ,会有相关的提示,这里先加入 web 依赖;
(8)所有的事情完成之后,点击最下面的 Generate Project 按钮,或者点击 Alt + Enter 按键,此时会自动下载项目,将下载下来的项目解压,然后用 IntelliJ IDEA 或者 Eclipse 打开即可进行开发。
第二步、使用IntelliJ IDEA打开demo项目:
添加连接池Druid
第一步、在项目pom.xml文件中添加依赖
<!-- Lombok注释 -->
<dependency>
<groupId>org.projectlombok</groupId>
<artifactId>lombok</artifactId>
<version>1.18.12</version>
</dependency>
<!-- mybatis驱动 -->
<dependency>
<groupId>com.baomidou</groupId>
<artifactId>mybatis-plus-boot-starter</artifactId>
<version>3.3.1</version>
</dependency>
<!-- MySQL驱动 -->
<dependency>
<groupId>mysql</groupId>
<artifactId>mysql-connector-java</artifactId>
<version>8.0.19</version>
</dependency>
<!-- Druid依赖 -->
<dependency>
<groupId>com.alibaba</groupId>
<artifactId>druid-spring-boot-starter</artifactId>
<version>1.1.21</version>
</dependency>
第二步、在resource文件夹下创建一个application.yml文件,并在其中添加配置:
spring:
datasource:
driver-class-name: com.mysql.cj.jdbc.Driver
url: jdbc:mysql://localhost:3306/test?useUnicode=true&characterEncoding=UTF-8&autoReconnect=true&useSSL=false&serverTimezone=UTC
username: root
password: 123456
# 使用druid数据源
type: com.alibaba.druid.pool.DruidDataSource
druid:
# 配置测试查询语句
validationQuery: SELECT 1 FROM DUAL
# 初始化大小,最小,最大
initialSize: 10
minIdle: 10
maxActive: 200
# 配置一个连接在池中最小生存的时间,单位是毫秒
minEvictableIdleTimeMillis: 180000
testOnBorrow: false
testWhileIdle: true
removeAbandoned: true
removeAbandonedTimeout: 1800
logAbandoned: true
# 打开PSCache,并且指定每个连接上PSCache的大小
poolPreparedStatements: true
maxOpenPreparedStatements: 100
# 配置监控统计拦截的filters,去掉后监控界面sql无法统计,'wall'用于防火墙
filters: stat,wall,slf4j,config
# 通过connectProperties属性来打开mergeSql功能;慢SQL记录
connectionProperties: druid.stat.mergeSql=true;druid.stat.slowSqlMillis=5000
第三步、创建Druid的Servlet和Filter监控配置类:
@Configuration
public class WebConfiguration implements WebMvcConfigurer {
/**
* druidServlet注册
*/
@Bean
public ServletRegistrationBean druidServletRegistration() {
ServletRegistrationBean registration = new ServletRegistrationBean(new StatViewServlet());
registration.addUrlMappings("/druid/*");
return registration;
}
/**
* druid监控 配置URI拦截策略
*/
@Bean
public FilterRegistrationBean druidStatFilter() {
FilterRegistrationBean filterRegistrationBean = new FilterRegistrationBean(new WebStatFilter());
//添加过滤规则.
filterRegistrationBean.addUrlPatterns("/*");
//添加不需要忽略的格式信息.
filterRegistrationBean.addInitParameter(
"exclusions", "/static/*,*.js,*.gif,*.jpg,*.png,*.css,*.ico,/druid,/druid/*");
//用于session监控页面的用户名显示 需要登录后主动将username注入到session里
filterRegistrationBean.addInitParameter("principalSessionName", "username");
return filterRegistrationBean;
}
/**
* druid数据库连接池监控
*/
@Bean
public DruidStatInterceptor druidStatInterceptor() {
return new DruidStatInterceptor();
}
@Bean
public JdkRegexpMethodPointcut druidStatPointcut() {
JdkRegexpMethodPointcut druidStatPointcut = new JdkRegexpMethodPointcut();
String patterns = "com.example.demo.service.*";
//可以set多个
druidStatPointcut.setPatterns(patterns);
return druidStatPointcut;
}
/**
* druid数据库连接池监控
*/
@Bean
public BeanTypeAutoProxyCreator beanTypeAutoProxyCreator() {
BeanTypeAutoProxyCreator beanTypeAutoProxyCreator = new BeanTypeAutoProxyCreator();
beanTypeAutoProxyCreator.setTargetBeanType(DruidDataSource.class);
beanTypeAutoProxyCreator.setInterceptorNames("druidStatInterceptor");
return beanTypeAutoProxyCreator;
}
/**
* druid 为druidStatPointcut添加拦截
*/
@Bean
public Advisor druidStatAdvisor() {
return new DefaultPointcutAdvisor(druidStatPointcut(), druidStatInterceptor());
}
}
第四步、浏览器访问:http://localhost:8080/druid/
添加持久层Mybatis Plus
第一步、在resource文件夹下的application.yml中添加配置:
mybatis-plus:
# 本地mapper路径
mapper-locations: classpath:mapper/*.xml
# 指定实体类路径
typeAliasesPackage: com.*.*.entity
global-config:
db-config:
# 指定自增ID类型
id-type: ASSIGN_ID
创建业务相关类
第一步、创建系统用户实体类:
package com.example.demo.entity;
import lombok.Data;
import java.util.Date;
@TableName("sys_user01")
@Data
public class SysUser {
private Long id;
private String userName;
private String passWord;
private Date createTime;
private Integer userAge;
private String remark;
}
第二步、创建系统用户持久层;
package com.example.demo.mapper;
import com.baomidou.mybatisplus.core.mapper.BaseMapper;
import com.example.demo.entity.SysUser;
import org.apache.ibatis.annotations.Mapper;
@Mapper
public interface SysUserDao extends BaseMapper<SysUser> {
}
第三步、创建系统用户业务层;
package com.example.demo.service;
public interface SysUserService {
}
package com.example.demo.service.impl;
import com.baomidou.mybatisplus.extension.service.impl.ServiceImpl;
import com.example.demo.entity.SysUser;
import com.example.demo.mapper.SysUserDao;
import com.example.demo.service.SysUserService;
import org.springframework.stereotype.Service;
@Service("SysUserService")
public class SysUserServiceImpl extends ServiceImpl<SysUserDao, SysUser> implements SysUserService {
}
第四步、创建系统用户控制层;
package com.example.demo.controller;
import com.example.demo.entity.SysUser;
import com.example.demo.service.impl.SysUserServiceImpl;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.PostMapping;
import org.springframework.web.bind.annotation.PutMapping;
import org.springframework.web.bind.annotation.RestController;
import java.util.Date;
import java.util.List;
@RestController
public class SysUserController {
@Autowired
SysUserServiceImpl sysUserServiceImpl;
@GetMapping("/getUser")
public SysUser getUser(Long id){
return sysUserServiceImpl.getById(id);
}
@PostMapping("/insertUser")
public String insertUser(SysUser sysUser){
sysUser.setCreateTime(new Date());
return sysUserServiceImpl.save(sysUser)?"保存成功":"保存失败";
}
@PutMapping("/updateUser")
public String updateUser(SysUser sysUser){
return sysUserServiceImpl.updateById(sysUser)?"修改成功":"修改失败";
}
@GetMapping("/getList")
public List<SysUser> getList(){
return sysUserServiceImpl.list();
}
@GetMapping("/")
public String index(Long id){
return "欢迎使用!";
}
}
添加权限框架Spring Security
第一步、在项目pom.xml文件中添加依赖:
<!-- SpringSecurity依赖 -->
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-security</artifactId>
</dependency>
第二步、简单模式测试,直接访问http://localhost:8080/:
第三步、添加配置测试,直接访问http://localhost:8080/:
(1)创建配置类:
package com.example.demo.conf;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.builders.WebSecurity;
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
@Configuration
@EnableWebSecurity
public class SpringSecurityConfig extends WebSecurityConfigurerAdapter {
@Override
protected void configure(HttpSecurity http) throws Exception {
http.authorizeRequests()
.antMatchers("/").permitAll()
.anyRequest().authenticated()
.and()
.logout().permitAll()
.and()
.formLogin();
http.csrf().disable();
}
@Override
public void configure(WebSecurity web) throws Exception {
web.ignoring().antMatchers("/js/**", "/css/**", "/images/**");
}
}
(2)在SysUserController控制层添加接口方法:
@GetMapping("/")
public String index(Long id){
return "欢迎使用!";
}
第四步、添加内存账号测试
(1)在SpringSecurityConfig配置类中添加内存账号配置到配置类:
@Override
protected void configure(AuthenticationManagerBuilder auth) throws Exception {
auth.inMemoryAuthentication().passwordEncoder(new BCryptPasswordEncoder()).withUser("admin").password(new BCryptPasswordEncoder().encode("123456")).roles("ADMIN");
}
(2)访问http://localhost:8080/getList ,输入账号admin,密码123456:
第五步、添加自定义密码编解码测试;
(1)创建自定义密码编解码类MyPasswordEncoder:
package com.example.demo.conf;
import org.springframework.security.crypto.password.PasswordEncoder;
public class MyPasswordEncoder implements PasswordEncoder {
final static String ENCODER_PWD = "123456";
@Override
public String encode(CharSequence rawPassword) {
return rawPassword + ENCODER_PWD;
}
@Override
public boolean matches(CharSequence rawPassword, String encodedPassword) {
return encodedPassword.equals(rawPassword+ENCODER_PWD);
}
}
(2)修改配置类SpringSecurityConfig中的配置用户密码编解码方式:
@Override
protected void configure(AuthenticationManagerBuilder auth) throws Exception {
auth.inMemoryAuthentication().passwordEncoder(new MyPasswordEncoder()).withUser("admin").password(new MyPasswordEncoder().encode("123456")).roles("ADMIN");
}
(3)访问http://localhost:8080/getList ,输入账号admin,密码123456: