通过Shiro完成组织机构的登录、查询、退出操作

已于 2022-05-23 15:54:34 修改
阅读量549 收藏
点赞数
分类专栏: JAVA基础 文章标签: spring
于 2022-05-23 14:59:48 首次发布
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/mr_foxsand/article/details/124923825
版权

版权声明:严禁用于任何商业用途的转发!

注意:

1.这是一篇探讨性的文章,并不能作为指导性内容

2.具体的shiro认证流程等不做说明

3.在此之前,我尝试过利用shiro的ThreadLocal、数据库持久化等等手段,均没有达到理想中的效果!特别是ThreadLocal,存储后不论我怎么修改代码,一直获取不到写入的信息,有清楚原因的大大烦请指导一下!

业务需求:

1.多组织下实现用户组织认证登录

2.登录后任意请求获取当前登录组织信息

3.退出登录时,清空组织信息

实现思路:

最初的时候,我是将组织信息持久化保存到user表中,实际使用中效率以及效果并不理想,

下面代码示例中的思路是:在shiro config中初始化LoginOrgManager(自定义登录组织管理器类),在FormAuthenticationFilter中将登录组织信息写入LoginOrgManager.resources

实现代码:

1.自定义Token:

package org.bluedream.core.config.shiro;

import lombok.Data;
import lombok.NoArgsConstructor;
import org.apache.shiro.authc.UsernamePasswordToken;

/**
 * @ClassName CustomUserNamePasswordToken
 * @Description TODO
 * @Author foxsand
 * @Data 2021-06-18 11:25
 * @Version
 */
@Data
@NoArgsConstructor
public class CustomUsernamePasswordToken extends UsernamePasswordToken {

    private static final long serialVersionUID = 1560242330091698700L;
    private String orgCode;

    public CustomUsernamePasswordToken(String username, String password,
                                       boolean rememberMe, String host, String orgCode) {
        super(username, password, rememberMe, host);
        this.orgCode = orgCode;
    }
}

2.自定义登录表单过滤器:

package org.bluedream.core.config.shiro;

import org.apache.shiro.authc.AuthenticationToken;
import org.apache.shiro.subject.Subject;
import org.apache.shiro.web.filter.authc.FormAuthenticationFilter;
import org.apache.shiro.web.util.WebUtils;
import org.bluedream.comm.utils.EmptyUtil;
import org.bluedream.core.config.shiro.loginOrganization.LoginOrgManager;
import org.bluedream.core.config.shiro.loginOrganization.LoginUserRealm;
import org.bluedream.core.utils.YmlRead;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpSession;

public class CustomFormAuthenticationFilter extends FormAuthenticationFilter {
    private String orgCodeParam="orgCode";
    private LoginOrgManager loginOrgManager;

    public LoginOrgManager getLoginOrgManager() {
        if (EmptyUtil.isEmpty(this.loginOrgManager)){
            this.loginOrgManager = new LoginOrgManager();
        }
        return loginOrgManager;
    }

    public void setLoginOrgManager(LoginOrgManager loginOrgManager) {
        this.loginOrgManager = loginOrgManager;
    }

    public String getOrgCodeParam() {
        return orgCodeParam;
    }
    public void setOrgCodeParam(String orgCodeParam){
        this.orgCodeParam = orgCodeParam;
    }

    protected String getOrgCode(ServletRequest request) {
        return WebUtils.getCleanParam(request, getOrgCodeParam());
    }

    @Override
    protected AuthenticationToken createToken(ServletRequest request, ServletResponse response) {
        String username = getUsername(request);
        String password = getPassword(request);
        String orgCode = getOrgCode(request);
        boolean rememberMe = isRememberMe(request);
        String host = getHost(request);
        return new CustomUsernamePasswordToken(username, password, rememberMe,
                host, orgCode);
    }


    /**
     * 登录成功后 将组织信息写入 LoginOrgManager.resources
     * @param token
     * @param subject
     * @param request
     * @param response
     * @return
     * @throws Exception
     */
    @Override
    protected boolean onLoginSuccess(AuthenticationToken token, Subject subject, ServletRequest request, ServletResponse response) throws Exception {
        //todo:将登陆组织信息赋值给LoginUserRealm,然后存入LoginOrgManager
        LoginOrgManager loginOrgManager = getLoginOrgManager();
        HttpServletRequest req = (HttpServletRequest) request;
        HttpSession session = req.getSession();
        CustomUsernamePasswordToken authenticationToken = (CustomUsernamePasswordToken) token;
        session.setAttribute(LoginOrgManager.LOGIN_ORG_MANAGER_KEY , authenticationToken.getOrgCode());
        session.setAttribute(LoginOrgManager.LOGIN_ORG_SUBJECT_SESSION_ID , subject.getSession().getId());

        LoginUserRealm loginUser = new LoginUserRealm(subject , authenticationToken.getOrgCode() , session);

        loginOrgManager.put((String) subject.getSession().getId() , loginUser);

        return super.onLoginSuccess(token, subject, request, response);
    }
}

3.LoginUserRealm(注意:这里我是继承了一个User类,非必要):

package org.bluedream.core.config.shiro.loginOrganization;

import lombok.Data;
import lombok.EqualsAndHashCode;
import lombok.NoArgsConstructor;
import lombok.ToString;
import org.apache.shiro.subject.Subject;
import org.bluedream.core.module.sys.entity.User;
import javax.servlet.http.HttpSession;


/**
 * @ClassName LoginUserRealm
 * @Description TODO
 * @Author Administrator
 * @Data 2022/5/20 16:33
 * @Version
 */
@Data
@NoArgsConstructor
@EqualsAndHashCode(callSuper = true)
@ToString
public class LoginUserRealm extends User {

    private static final long serialVersionUID = -5835809290701243876L;
    private Subject subject;
    private HttpSession loginOrgSession;

    public LoginUserRealm(Subject subject, String orgCode, HttpSession loginOrgSession) {
        this.subject = subject;
        setOrgCode(orgCode);
        this.loginOrgSession = loginOrgSession;
    }

    public LoginUserRealm(Subject subject) {
        this.subject = subject;
    }

    public LoginUserRealm(String orgCode) {
        this.orgCode = orgCode;
    }

    public LoginUserRealm(HttpSession loginOrgSession) {
        this.loginOrgSession = loginOrgSession;
    }

}

4.登录组织管理器:

package org.bluedream.core.config.shiro.loginOrganization;

import lombok.Data;
import lombok.NoArgsConstructor;
import java.util.HashMap;
import java.util.Map;

/**
 * @ClassName LoginOrgManager  登陆组织管理器
 * @Description TODO
 * @Author Administrator
 * @Data 2022/5/20 11:49
 * @Version
 */
@Data
@NoArgsConstructor
public class LoginOrgManager{

    private static final long serialVersionUID = -3434414553744010746L;
    public static final String LOGIN_ORG_MANAGER_KEY = LoginOrgManager.class.getName() + "_LOGIN_ORG_MANAGER_KEY";
    public static final String LOGIN_ORG_SUBJECT_SESSION_ID = LoginOrgManager.class.getName() + "_LOGIN_ORG_SUBJECT_SESSION_ID";

    private static final Map<String , Object> resources = new HashMap<>();

    public Map<String, Object> getResources() {
        return resources;
    }

    public Object getValue(String key){
        return resources != null ? resources.get(key) : null;
    }

    public Object get(String key){
        return getValue(key);
    }

    public void put(String key, Object value){
        if (key == null){
            throw new IllegalArgumentException("key cannot be null");
        }else if (value == null){
            remove(key);
        }else {
            Object obj = get(key);
            if (obj != null){
                remove(key);
            }
            resources.put(key , value);
        }
    }

    public void remove(String key){
        resources.remove(key);
    }

}

5.Logout过滤器:

package org.bluedream.core.config.shiro;

import org.apache.shiro.subject.Subject;
import org.apache.shiro.web.filter.authc.LogoutFilter;
import org.bluedream.comm.utils.EmptyUtil;
import org.bluedream.core.config.shiro.loginOrganization.LoginOrgManager;
import org.bluedream.core.config.shiro.loginOrganization.LoginUserRealm;
import org.bluedream.core.utils.UserUtil;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;


/**
 * @ClassName CustomLogoutFilter
 * @Description TODO
 * @Author Administrator
 * @Data 2022/5/19 8:58
 * @Version
 */
public class CustomLogoutFilter extends LogoutFilter {
    private LoginOrgManager loginOrgManager;

    public LoginOrgManager getLoginOrgManager() {
        return loginOrgManager;
    }

    public void setLoginOrgManager(LoginOrgManager loginOrgManager) {
        this.loginOrgManager = loginOrgManager;
    }

    /**
     * 退出登录时,从 LoginOrgManager.resources 删除对应的组织信息
     * @param request
     * @param response
     * @return
     * @throws Exception
     */
    @Override
    protected boolean preHandle(ServletRequest request, ServletResponse response) throws Exception {
        Subject subject = this.getSubject(request , response);
        LoginOrgManager loginOrgManager = getLoginOrgManager();
        LoginUserRealm userRealm = (LoginUserRealm) loginOrgManager.get((String) subject.getSession().getId());
        if (UserUtil.isLoginOrg(userRealm , (String) subject.getSession().getId())){
            loginOrgManager.remove((String) subject.getSession().getId());
        }

        return super.preHandle(request, response);
    }
}

6.自定义realm:

package org.bluedream.core.config.shiro;

import org.apache.shiro.authc.*;
import org.apache.shiro.authz.AuthorizationInfo;
import org.apache.shiro.authz.SimpleAuthorizationInfo;
import org.apache.shiro.realm.AuthorizingRealm;
import org.apache.shiro.subject.PrincipalCollection;
import org.apache.shiro.util.ByteSource;
import org.bluedream.comm.utils.EmptyUtil;
import org.bluedream.core.config.exception.OrgNotPermitException;
import org.bluedream.core.config.exception.OrgNullPointException;
import org.bluedream.core.module.login.service.LoginService;
import org.bluedream.core.module.sys.entity.Menu;
import org.bluedream.core.module.sys.entity.Role;
import org.bluedream.core.module.sys.entity.User;
import org.springframework.beans.factory.annotation.Autowired;
import java.util.List;

public class CustomRealm extends AuthorizingRealm {
    @Autowired
    private LoginService loginService;

    @Override
    public boolean isPermitted(PrincipalCollection principals, String permission) {
        String loginCode = principals.getPrimaryPrincipal().toString();
        return loginCode.equals("system")||super.isPermitted(principals, permission);
    }

    @Override
    public boolean hasRole(PrincipalCollection principal, String roleIdentifier) {
        String loginCode = principal.getPrimaryPrincipal().toString();
        return loginCode.equals("system")||super.hasRole(principal, roleIdentifier);
    }

    /**
     * 授权信息
     * @param principalCollection
     * @return
     */
    @Override
    protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principalCollection) {
        try {
            // 获取登录用户
            String loginCode = principalCollection.getPrimaryPrincipal().toString();
            User user = loginService.getLoginUser(loginCode);
            // 添加角色 、 权限 至shiro 权限管理器
            SimpleAuthorizationInfo authorizationInfo = new SimpleAuthorizationInfo();
            List<Role> roleList = loginService.getRoleList(user);
            List<Menu> permissions = loginService.getMenuPermissions(user);

            authorizationInfo.addRoles(loginService.getRoleIds(user));

            authorizationInfo.addStringPermissions(loginService.getMenuPermissions2String(user));
            return authorizationInfo;
        }catch (Exception e1){
            e1.printStackTrace();
        }
        return null;
    }

    /**
     * 用户登录时的 身份认证
     * @param authenticationToken
     * @return
     * @throws AuthenticationException
     */
    @Override
    protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken authenticationToken) throws AuthenticationException {
        CustomUsernamePasswordToken token = (CustomUsernamePasswordToken) authenticationToken;
        String username = token.getUsername();
        String orgCode = token.getOrgCode();

        String loginCode = authenticationToken.getPrincipal().toString();
        if (EmptyUtil.isEmpty(orgCode)){
            throw new OrgNullPointException("登录组织不能为空");
        }

        //checkLoginValidityByOrg方法:验证登录用户是否拥有登录该组织的权限
        User loginUser = loginService.checkLoginValidityByOrg(loginCode , orgCode);
        if (EmptyUtil.isEmpty(loginUser)){
            throw new OrgNotPermitException("登录组织没有授权或账号信息错误");
        }

        return new SimpleAuthenticationInfo(loginCode, loginUser.getPassword(), ByteSource.Util.bytes(loginCode) , this.getClass().getName());
    }

}

7.shiro config配置类:

package org.bluedream.core.config.shiro;

import at.pollux.thymeleaf.shiro.dialect.ShiroDialect;
import org.apache.shiro.authc.credential.HashedCredentialsMatcher;
import org.apache.shiro.mgt.RememberMeManager;
import org.apache.shiro.mgt.SecurityManager;
import org.apache.shiro.session.SessionListener;
import org.apache.shiro.session.mgt.SessionManager;
import org.apache.shiro.session.mgt.eis.*;
import org.apache.shiro.spring.LifecycleBeanPostProcessor;
import org.apache.shiro.spring.security.interceptor.AuthorizationAttributeSourceAdvisor;
import org.apache.shiro.spring.web.ShiroFilterFactoryBean;
import org.apache.shiro.web.filter.authc.FormAuthenticationFilter;
import org.apache.shiro.web.filter.authc.LogoutFilter;
import org.apache.shiro.web.mgt.CookieRememberMeManager;
import org.apache.shiro.web.mgt.DefaultWebSecurityManager;
import org.apache.shiro.web.servlet.SimpleCookie;
import org.apache.shiro.web.session.mgt.DefaultWebSessionManager;
import org.bluedream.core.config.FilterChainDefinitionMap;
import org.bluedream.core.config.shiro.loginOrganization.LoginOrgManager;
import org.bluedream.core.utils.PasswordHelper;
import org.bluedream.core.utils.YmlRead;
import org.springframework.aop.framework.autoproxy.DefaultAdvisorAutoProxyCreator;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.context.annotation.DependsOn;

import javax.servlet.Filter;
import java.util.Map;

@Configuration
public class ShiroConfig {
//    private String contextPath = (String) YmlRead.getValue("application.yml" , "server.servlet.context-path");
    /**
     * 自定义realm
     * @return
     */
    @Bean
    public CustomRealm customRealm(){
        CustomRealm realm = new CustomRealm();
        realm.setCredentialsMatcher(hashedCredentialsMatcher());
        return realm;
    }

    @Bean
    public SecurityManager securityManager(){
        DefaultWebSecurityManager securityManager = new DefaultWebSecurityManager();
        securityManager.setRealm(customRealm());
        securityManager.setSessionManager(sessionManager());
        // 记住我
        securityManager.setRememberMeManager(rememberMeManager());
        return securityManager;                           
    }

    /**
     * 自定义 凭证匹配器
     * @return
     */
    @Bean
    public HashedCredentialsMatcher hashedCredentialsMatcher(){
        HashedCredentialsMatcher credentialsMatcher = new HashedCredentialsMatcher();
        credentialsMatcher.setHashAlgorithmName(PasswordHelper.ALGORITHM_NAME);
        credentialsMatcher.setHashIterations(PasswordHelper.HASH_ITERATIONS);
        return credentialsMatcher;
    }

    @Bean
    public ShiroFilterFactoryBean shiroFilterFactoryBean(SecurityManager securityManager){
        ShiroFilterFactoryBean factoryBean = new ShiroFilterFactoryBean();
        // 装载 securityManager! 必要配置
        factoryBean.setSecurityManager(securityManager);
        // login 认证控制器
        factoryBean.setLoginUrl(YmlRead.getValueToString("application.yml", "shiro.loginUrl"));
        // login success 跳转url
        factoryBean.setSuccessUrl(YmlRead.getValueToString("application.yml", "shiro.successUrl"));
        // login no role or no Permission todo: 验证失败的处理 待测试
        factoryBean.setUnauthorizedUrl("/login");

        Map<String , Filter> filters = factoryBean.getFilters();
        filters.put("authc" , this.authenticationFilter());
        filters.put("logout" , this.logoutFilter());

        FilterChainDefinitionMap chains = new FilterChainDefinitionMap();
        chains.setDefaultFilterChainDefinitions(YmlRead.getValueToString("application.yml", "shiro.defaultFilterChainDefinitions"));
        factoryBean.setFilterChainDefinitionMap(chains.getObject());
        return factoryBean;
    }

    private LogoutFilter logoutFilter(){
        CustomLogoutFilter logoutFilter = new CustomLogoutFilter();
        logoutFilter.setLoginOrgManager(loginOrgManager());
        logoutFilter.setRedirectUrl(YmlRead.getValueToString("application.yml", "shiro.loginUrl"));
        return logoutFilter;
    }

    private FormAuthenticationFilter authenticationFilter(){
        CustomFormAuthenticationFilter filter = new CustomFormAuthenticationFilter();
        filter.setUsernameParam("loginCode");
        filter.setOrgCodeParam("orgCode");
        filter.setRememberMeParam("rememberMe");
        filter.setLoginOrgManager(loginOrgManager());
        return filter;
    }

    /**
     * LifecycleBeanPostProcessor
     * 管理shiro一些bean的生命周期 即bean初始化 与销毁
     * @return
     */
    @Bean(name = {"lifecycleBeanPostProcessor"})
    public LifecycleBeanPostProcessor lifecycleBeanPostProcessor(){
        return new LifecycleBeanPostProcessor();
    }

    /**
     * 开启shiro注解 必要bean,依赖于lifecycleBeanPostProcessor
     * 作用: 用来扫描上下文寻找所有的Advistor(通知器), 将符合条件的Advisor应用到切入点的Bean中,需
     * 要在LifecycleBeanPostProcessor创建后才可以创建
     * @return
     */
    @Bean
    @DependsOn("lifecycleBeanPostProcessor")
    public DefaultAdvisorAutoProxyCreator defaultAdvisorAutoProxyCreator(){
        DefaultAdvisorAutoProxyCreator proxyCreator = new DefaultAdvisorAutoProxyCreator();
        proxyCreator.setProxyTargetClass(true);
        return proxyCreator;
    }

    /**
     * AuthorizationAttributeSourceAdvisor
     * 作用:加入shiro注解的使用,不加入这个AOP注解不生效(shiro的注解 例如 @RequiresGuest)
     */
    @Bean
    public AuthorizationAttributeSourceAdvisor authorizationAttributeSourceAdvisor(){
        AuthorizationAttributeSourceAdvisor advisor = new AuthorizationAttributeSourceAdvisor();
        advisor.setSecurityManager(securityManager());
        return advisor;
    }

    /**
     * session 会话管理设置
     * @return
     */
    @Bean
    public SessionManager sessionManager(){
        DefaultWebSessionManager sessionManager = new DefaultWebSessionManager();
        // session 失效时间
        sessionManager.setGlobalSessionTimeout(1000*60*30);
        // 删除无效session
        sessionManager.setDeleteInvalidSessions(true);
/*        // 去掉URL中的JSESSIONID
        sessionManager.setSessionIdUrlRewritingEnabled(true);

        sessionManager.setSessionIdCookie(rememberMeCookie());*/
        return sessionManager;
    }

    /**
     * 记住我 设置
     * @return
     */
    @Bean
    public RememberMeManager rememberMeManager(){
        CookieRememberMeManager rememberMeManager = new CookieRememberMeManager();
        // 定义 rememberMe Cookie
        rememberMeManager.setCookie(rememberMeCookie());
        return rememberMeManager;
    }

    /**
     * 记住我 cookie设置,需要注意,开启记住我,需要user对象能够实现序列化
     * @return
     */
    @Bean
    public SimpleCookie rememberMeCookie(){
        SimpleCookie cookie = new SimpleCookie();
        // 设置cookie保存时长
        cookie.setMaxAge(30*24*60*60);
        // cookie中的名字
        cookie.setName("rememberMe");
        return cookie;
    }

    /**
     * 前端 shiro标签
     * @return
     */
    @Bean(name = "shiroDialect")
    public ShiroDialect shiroDialect(){
        return new ShiroDialect();
    }

    /**
     * 注册 shiro 监听
     * @return
     */
    @Bean(name = "sessionListener")
    public SessionListener sessionListener(){
        return new CustomShiroSessionListener();
    }

    /**
     * Session ID 生成器
     * @return
     */
    @Bean
    public SessionIdGenerator sessionIdGenerator(){
        return new JavaUuidSessionIdGenerator();
    }

    /**
     * todo 未完成
     * @return
     */
    public SessionDAO sessionDAO(){
        MemorySessionDAO sessionDAO = new MemorySessionDAO();
        return sessionDAO;
    }

    @Bean
    public LoginOrgManager loginOrgManager(){
        return new LoginOrgManager();
    }
}

User工具类:

package org.bluedream.core.utils;

import org.apache.shiro.SecurityUtils;
import org.apache.shiro.UnavailableSecurityManagerException;
import org.apache.shiro.session.InvalidSessionException;
import org.apache.shiro.session.Session;
import org.apache.shiro.session.mgt.SimpleSession;
import org.apache.shiro.subject.Subject;
import org.apache.shiro.web.mgt.DefaultWebSecurityManager;
import org.apache.shiro.web.session.mgt.DefaultWebSessionManager;
import org.bluedream.comm.utils.EmptyUtil;
import org.bluedream.core.config.shiro.loginOrganization.LoginOrgManager;
import org.bluedream.core.config.shiro.loginOrganization.LoginUserRealm;
import org.bluedream.core.module.login.service.LoginService;
import org.bluedream.core.module.sys.entity.Organization;
import org.bluedream.core.module.sys.entity.User;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

import javax.servlet.http.HttpSession;
import java.util.List;
import java.util.Map;


public class UserUtil {
    private static Logger logger = LoggerFactory.getLogger(UserUtil.class);

    private UserUtil(){
        throw new AssertionError();
    }


    public static String getLoginOrgCode(){
        LoginOrgManager manager = SpringUtil.getBean(LoginOrgManager.class);
        String key = (String) getSession().getId();
        LoginUserRealm realm = (LoginUserRealm) manager.get(key);

        if (isLoginOrg(realm , key)){
            return realm.getOrgCode();
        }
        return null;
    }

    /**
     * 验证 LoginUserRealm 是否正确
     * @param realm
     * @param sessionIdValidity
     * @return
     */
    public static boolean isLoginOrg(LoginUserRealm realm , String sessionIdValidity){
        /*
        1. 如果 LoginUserRealm 为空,则返回 false
        2. 验证 LoginOrgManager resources的key是否和session中的 LoginOrgManager.LOGIN_ORG_SUBJECT_SESSION_ID 是否一致
        3. 验证 LoginUserRealm 中的 orgCode是否和session中的 LoginOrgManager.LOGIN_ORG_MANAGER_KEY 是否一致
         */
        if (EmptyUtil.isEmpty(realm)){
            return false;
        }
        HttpSession session = realm.getLoginOrgSession();
        if (sessionIdValidity.equals(session.getAttribute(LoginOrgManager.LOGIN_ORG_SUBJECT_SESSION_ID))
                && realm.getOrgCode().equals(session.getAttribute(LoginOrgManager.LOGIN_ORG_MANAGER_KEY))){
            return true;
        }
        return false;
    }

    public static Session getSession(){
        try {
           Subject subject = getSubject();
           Session session = subject.getSession(false);
           if (session == null){
               return new SimpleSession();
           }
           return session;
        }catch (UnavailableSecurityManagerException var2){
        }catch (InvalidSessionException var3){
        }
        return new SimpleSession();
    }

    public static Subject getSubject() {
        return SecurityUtils.getSubject();
    }

    public static void testThreadContext(){
        LoginOrgManager manager = SpringUtil.getBean(LoginOrgManager.class);
        for (Map.Entry<String , Object> m1:manager.getResources().entrySet()
             ) {
            System.out.println("login org key = " + m1.getKey() + "; login org value = " + m1.getValue());
        }
    };
}

Spring工具类:

package org.bluedream.core.utils;

import org.springframework.beans.BeansException;
import org.springframework.context.ApplicationContext;
import org.springframework.context.ApplicationContextAware;
import org.springframework.stereotype.Component;

@Component
public class SpringUtil implements ApplicationContextAware {
    private static ApplicationContext applicationContext;

    @Override
    public void setApplicationContext(ApplicationContext applicationContext) throws BeansException {
        if(SpringUtil.applicationContext == null) {
            SpringUtil.applicationContext = applicationContext;
        }
    }

    public static ApplicationContext getApplicationContext() {
        return applicationContext;
    }

    public static Object getBean(String name){
        return getApplicationContext().getBean(name);
    }

    public static <T> T getBean(Class<T> clazz){
        return getApplicationContext().getBean(clazz);
    }

    public static <T> T getBean(String name , Class<T> clazz){
        return getApplicationContext().getBean(name , clazz);
    }

}

 参考文档:Shiro基于组织机构的登录验证_sas???的博客-CSDN博客

mr_foxsand
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
spring---Shiro拦截器
weixin_43590392的博客
11-10 1001
拦截器 1.结构架构图 2.Shiro拦截器 2.1.ShiroConfig 代码: package com.auth; import org.apache.shiro.mgt.DefaultSessionStorageEvaluator; import org.apache.shiro.mgt.DefaultSubjectDAO; import org.apache.shiro.mgt.SecurityManager; import org.apache.shiro.spring.web.ShiroFi
shrio登录流程
lluodayu的专栏
03-06 387
1、登录发起 shrio登录是由subject.login(token)发起的通过SecurityUtils.getSubject()获取subject,subject是绑定线程的,在web环境中通过FormAuthenticationFilter 中onAccessDenied(……)-> executeLogin(request, response)->Subject...
SSM项目中自定义Shiro权限过滤器实现多个权限的或操作
YuFeng_12138的博客
06-02 920
我在做ssm+shiro的项目过程中的学习经验,记录一下。
shiro SecurityUtils.getSubject()深度分析
热门推荐
qq_39575279的博客
01-30 2万+
1.总的来说,SecurityUtils.getSubject()是每个请求创建一个Subject, 并保存到ThreadContext的resources(ThreadLocal&lt;Map&lt;Object, Object&gt;&gt;)变量中,也就是一个http请求一个subject,并绑定到当前线程。  问题来了:.subject.login()登陆认证成功后,下一次请求如何知道是那...
Shiro系列教程拦截器Filter源码分析
大新博客
04-27 5647
相关文章 Shiro系列教程 AccessControlFilter源码分析 UserFilter类下载源码 //登录用户与记住我的用户均可通过 public class UserFilter extends AccessControlFilter { protected boolean isAccessAllowed(ServletRequest
java shiro实现退出登陆清空缓存
08-31
在本文中,我们将讨论如何利用 Shiro 实现用户退出登录时清空缓存。 首先,Shiro 提供了一个 `LogoutFilter` 过滤器,用于处理用户的登出请求。默认情况下,`LogoutFilter` 在用户登出时会清除会话中的所有信息,...
shiro登录/退出demo(web应用)
05-03
在这个"shiro登录/退出demo(web应用)"项目中,我们将深入理解Shiro如何在Web环境中处理用户登录退出操作。 首先,项目的构建环境基于Eclipse IDE,这是一个广泛使用的Java开发工具,便于代码编写、调试和项目管理...
SpringBoot整合Shiro后实现免密登录
04-11
SpringBoot整合Shiro后实现免密登录 1,说明一下步骤,需要在原来基础新增三个文件 2,新增CustomToken,重写UsernamePasswordToken免密登录调用方法和密码登录调用方法都在里面。 3,新增...
shiro之记住登录信息
08-29
Shiro提供了记住我(RememberMe)的功能,当关闭浏览器时下次再次打开还能记住你的信息,下面小编给大家分享shiro之记住登录信息的相关知识,感兴趣的朋友一起看看吧
spring boot整合Shiro实现单点登录的示例代码
08-28
Spring Boot 整合 Shiro 实现单点登录的示例代码 本篇文章主要介绍了 Spring Boot 整合 Shiro 实现单点登录的示例代码的知识点,旨在帮助读者快速掌握该技术的实现方法。下面是相关知识点的详细介绍: 一、Shiro ...
【JavaWeb】shiro认证、授权源码流程
qq_43654226的博客
05-06 222
概述前提(代码不全,可略过此篇博客) 1、自定义UsernamePasswordToken:UsenamePasswordToken一个简单的用户名/密码身份验证令牌,可支持最广泛的身份验证机制,所以我希望的认证能够围绕token进行 @Data @AllArgsConstructor public class CustomUsernamePasswordToken extends Usernam...
apache shiro内置过滤器 标签 注解
zwj1030711290的CSDN
10-18 338
perms:例子/admins/user/**=perms[user:add:*],perms参数可以写多个,多个时必须加上引号,并且参数之间用逗号分割,例如/admins/user/**=perms["user:add:*,user:modify:*"],当有多个参数时必须每个参数都通过才通过,想当于isPermitedAll()方法。roles(权限验证) org.apache.shiro.web.filter.authz.RolesAuthorizationFilter。属性和roles一样;
Shiro常用的Filter过滤器
a1498665771的博客
02-22 646
Shiro常用的Filter过滤器
java shirofilter_Spring项目集成ShiroFilter简单实现权限管理
weixin_36488777的博客
02-16 226
Shiros是我们开发中常用的用来实现权限控制的一种工具包,它主要有认证、授权、加密、会话管理、与Web集成、缓存等功能。我是从事javaweb工作的,我就经常遇到需要实现权限控制的项目,之前我们都是靠查询数据获取列表拼接展示的,还有的是及时的判断权限的问题的,现在有了Shiros了,我们就可以统一的进行设置权限问题,Shrios的实现也是很简单的,下面让我们来看看具体实现步骤web.xml配置因...
Shiro退出机制是什么
weixin_66107852的博客
06-06 282
清除身份认证信息:该方法会删除当前用户的身份认证信息,导致在下一次访问需要身份认证的资源时,用户需要重新进行身份认证。清除 Session:该方法会自动清除用户的 Session 信息,包括 Session 会话数据、属性等。移除所有授权信息:该方法会移除用户的所有授权信息,导致在下一次访问受限的资源时,用户需要重新获取授权。当当前用户需要退出系统时,可以通过调用。方法来执行退出操作
Springboot整合Shiro实现登录认证
最新发布
qq_42077317的博客
07-08 1043
另外,如果我们想要控制对于接口访问权限,也可以使用Shiro相关注解实现,比如像 @RequestPermissions这样的注解就可以进行控制用户的权限,这里就不做过多说明了。Realm,可以有1个或多个Realm,即安全实体数据源,即用于获取安全实体的;Shiro 是一个功能强大且易于使用的轻量级Java安全框架,包括身份验证、授权、加密及会话管理,使用Shiro易于理解的API,可以轻松地保护任何应用程序。SecurityManager即安全管理器,可以视为拦截器,拦截请求,并转至shiro中处理。
【JavaEE】shiro退出过滤器LogoutFilter自定义跳转url
分享记录开发中的问题,欢迎一起探讨!
05-08 6441
shiro退出过滤器LogoutFilter自定义跳转url 自定义一个filter,其实还是LogoutFilter <!--自定义退出过滤器--> <bean id="logoutFilter" class="org.apache.shiro.web.filter.authc.LogoutFilter"> <property name="redirect......
关于shiro拦截器filterChainDefinitions的设置及使用过程源码分析
平凡的世界
05-14 1万+
shiro源码分析,查了些资料,针对于在shiro框架中设置filterChainDefinitions遇到的小问题,做一下分析备忘记录。问题描述:在设置filterChainDefinitions的时候,如果/k/**设置在/k/index之前,那么/k/index将不会生效,有规则说:拦截器的优先级是从上到下,从左到右,如果有匹配的拦截器就会阻断并返回。源码分析filterChainDefin...
快速掌握shiro安全框架(四)之登出、角色验证、权限验证
bigdata_dog的博客
03-04 371
shiro登出、角色验证、权限验证的示例
Java使用shiro完成用户登录认证功能
03-29
下面是使用Shiro完成用户登录认证功能的步骤: 1. 引入Shiro依赖 在项目的pom.xml中引入Shiro的依赖: ``` <groupId>org.apache.shiro <artifactId>shiro-core <version>1.7.1 ``` 2. 配置Shiro 在项目的...

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值