org.springframework.security.core.userdetails.UsernameNotFoundException,三步解决Activiti7和Security冲突问题

已于 2024-04-15 10:07:43 修改
阅读量866 收藏 6
点赞数 5
分类专栏: # activiti 文章标签: java 中间件
于 2024-02-01 11:39:36 首次发布
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/qq_23845083/article/details/135968394
版权

内容更新:

  • 更新时间:2024-04-09 10:05:00
  • 更新内容:兼容初始化用户信息 + 动态往 InMemoryUserDetailsManager 对象中添加用户信息。

1 前言

    本文旨在解决Activiti7 和 Security 框架的鉴权冲突问题

  • activiti 升级到 activiti7 版本之后,加入了 Security 框架用于权限校验;
  • 很多博客都写到了这个冲突问题,但给的解决方案都是东抄西抄,估计自己都没搞懂,代码也没贴全,真的让人感觉蛋疼;

2 相关应用和工具版本

  • Spring-boot 2.2.2.RELEASE
  • Spring Security 5.2.1
  • Activiti 7.1.0.M6
  • Open JDK11

3 分析问题原因和解决方法

  • 原因:Activiti7版本之后加入了权限校验功能导致。
  • 网上很多看似没问题的解决方法思路:
        a)重写 loadUserByUsername 方法。这种做法并不能解决用户权限问题,实际查询 “待办任务” 列表时仍然报错;
        b)在项目的 @SpringBootApplication 注解上新增 include 内容,五花八门,也仍然会报错;
        c)定义 usersGroupsAndRoles 对象,把用户信息添加到里面 usersGroupsAndRoles 对象中,在项目启动时便初始化所有用户。这种做法后续再新增用户时,无法再加入到 usersGroupsAndRoles 对象中,有很大的局限性;
  • 正确解决方法:通过向 InMemoryUserDetailsManager 对象中动态塞入用户名,基于 Security 安全框架直接做伪登录操作,而且也会不破坏原有系统的登录操作。核心方法是:InMemoryUserDetailsManager.createUser() 方法。
    ``

4 以下是具体报错:

org.springframework.security.core.userdetails.UsernameNotFoundException

org.apache.ibatis.exceptions.PersistenceException: 
### Error querying database.  Cause: org.springframework.security.core.userdetails.UsernameNotFoundException: 物业维修班长
### Cause: org.springframework.security.core.userdetails.UsernameNotFoundException: 物业维修班长
	at org.apache.ibatis.exceptions.ExceptionFactory.wrapException(ExceptionFactory.java:30)
	at org.apache.ibatis.session.defaults.DefaultSqlSession.selectList(DefaultSqlSession.java:149)
	at org.apache.ibatis.session.defaults.DefaultSqlSession.selectList(DefaultSqlSession.java:140)
	at org.activiti.engine.impl.db.DbSqlSession.selectListWithRawParameter(DbSqlSession.java:404)
	at org.activiti.engine.impl.db.DbSqlSession.selectList(DbSqlSession.java:374)
	at org.activiti.engine.impl.db.DbSqlSession.selectList(DbSqlSession.java:365)
	at org.activiti.engine.impl.persistence.entity.data.impl.MybatisTaskDataManager.findTasksByQueryCriteria(MybatisTaskDataManager.java:66)
	at org.activiti.engine.impl.persistence.entity.TaskEntityManagerImpl.findTasksByQueryCriteria(TaskEntityManagerImpl.java:260)
	at org.activiti.engine.impl.TaskQueryImpl.executeList(TaskQueryImpl.java:1357)
	at org.activiti.engine.impl.AbstractQuery.execute(AbstractQuery.java:163)
	at org.activiti.engine.impl.interceptor.CommandInvoker$1.run(CommandInvoker.java:37)
	at org.activiti.engine.impl.interceptor.CommandInvoker.executeOperation(CommandInvoker.java:78)
	at org.activiti.engine.impl.interceptor.CommandInvoker.executeOperations(CommandInvoker.java:57)
	at org.activiti.engine.impl.interceptor.CommandInvoker.execute(CommandInvoker.java:42)
	at org.activiti.engine.impl.interceptor.TransactionContextInterceptor.execute(TransactionContextInterceptor.java:48)
	at org.activiti.engine.impl.interceptor.CommandContextInterceptor.execute(CommandContextInterceptor.java:59)
	at org.activiti.spring.SpringTransactionInterceptor$1.doInTransaction(SpringTransactionInterceptor.java:47)
	at org.springframework.transaction.support.TransactionTemplate.execute(TransactionTemplate.java:140)
	at org.activiti.spring.SpringTransactionInterceptor.execute(SpringTransactionInterceptor.java:45)
	at org.activiti.engine.impl.interceptor.LogInterceptor.execute(LogInterceptor.java:29)
	at org.activiti.engine.impl.cfg.CommandExecutorImpl.execute(CommandExecutorImpl.java:44)
	at org.activiti.engine.impl.cfg.CommandExecutorImpl.execute(CommandExecutorImpl.java:39)
	at org.activiti.engine.impl.AbstractQuery.list(AbstractQuery.java:137)
	at com.xh.niec.service.impl.ActCommonServiceImpl.createTaskQueryByCandidateOrAssigne(ActCommonServiceImpl.java:127)
	at com.xh.niec.service.impl.ActCommonServiceImpl.createQueryAllTask(ActCommonServiceImpl.java:154)
	at com.xh.niec.service.impl.FaultOrderServiceImpl.getFaultOrderTaskList(FaultOrderServiceImpl.java:212)
	at com.xh.niec.service.impl.FaultOrderServiceImpl$$FastClassBySpringCGLIB$$688da1f8.invoke(<generated>)
	at org.springframework.cglib.proxy.MethodProxy.invoke(MethodProxy.java:218)
	at org.springframework.aop.framework.CglibAopProxy$DynamicAdvisedInterceptor.intercept(CglibAopProxy.java:685)
	at com.xh.niec.service.impl.FaultOrderServiceImpl$$EnhancerBySpringCGLIB$$2f5a7976.getFaultOrderTaskList(<generated>)
	at com.xh.niec.controller.FaultOrderController.getFaultOrderTaskList(FaultOrderController.java:130)
	at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
	at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
	at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
	at java.base/java.lang.reflect.Method.invoke(Method.java:566)
	at org.springframework.web.method.support.InvocableHandlerMethod.doInvoke(InvocableHandlerMethod.java:190)
	at org.springframework.web.method.support.InvocableHandlerMethod.invokeForRequest(InvocableHandlerMethod.java:138)
	at org.springframework.web.servlet.mvc.method.annotation.ServletInvocableHandlerMethod.invokeAndHandle(ServletInvocableHandlerMethod.java:106)
	at org.springframework.web.servlet.mvc.method.annotation.RequestMappingHandlerAdapter.invokeHandlerMethod(RequestMappingHandlerAdapter.java:888)
	at org.springframework.web.servlet.mvc.method.annotation.RequestMappingHandlerAdapter.handleInternal(RequestMappingHandlerAdapter.java:793)
	at org.springframework.web.servlet.mvc.method.AbstractHandlerMethodAdapter.handle(AbstractHandlerMethodAdapter.java:87)
	at org.springframework.web.servlet.DispatcherServlet.doDispatch(DispatcherServlet.java:1040)
	at org.springframework.web.servlet.DispatcherServlet.doService(DispatcherServlet.java:943)
	at org.springframework.web.servlet.FrameworkServlet.processRequest(FrameworkServlet.java:1006)
	at org.springframework.web.servlet.FrameworkServlet.doGet(FrameworkServlet.java:898)
	at javax.servlet.http.HttpServlet.service(HttpServlet.java:634)
	at org.springframework.web.servlet.FrameworkServlet.service(FrameworkServlet.java:883)
	at javax.servlet.http.HttpServlet.service(HttpServlet.java:741)
	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:231)
	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)
	at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:53)
	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)
	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)
	at com.gh.common.filter.TokenAuthenticationFilter.doFilterInternal(TokenAuthenticationFilter.java:53)
	at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119)
	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)
	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)
	at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:320)
	at org.springframework.security.web.access.intercept.FilterSecurityInterceptor.invoke(FilterSecurityInterceptor.java:126)
	at org.springframework.security.web.access.intercept.FilterSecurityInterceptor.doFilter(FilterSecurityInterceptor.java:90)
	at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
	at org.springframework.security.web.access.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:118)
	at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
	at org.springframework.security.web.session.SessionManagementFilter.doFilter(SessionManagementFilter.java:137)
	at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
	at org.springframework.security.web.authentication.AnonymousAuthenticationFilter.doFilter(AnonymousAuthenticationFilter.java:111)
	at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
	at org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter.doFilter(SecurityContextHolderAwareRequestFilter.java:158)
	at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
	at org.springframework.security.web.savedrequest.RequestCacheAwareFilter.doFilter(RequestCacheAwareFilter.java:63)
	at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
	at org.springframework.security.oauth2.provider.authentication.OAuth2AuthenticationProcessingFilter.doFilter(OAuth2AuthenticationProcessingFilter.java:176)
	at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
	at org.springframework.security.web.authentication.logout.LogoutFilter.doFilter(LogoutFilter.java:116)
	at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
	at org.springframework.security.web.header.HeaderWriterFilter.doHeadersAfter(HeaderWriterFilter.java:92)
	at org.springframework.security.web.header.HeaderWriterFilter.doFilterInternal(HeaderWriterFilter.java:77)
	at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119)
	at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
	at org.springframework.security.web.context.SecurityContextPersistenceFilter.doFilter(SecurityContextPersistenceFilter.java:105)
	at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
	at org.springframework.security.web.context.request.async.WebAsyncManagerIntegrationFilter.doFilterInternal(WebAsyncManagerIntegrationFilter.java:56)
	at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119)
	at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
	at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:215)
	at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:178)
	at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:358)
	at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:271)
	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)
	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)
	at org.springframework.web.filter.RequestContextFilter.doFilterInternal(RequestContextFilter.java:100)
	at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119)
	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)
	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)
	at org.springframework.web.filter.FormContentFilter.doFilterInternal(FormContentFilter.java:93)
	at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119)
	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)
	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)
	at org.springframework.boot.actuate.metrics.web.servlet.WebMvcMetricsFilter.doFilterInternal(WebMvcMetricsFilter.java:108)
	at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119)
	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)
	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)
	at org.springframework.web.filter.CharacterEncodingFilter.doFilterInternal(CharacterEncodingFilter.java:201)
	at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119)
	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)
	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)
	at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:202)
	at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:96)
	at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:526)
	at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:139)
	at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:92)
	at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:74)
	at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:343)
	at org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:367)
	at org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:65)
	at org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:860)
	at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1591)
	at org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49)
	at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128)
	at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628)
	at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
	at java.base/java.lang.Thread.run(Thread.java:834)
Caused by: org.springframework.security.core.userdetails.UsernameNotFoundException: 物业维修班长
	at org.springframework.security.provisioning.InMemoryUserDetailsManager.loadUserByUsername(InMemoryUserDetailsManager.java:156)
	at org.activiti.core.common.spring.identity.ActivitiUserGroupManagerImpl.getUserGroups(ActivitiUserGroupManagerImpl.java:21)
	at org.activiti.engine.impl.TaskQueryImpl.getGroupsForCandidateUser(TaskQueryImpl.java:1224)
	at org.activiti.engine.impl.TaskQueryImpl.getCandidateGroups(TaskQueryImpl.java:1216)
	at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
	at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
	at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
	at java.base/java.lang.reflect.Method.invoke(Method.java:566)
	at org.apache.ibatis.reflection.invoker.MethodInvoker.invoke(MethodInvoker.java:44)
	at org.apache.ibatis.reflection.wrapper.BeanWrapper.getBeanProperty(BeanWrapper.java:164)
	at org.apache.ibatis.reflection.wrapper.BeanWrapper.get(BeanWrapper.java:49)
	at org.apache.ibatis.reflection.MetaObject.getValue(MetaObject.java:122)
	at org.apache.ibatis.scripting.xmltags.DynamicContext$ContextMap.get(DynamicContext.java:102)
	at org.apache.ibatis.scripting.xmltags.DynamicContext$ContextAccessor.getProperty(DynamicContext.java:113)
	at org.apache.ibatis.ognl.OgnlRuntime.getProperty(OgnlRuntime.java:2719)
	at org.apache.ibatis.ognl.ASTProperty.getValueBody(ASTProperty.java:114)
	at org.apache.ibatis.ognl.SimpleNode.evaluateGetValueBody(SimpleNode.java:212)
	at org.apache.ibatis.ognl.SimpleNode.getValue(SimpleNode.java:258)
	at org.apache.ibatis.ognl.ASTNotEq.getValueBody(ASTNotEq.java:50)
	at org.apache.ibatis.ognl.SimpleNode.evaluateGetValueBody(SimpleNode.java:212)
	at org.apache.ibatis.ognl.SimpleNode.getValue(SimpleNode.java:258)
	at org.apache.ibatis.ognl.ASTOr.getValueBody(ASTOr.java:61)
	at org.apache.ibatis.ognl.SimpleNode.evaluateGetValueBody(SimpleNode.java:212)
	at org.apache.ibatis.ognl.SimpleNode.getValue(SimpleNode.java:258)
	at org.apache.ibatis.ognl.Ognl.getValue(Ognl.java:493)
	at org.apache.ibatis.ognl.Ognl.getValue(Ognl.java:457)
	at org.apache.ibatis.scripting.xmltags.OgnlCache.getValue(OgnlCache.java:46)
	at org.apache.ibatis.scripting.xmltags.ExpressionEvaluator.evaluateBoolean(ExpressionEvaluator.java:32)
	at org.apache.ibatis.scripting.xmltags.IfSqlNode.apply(IfSqlNode.java:34)
	at org.apache.ibatis.scripting.xmltags.MixedSqlNode.lambda$apply$0(MixedSqlNode.java:32)
	at java.base/java.util.ArrayList.forEach(ArrayList.java:1541)
	at org.apache.ibatis.scripting.xmltags.MixedSqlNode.apply(MixedSqlNode.java:32)
	at org.apache.ibatis.scripting.xmltags.DynamicSqlSource.getBoundSql(DynamicSqlSource.java:39)
	at org.apache.ibatis.mapping.MappedStatement.getBoundSql(MappedStatement.java:297)
	at org.apache.ibatis.executor.CachingExecutor.query(CachingExecutor.java:81)
	at org.apache.ibatis.session.defaults.DefaultSqlSession.selectList(DefaultSqlSession.java:147)
	... 120 more

5 解决方案

  • 第一步:新建一个配置类(ActivitiSecurityConfiguration.java)
  • 第二步:新建一个工具类(SecurityUtil.java)
  • 第三步:调用 taskCandidateOrAssigned 方法之前,先调用工具类的 logInAs 方法

5.1 我的 pom.xml 依赖包引用

  • 其中 7.1.0.M6 包,可以尝试下把 groupId 换成 org.activiti 试试(我maven远程仓库用的是阿里的,但是下载下来项目启动不了);
  • 或使用公司私有仓库,把 7.1.0.M6.jar 文件按照格式上传上去,文件我放在CSDN了:7.1.0.M6.jar
<!--activiti7 相关依赖包start-->
   <dependency>
        <groupId>javax.validation</groupId>
        <artifactId>validation-api</artifactId>
    </dependency>
    <dependency>
        <groupId>com.xh</groupId>
        <artifactId>activiti-engine</artifactId>
        <version>7.1.0.M6</version>
    </dependency>
    <dependency>
        <groupId>org.activiti</groupId>
        <artifactId>activiti-spring-boot-starter</artifactId>
        <version>7.1.0.M6</version>
        <exclusions>
            <exclusion>
                <groupId>org.mybatis</groupId>
                <artifactId>mybatis</artifactId>
            </exclusion>
            <exclusion>
                <groupId>org.activiti</groupId>
                <artifactId>activiti-engine</artifactId>
            </exclusion>
        </exclusions>
    </dependency>
    <dependency>
        <groupId>de.odysseus.juel</groupId>
        <artifactId>juel-api</artifactId>
        <version>2.2.7</version>
    </dependency>
    <dependency>
        <groupId>de.odysseus.juel</groupId>
        <artifactId>juel-impl</artifactId>
        <version>2.2.7</version>
    </dependency>
    <dependency>
        <groupId>de.odysseus.juel</groupId>
        <artifactId>juel-spi</artifactId>
        <version>2.2.7</version>
    </dependency>
<!--activiti7 相关依赖包end-->

5.2 新建配置类 ActivitiSecurityConfiguration

  • 除了本类的包路径和引用SecurityUtil类的路径,其他都不要动
package com.xh.niec.config;

import com.xh.niec.model.util.SecurityUtil;
import lombok.extern.slf4j.Slf4j;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
import org.springframework.security.core.userdetails.UserDetailsService;
import org.springframework.stereotype.Component;

import javax.annotation.Resource;

/**
 * @Description: 用于解决 Activiti7 和 Security 框架的鉴权冲突问题
 * @Author: zhanleai
 * @Date:2024/1/25 13:48
 */
@Configuration
@EnableWebSecurity
@Slf4j
@Component
public class ActivitiSecurityConfiguration extends WebSecurityConfigurerAdapter {

    @Resource
    private SecurityUtil securityUtil ;

    @Override
    @Autowired
    public void configure(AuthenticationManagerBuilder auth) throws Exception {
        auth.userDetailsService(userDetailsService());
    }

    @Bean
    public UserDetailsService userDetailsService() {
        return securityUtil.findInstance();
    }

    @Override
    protected void configure(HttpSecurity http) throws Exception {
        http
            .csrf().disable()
            .authorizeRequests()
            .anyRequest()
            .authenticated()
            .and()
            .httpBasic();
    }
}

5.3 新建工具类 SecurityUtil

  • 除了本类的包路径,其他都不要动
package com.xh.niec.model.util;

import com.xh.niec.mapper.UserMapper;
import com.xh.niec.model.entity.SecurityUser;
import lombok.extern.slf4j.Slf4j;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.security.core.Authentication;
import org.springframework.security.core.GrantedAuthority;
import org.springframework.security.core.authority.SimpleGrantedAuthority;
import org.springframework.security.core.context.SecurityContextHolder;
import org.springframework.security.core.context.SecurityContextImpl;
import org.springframework.security.core.userdetails.User;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
import org.springframework.security.crypto.password.PasswordEncoder;
import org.springframework.security.provisioning.InMemoryUserDetailsManager;
import org.springframework.stereotype.Component;

import java.util.*;
import java.util.stream.Collectors;

@Component
@Slf4j
public class SecurityUtil {

    @Autowired
    private UserMapper userMapper ;

    //主要是前面的用户名,后面的随便写
    public static String[] userRoleArrays = {
            "会展领导","会展经理","会展暖通主管","会展弱电主管",
            "会展消防主管","会展安保主管","会展员工","物业项目经理",
            "物业工程部经理","物业暖通班长", "物业暖通组员","物业弱电班长",
            "物业弱电组员","物业消防班长","物业消防组员","物业维修班长",
            "物业维修组员","物业安保主管","物业安保队长","物业安保班长","文员"} ;

    private static InMemoryUserDetailsManager inMemoryUserDetailsManager ;

    public InMemoryUserDetailsManager findInstance(){
        try{
            if(SecurityUtil.inMemoryUserDetailsManager==null){
                SecurityUtil.inMemoryUserDetailsManager = new InMemoryUserDetailsManager();

                List<String> securityUserList = new ArrayList<>() ;

                //查询并添加所有用户ID
                List<SecurityUser> userList = userMapper.selectUserList(null);
                if(Objects.nonNull(userList) && userList.size()>0){
                    userList.stream().forEach(user -> {
                        securityUserList.add(user.getId().toString());
                    });
                }
                //添加所有用户角色
                securityUserList.addAll(Arrays.asList(userRoleArrays));

                if(Objects.nonNull(securityUserList) && securityUserList.size()>0){
                    String[][] userListArray = new String[securityUserList.size()][4];
                    for (int i = 0 ; i<securityUserList.size(); i++){
                        String userIdOrRoleName = securityUserList.get(i);
                        String[] userArray = {userIdOrRoleName,"password", "ROLE_ACTIVITI_USER", "GROUP_activitiTeam"};
                        userListArray[i] = userArray ;
                    }

                    for (String[] user : userListArray) {
                        List<String> authoritiesStrings = Arrays.asList(Arrays.copyOfRange(user, 2, user.length));
                        SecurityUtil.inMemoryUserDetailsManager.createUser(new User(user[0], passwordEncoder().encode(user[1]),
                                authoritiesStrings.stream().map(s -> new SimpleGrantedAuthority(s)).collect(Collectors.toList())));
                    }
                    log.info("===============初始化加载 inMemoryUserDetailsManager 完毕!!!");
                }
            }
        }catch (Exception e){
            log.info("=======================findInstance异常" + e.getMessage());
        }

        return SecurityUtil.inMemoryUserDetailsManager;
    }

    public synchronized void createUser(String userName) {
        try{
            if(!SecurityUtil.inMemoryUserDetailsManager.userExists(userName)) {
                List<SimpleGrantedAuthority> roles = new ArrayList<SimpleGrantedAuthority>(){{
                    add(new SimpleGrantedAuthority("ROLE_ACTIVITI_USER"));
                    add(new SimpleGrantedAuthority("GROUP_activitiTeam"));
                }};
                SecurityUtil.inMemoryUserDetailsManager.createUser(new User(userName, passwordEncoder().encode("password"),roles));
            }
        }catch (Exception e){
            log.info("==============createUser异常" + e.getMessage());

        }
    }

    public void logInAs(String userName) {
        try{
            createUser(userName);

            UserDetails user = findInstance().loadUserByUsername(userName);
            if (user == null) {
                throw new IllegalStateException("User " + userName + " doesn't exist, please provide a valid user");
            }

            SecurityContextHolder.setContext(new SecurityContextImpl(new Authentication() {
                @Override
                public Collection<? extends GrantedAuthority> getAuthorities() {
                    return user.getAuthorities();
                }

                @Override
                public Object getCredentials() {
                    return user.getPassword();
                }

                @Override
                public Object getDetails() {
                    return user;
                }

                @Override
                public Object getPrincipal() {
                    return user;
                }

                @Override
                public boolean isAuthenticated() {
                    return true;
                }

                @Override
                public void setAuthenticated(boolean isAuthenticated) throws IllegalArgumentException {

                }

                @Override
                public String getName() {
                    return user.getUsername();
                }
            }));
            org.activiti.engine.impl.identity.Authentication.setAuthenticatedUserId(userName);
        }catch (Exception e){
            log.info("==============logInAs异常" + e.getMessage());
        }
    }

    public PasswordEncoder passwordEncoder() {
        return new BCryptPasswordEncoder();
    }

}

5.4 调用工具类方法

  • 这里只是一个简单的调用而已,不涉及到其他任何逻辑,我就不贴所有代码了;
    在这里插入图片描述
我只会发热
关注
  • 5
    点赞
  • 6
    收藏
    觉得还不错? 一键收藏
  • 5
    评论
专栏目录
spring-security-project.zip- Spring Security实现RBAC权限模型demo
02-09
Spring Security 是一个强大的和高度可定制的身份验证和访问控制框架,广泛用于Java应用程序的安全管理。在本示例中,"spring-security-project.zip" 提供了一个基于RBAC(Role-Based Access Control)权限模型的...
Spring Security 中文教程.pdf
12-06
Core - spring-security-core.jar 1.4.1.2. Web - spring-security-web.jar 1.4.1.3. Config - spring-security-config.jar 1.4.1.4. LDAP - spring-security-ldap.jar 1.4.1.5. ACL - spring-security-acl...
activiti7排除security
a785975139的博客
04-03 1736
我的activiti版本为7.1.0.M2,准备把它作为公共服务给所有项目使用,不需要security
Springboot2.x集成activiti7.1.0.M6 报错: UsernameNotFoundException 的处理
weixin_43607664的博客
07-02 2516
Cause: org.springframework.security.core.userdetails.UsernameNotFoundException我的是通过代码生成器直接生成的service,impl,dao以及xml 我的springboot 版本 2.3.7.RELEASE activiti版本7.1.0.M6 调用根据用户查询任务时报错 List<Task> list = taskService.createTaskQuery().taskCandidateUser("test
org.springframework.security.core.userdetails.UsernameNotFoundException: admin
weivi001的专栏
06-30 3356
找不到用户 org.springframework.security.core.userdetails.UsernameNotFoundException: admin 你需要重写这个接口 public interface UserDetailsService { UserDetails loadUserByUsername(String var1) throws UsernameNotFoundException; } -=========================...
SpringSecurity框架原理浅谈之UserDetailsService
黄先生的博客
02-11 1938
UserDetailsService的作用就是从特定的地方(通常是数据库)加载用户信息.
关于springsecurity无法捕获UsernameNotFoundException的解决办法
小羊的小窝
02-18 2283
UserDetailsService代码如下,当根据用户名查询不到用户信息时,我们抛出UsernameNotFoundException异常,按预想,只需要捕获该异常,便可在用户名错误时给用户提示 然而实际运行时,无论用户名不存在还是密码错误,均抛出BadCredentialsException异常,无法知道登录失败的具体原因,经过debug发现,正是在这个地方做了判断,当hideUserNotFoundExceptions为false时,抛出UserNotFoundException异常,而true时.
Spring——security安全框架使用详解(基于内存认证)
zyy030616的博客
01-03 1177
Spring Security是一个功能强大且高度可定制的身份验证和访问控制框架。它是保护基于Spring的应用程序的事实标准。Spring Security是一个专注于为Java应用程序提供身份验证和授权的框架。与所有Spring项目一样,Spring Security的真正威力在于它可以多么容易地扩展以满足定制需求。它是Spring家族中的一个安全管理框架。相比于另一个安全框架shiro,它提供了更丰富的功能,社区资源也比shiro丰富官方文档地址。
Springboot+Activiti7+Security整合
wxh12125的博客
12-12 1210
本篇文章适合有基础的开发者阅读(按道理说能读到这篇文章的都是有基础的-.-),所以一些常识的地方我就省略掉了,如有不懂的请在评论区留言,我会定期回复。Activiti7是需要依赖于Security框架的,本文使用的是Security的默认配置,大家后面需要自己配置一下。
10-SpringSecurity 数据库DB验证.zip
09-10
return new org.springframework.security.core.userdetails.User( user.getUsername(), user.getPassword(), AuthorityUtils.createAuthorityList(user.getRoles()) // 角色转换为权限列表 ); } } ``` 然后...
activiti-springboot.zip
03-27
随意下载,不收分,不用关注 SpringBoot2.x整合Activiti7后,禁用SpringBootSecurity问题
springsecurity6.x实战学习笔记,可完美的移植到生产环境
03-28
本实战学习笔记聚焦于如何利用SpringBoot 3.x集成SpringSecurity 6.x,实现灵活的用户认证和授权机制。 首先,SpringBoot 3.x是Spring框架的最新稳定版本,它提供了自动配置、内嵌Web服务器等特性,使得快速开发变...
spring-security.rar
08-30
Spring Security 是一个强大的安全框架,主要用于Java应用的安全管理,它为Web和方法级的安全提供了全面的解决方案。在Spring Boot环境中,Spring Security 可以轻松集成并简化配置过程,使得开发者可以快速实现认证...
笔记:activiti7微服务项目中spring security强绑定处理
weixin_40912627的博客
04-06 3290
我们项目是个SpringCloud微服务项目,权限是单独的微服务,前段时间集成了activiti7,在做到拾取和取消拾取任务时发现需要强绑定ACTIVITI角色,不指定角色的话报错UsernameNotFoundException,网上查询方法去掉Security,但还是报错; 后来想办法,只能在本服务中先绑定个默认的角色,然后在强绑定ACTIVITI角色的方法添加这个默认角色,这样既不影响整个系统的权限,又能正常调用各个方法。 1.重写UserDetailsService,在每个user中都添加ROL
Spring Security教程(7)---- 解决UsernameNotFoundException无法被捕获的问题
热门推荐
jaune162的专栏,最新动态请关注:https://jaune162.blog
01-16 2万+
这个教程是我在往项目中一点一点添加 Spring Security的过程的一个笔记,也是我学习 Spring Security的一个过程。 在解决这个问题之前要先说一点authentication-provider默认加载的是DaoAuthenticationProvider类。 完成了上一章的内容后在测试的时候发现在UserDetailsService中抛出的UsernameNotFound
Activiti7系列】基于Spring SecurityActiviti7工作流管理系统简介及实现(上篇)
c18213590220的博客
04-03 818
《基于Spring SecurityActiviti7工作流管理系统简介及实现》将对Activiti7工作流管理系统进行介绍,同时会讲解核心技术路线及代码原理,手把手教你搭建文中的工作流管理系统。
SpringSecurity框架
Mr_Jin的博客
06-20 4920
Spring Security是一个功能强大且高度可定制的身份验证和访问控制框架。提供了完善的认证机制和方法级的授权功能。是一款非常优秀的权限管理框架。它的核心是一组过滤器链,不同的功能经由不同的过滤器。这篇文章就是想通过一个小案例将Spring Security整合到SpringBoot中去。要实现的功能就是在认证服务器上登录,然后获取Token,再访问资源服务器中的资源。 对比Shiro框架来说,配置会更复杂一些,但功能更强大,Shrio安全框架上手快,配置简单。本次项目包含了:redis,mybat
Activiti7学习记录:springboot整合Activiti7使用SpringSecurity安全框架完成用户登录(四)
zhangrachel1的博客
07-08 2632
两大功能: 1: 认证 2: 鉴权/授权 3:去掉springsecurity框架Activiti7会自动将SpringSecurity的jar包引入。 @Component public class SecurityUtil { private Logger logger = LoggerFactory.getLogger(SecurityUtil.class); @Autowired privat
JVM原理(十一):JVM虚拟机六种必需对类进行初始化的情况
最新发布
zuodingquan666的博客
07-03 574
Java虚拟机把描述类的数据从Class文件加载到内存,并对数据进行校验、转换解析和初始化,最终形成可以被虚拟机直接使用的Java类型,这个过程被称作虚拟机的类加载机制。Java天生可以动态扩展的语言特性就是依赖运行期间动态加载和动态链接这个特点实现的。
org.springframework.security.core.userdetails.UserDetails 内属性的含义
05-16
org.springframework.security.core.userdetails.UserDetails 是 Spring Security 框架中的一个接口,用于表示一个用户的详细信息。它包含以下属性: 1. getUsername():获取用户的用户名。 2. getPassword():获取用户的密码。 3. getAuthorities():获取用户所拥有的权限列表,返回一个包含 GrantedAuthority 接口的集合。 4. isEnabled():判断用户是否可用,返回一个 boolean 值。 5. isAccountNonExpired():判断用户的账号是否过期,返回一个 boolean 值。 6. isAccountNonLocked():判断用户的账号是否被锁定,返回一个 boolean 值。 7. isCredentialsNonExpired():判断用户的密码是否过期,返回一个 boolean 值。 通过实现 UserDetails 接口,我们可以自定义一个用户类,并在 Spring Security 中使用它来实现身份验证和授权功能。

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论 5
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值