第三章：springboot-springsecurity登录成功与失败的处理

在某处的星空下

已于 2023-03-31 13:51:07 修改

阅读量674

点赞数

分类专栏： SpringSecurity Spring 文章标签： spring boot java servlet

于 2023-03-31 05:44:28 首次发布

本文链接：https://blog.csdn.net/qq_26278133/article/details/129797819

版权

SpringSecurity 同时被 2 个专栏收录

4 篇文章 0 订阅

订阅专栏

Spring

4 篇文章 0 订阅

订阅专栏

前言：还记得上一章中WebSecurityConfigurerAdapter 配置注释掉的
//认证成功的返回处理下章再讲
// .successHandler()
//认证失败的返回处理
// .failureHandler()

在项目开发中一般是前后分离的，前后端统一达成一定规格的请求返回的数据规格。
成功认证处理：

package com.wyb.seurity;

import com.fasterxml.jackson.databind.ObjectMapper;
import org.springframework.http.HttpStatus;
import org.springframework.security.core.Authentication;
import org.springframework.security.web.authentication.AuthenticationSuccessHandler;

import javax.servlet.ServletException;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;
import java.util.HashMap;

/**
 * 成功返回处理
 */
public class WebAuthenticationSuccessHandler implements AuthenticationSuccessHandler {
    @Override
    public void onAuthenticationSuccess(HttpServletRequest httpServletRequest,
                                        HttpServletResponse httpServletResponse,
                                        Authentication authentication) throws IOException, ServletException {
        httpServletResponse.setContentType("application/json;charset=UTF-8");

        HashMap<String, Object> hashMap = new HashMap<>();
        hashMap.put("msg","登录成功");
        hashMap.put("authentication",authentication);
        System.out.println(authentication.getDetails());
        //spring提供的状态码
        httpServletResponse.setStatus(HttpStatus.OK.value());
        String s = new ObjectMapper().writeValueAsString(hashMap);
        httpServletResponse.getWriter().println(s);
    }
}

认证成功的返回：
上期密码配置

spring:
  application:
    name: wyb-admin-security-resourceapi
  security:
    user:
      name: user
      password: 123456
      roles: admin,super

在这里插入图片描述

失败的返回处理：

package com.wyb.seurity;

import com.fasterxml.jackson.databind.ObjectMapper;
import org.springframework.http.HttpStatus;
import org.springframework.security.core.AuthenticationException;
import org.springframework.security.web.authentication.AuthenticationFailureHandler;

import javax.servlet.ServletException;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;
import java.util.HashMap;

/**
 * 认证失败
 */
public class WebAuthenticationFailureHandler implements AuthenticationFailureHandler {
    @Override
    public void onAuthenticationFailure(HttpServletRequest httpServletRequest, HttpServletResponse httpServletResponse, AuthenticationException e) throws IOException, ServletException {
        httpServletResponse.setContentType("application/json;charset=UTF-8");

        HashMap<String, Object> hashMap = new HashMap<>();
        hashMap.put("msg","登录失败");
        hashMap.put("e",e.getMessage());
        //spring提供的状态码
        httpServletResponse.setStatus(HttpStatus.INTERNAL_SERVER_ERROR.value());
        String s = new ObjectMapper().writeValueAsString(hashMap);
        httpServletResponse.getWriter().println(s);
    }
}