整合内容包括
- 自定义realm,实现认证和授权
- 自定义加密,实现密码加密验证
- 自定义Cachemanager、Cache,实现Shiro的cache管理,存储在redis中
- 自定义SessionManager、SessionDao、SessionIdCookie,实现Shiro的session管理,存储在redsi中
- 自定义RememberMeManager、RemeberMeCookie,实现Shiro记住我的功能
添加maven依赖
<!-- spring整合shiro -->
<!-- maven会自动添加shiro-core,shiro-web依赖 -->
<dependency>
<groupId>org.apache.shiro</groupId>
<artifactId>shiro-spring</artifactId>
<version>1.3.2</version>
</dependency>
<!-- redis相关 -->
<dependency>
<groupId>redis.clients</groupId>
<artifactId>jedis</artifactId>
</dependency>
<!-- 使用@Slf4j注解 -->
<dependency>
<groupId>org.projectlombok</groupId>
<artifactId>lombok</artifactId>
</dependency>
Shiro配置
package com.ahut.config;
import com.ahut.shiro.MyRealm;
import com.ahut.shiro.RedisShiroCacheManager;
import com.ahut.shiro.RedisShiroSessionDao;
import com.ahut.utils.ShiroUtil;
import lombok.extern.slf4j.Slf4j;
import org.apache.shiro.authc.credential.HashedCredentialsMatcher;
import org.apache.shiro.mgt.SecurityManager;
import org.apache.shiro.session.mgt.SessionManager;
import org.apache.shiro.spring.web.ShiroFilterFactoryBean;
import org.apache.shiro.web.mgt.CookieRememberMeManager;
import org.apache.shiro.web.mgt.DefaultWebSecurityManager;
import org.apache.shiro.web.servlet.SimpleCookie;
import org.apache.shiro.web.session.mgt.DefaultWebSessionManager;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import java.util.HashMap;
import java.util.Map;
/**
* @author cheng
* @className: ShiroConfig
* @description: shiro配置
* @dateTime 2018/4/18 15:38
*/
@Configuration
@Slf4j
public class ShiroConfig {
}
Shiro工具类
package com.ahut.utils;
import com.ahut.entity.User;
import org.apache.shiro.SecurityUtils;
import org.apache.shiro.crypto.hash.Md5Hash;
import org.apache.shiro.session.Session;
import org.apache.shiro.subject.Subject;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
/**
* @author cheng
* @className: ShiroUtil
* @description: 管理shiro session的工具类
* @dateTime 2018/4/19 10:15
*/
public class ShiroUtil {
/**
* 日志管理
*/
private static Logger log = LoggerFactory.getLogger(ShiroUtil.class);
/**
* 当前用户
*/
private static final String CURRENT_USER = "CURRENT_USER";
/**
* shiro加密算法
*/
public static final String HASH_ALGORITHM_NAME = "md5";
/**
* 散列次数
*/
public static final int HASH_ITERATIONS = 2;
/**
* 全局session过期时间
*/
public static final int GLOBAL_SESSION_TIMEOUT = 60000;
/**
* 自定义shiro session的cookie名称
*/
public static final String SESSIONID_COOKIE_NAME = "SHIRO_SESSION_ID";
/**
* 自定义remeber me的cookie名称
*/
public static final String REMEBER_ME_COOKIE_NAME = "REMEBER_ME";
/**
* shiro session前缀
*/
public static final String SHIRO_SESSION_PREFIX = "shiro_session:";
/**
* shiro cache前缀
*/
public static final String SHIRO_CACHE_PREFIX = "shiro_cache:";
/**
* shiro session过期时间-秒
*/
public static final int EXPIRE_SECONDS = 60;
/**
* @description: 私有化构造函数
* @author cheng
* @dateTime 2018/4/19 10:15
*/
private ShiroUtil() {
}
/**
* @description: 获取session
* @author cheng
* @dateTime 2018/4/19 10:38
*/
public static Session getSession() {
Session session = null;
try {
Subject currentUser = SecurityUtils.getSubject();
session = currentUser.getSession();
} catch (Exception e) {
log.warn("获取shiro当前用户的session时发生了异常", e);
throw e;
}
return session;
}
/**
* @description: 将数据放到shiro session中
* @author cheng
* @dateTime 2018/4/19 10:45
*/
public static void setAttribute(Object key, Object value) {
try {
Session session = getSession();
session.setAttribute(key, value);
} catch (Exception e) {
log.warn("将一些数据放到Shiro Session中时发生了异常", e);
throw e;
}
}
/**
* @description: 获取shiro session中的数据
* @author cheng
* @dateTime 2018/4/19 10:48
*/
public static Object getAttribute(Object key) {
Object value = null;
try {
Session session = getSession();
value = session.getAttribute(key);
} catch (Exception e) {
log.warn("获取shiro session中的数据时发生了异常", e);
throw e;
}
return value;
}
/**
* @description: 删除shiro session中的数据
* @author cheng
* @dateTime 2018/4/19 10:51
*/
public static void removeAttribute(Object key) {
try {
Session session = getSession();
session.removeAttribute(key);
} catch (Exception e) {
log.warn("删除shiro session中的数据时发生了异常", e);
throw e;
}
}
/**
* @description: 设置当前用户
* @author cheng
* @dateTime 2018/4/19 10:59
*/
public static void setCurrentUser(Object user) {