代码git地址
https://github.com/3748/Shiro.git
1.1 依赖引入
<dependency>
<groupId>org.apache.shiro</groupId>
<artifactId>shiro-spring</artifactId>
<version>1.3.2</version>
</dependency>
1.2 配置
[users]
# 用户 : gp6
# 密码 : 123456
# 角色 : role1和role2
gp6 = 123456, role1, role2
################################ users ----> roles 分割线 ########################
[roles]
# 角色role1可以对permitted1做任何操作
role1 = permitted1:*
# 角色role2允许对user类型的gp6用户进行删除delete操作
# 类型 : type
# 操作 : delete
# 用户 : user1
role2 = type:delete:user1
1.3 简单使用
package com.gp6.shiro01;
import org.apache.shiro.SecurityUtils;
import org.apache.shiro.authc.*;
import org.apache.shiro.config.IniSecurityManagerFactory;
import org.apache.shiro.mgt.SecurityManager;
import org.apache.shiro.session.Session;
import org.apache.shiro.subject.Subject;
import org.apache.shiro.util.Factory;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
public class Quickstart {
private static final transient Logger log = LoggerFactory.getLogger(Quickstart.class);
public static void main(String[] args) {
Factory<SecurityManager> factory = new IniSecurityManagerFactory("classpath:shiro.ini");
SecurityManager securityManager = factory.getInstance();
SecurityUtils.setSecurityManager(securityManager);
Subject currentUser = SecurityUtils.getSubject();
Session session = currentUser.getSession();
session.setAttribute("someKey", "Value");
String value = (String) session.getAttribute("someKey");
if (value.equals("Value")) {
log.info("从session中获取设入的值[" + value + "]");
}
if (!currentUser.isAuthenticated()) {
UsernamePasswordToken token = new UsernamePasswordToken("gp6", "123456");
token.setRememberMe(true);
try {
currentUser.login(token);
} catch (UnknownAccountException uae) {
log.info("用户[{}]不存在" , token.getPrincipal());
return;
} catch (IncorrectCredentialsException ice) {
log.info("用号[{}]存在,密码错误" ,token.getPrincipal());
return;
} catch (LockedAccountException lae) {
log.info("用号[{}]被锁定",token.getPrincipal());
return;
}catch (AuthenticationException ae) {
log.info("认证异常的父类");
return;
}
}
log.info("用号[{}]登录成功",currentUser.getPrincipal());
if (currentUser.hasRole("role1")) {
log.info("用户[{}]拥有[role1]角色",currentUser.getPrincipal());
} else {
log.info("用户[{}]不拥有角色[role1]",currentUser.getPrincipal());
return;
}
if (currentUser.isPermitted("permitted1:update")) {
log.info("可以修改");
} else {
log.info("不能修改");
}
if (currentUser.isPermitted("type:delete:user1")) {
log.info("允许对user类型的gp6用户进行删除delete操作");
} else {
log.info("Sorry, 权限不足!");
}
System.out.println("---->" + currentUser.isAuthenticated());
currentUser.logout();
System.out.println("---->" + currentUser.isAuthenticated());
System.exit(0);
}
}