- ini配置文件有点类似java中Properties文件,提供了key-value特性,key之间不能重复。
- 采用两种方式实现shiro
一、创建项目01-config
1.1、不采用ini配置文件方式
1.1.1、java测试使用
package com.config;
import com.alibaba.druid.pool.DruidDataSource;
import org.apache.shiro.SecurityUtils;
import org.apache.shiro.authc.UsernamePasswordToken;
import org.apache.shiro.authc.pam.AtLeastOneSuccessfulStrategy;
import org.apache.shiro.authc.pam.ModularRealmAuthenticator;
import org.apache.shiro.authz.ModularRealmAuthorizer;
import org.apache.shiro.authz.permission.WildcardPermissionResolver;
import org.apache.shiro.mgt.DefaultSecurityManager;
import org.apache.shiro.realm.Realm;
import org.apache.shiro.realm.jdbc.JdbcRealm;
import org.apache.shiro.subject.Subject;
import org.junit.Test;
import java.util.Arrays;
/**
* @author brusion
* @date 2018/9/16
*/
public class NoConfigApplication {
@Test
public void checkOnConfig() {
DefaultSecurityManager manager = new DefaultSecurityManager();
ModularRealmAuthenticator authenticator = new ModularRealmAuthenticator();
authenticator.setAuthenticationStrategy(new AtLeastOneSuccessfulStrategy());
manager.setAuthenticator(authenticator);
ModularRealmAuthorizer authorizer = new ModularRealmAuthorizer();
authorizer.setPermissionResolver(new WildcardPermissionResolver());
manager.setAuthorizer(authorizer);
DruidDataSource source = new DruidDataSource();
source.setDriverClassName("com.mysql.jdbc.Driver");
source.setUrl("jdbc:mysql://localhost:3306/shiro");
source.setUsername("root");
source.setPassword("123123");
JdbcRealm realm = new JdbcRealm();
realm.setDataSource(source);
realm.setPermissionsLookupEnabled(true);
manager.setRealms(Arrays.<Realm>asList(realm));
SecurityUtils.setSecurityManager(manager);
Subject subject = SecurityUtils.getSubject();
UsernamePasswordToken token = new UsernamePasswordToken("zhang", "123");
try {
subject.login(token);
System.out.println("=== 登录成功 === ");
} catch (Exception e) {
System.out.println("=== 登录失败 === ");
}
subject.logout();
}
}
说明:
- 1、DefaultSecurityManager:是SecurityManager最终实现类,并通过一系列继承和实现拓展了功能
- 2、ModularRealmAuthenticator:提供了退出登录和验证接口功能
- 3、ModularRealmAuthorizer: 用于做权限判断
- 4、DruidDataSource:数据库连接对象
- 5、JdbcRealm:也是实现了realm,并实现了其他接口主要用于数据的提供
1.2、采用ini配置文件方式
1.2.1、创建ini文件:shiro_config.ini
[main]
#authenticator
authenticator=org.apache.shiro.authc.pam.ModularRealmAuthenticator
authenticationStrategy=org.apache.shiro.authc.pam.AtLeastOneSuccessfulStrategy
authenticator.authenticationStrategy=$authenticationStrategy
securityManager.authenticator=$authenticator
#authorizer
authorizer=org.apache.shiro.authz.ModularRealmAuthorizer
permissionResolver=org.apache.shiro.authz.permission.WildcardPermissionResolver
authorizer.permissionResolver=$permissionResolver
securityManager.authorizer=$authorizer
#data
dataSource=com.alibaba.druid.pool.DruidDataSource
dataSource.driverClassName=com.mysql.jdbc.Driver
dataSource.url=jdbc:mysql://localhost:3306/shiro
dataSource.username=root
dataSource.password=123123
#realm
jdbcRealm=org.apache.shiro.realm.jdbc.JdbcRealm
jdbcRealm.dataSource=$dataSource
jdbcRealm.permissionsLookupEnabled=true
securityManager.realms=$jdbcRealm
1.2.2、测试使用
package com.config;
import org.apache.shiro.SecurityUtils;
import org.apache.shiro.authc.UsernamePasswordToken;
import org.apache.shiro.config.IniSecurityManagerFactory;
import org.apache.shiro.mgt.SecurityManager;
import org.apache.shiro.subject.Subject;
import org.apache.shiro.util.Factory;
import org.junit.Test;
/**
* @author brusion
* @date 2018/9/16
*/
public class ConfigApplication {
@Test
public void check(){
Factory<SecurityManager> factory = new IniSecurityManagerFactory("classpath:shiro_config.ini");
SecurityManager manager = factory.getInstance();
SecurityUtils.setSecurityManager(manager);
Subject subject = SecurityUtils.getSubject();
UsernamePasswordToken token = new UsernamePasswordToken("zhang", "123");
try {
subject.login(token);
System.out.println("=== 登录成功 === ");
} catch (Exception e) {
System.out.println("=== 登录失败 === ");
}
subject.logout();
}
}