springboot + spring security + jwt + redis详细(一)

已于 2022-09-20 10:46:47 修改
阅读量800 收藏 3
点赞数 2
分类专栏: java 文章标签: spring spring boot redis
于 2020-04-24 17:43:50 首次发布
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/qq_38324424/article/details/100520013
版权

作为一个刚入门,没多久的新手小白,由于项目需要,所以学习了一下spring security,基本上此篇文章是根据各路大神撰写的博客结合而来,为了同样刚接触的新手小白少踩点坑,因为是给小白们看能拿来就用那种,所以代码比较多,请耐心看完,有什么问题还请大神们多多指点(注:为了不误导新手,此博客仅供参考)

创建用户表:

	CREATE TABLE `sys_user` (
      `id` bigint(20) unsigned NOT NULL AUTO_INCREMENT,
      `username` varchar(200) NOT NULL,
      `password` varchar(200) NOT NULL,
      PRIMARY KEY (`id`)
) ENGINE=InnoDB AUTO_INCREMENT=3 DEFAULT CHARSET=utf8mb4;

用户角色表

CREATE TABLE `sys_role` (
  `id` bigint(20) unsigned NOT NULL AUTO_INCREMENT,
  `name` varchar(200) NOT NULL,
  PRIMARY KEY (`id`)
) ENGINE=InnoDB AUTO_INCREMENT=3 DEFAULT CHARSET=utf8mb4;

用户角色-关系表

CREATE TABLE `sys_role_user` (
  `id` bigint(20) unsigned NOT NULL AUTO_INCREMENT,
  `sys_user_id` bigint(20) unsigned NOT NULL,
  `sys_role_id` bigint(20) unsigned NOT NULL,
  PRIMARY KEY (`id`)
) ENGINE=InnoDB AUTO_INCREMENT=3 DEFAULT CHARSET=utf8mb4;

权限表

CREATE TABLE `sys_permission` (
  `id` bigint(20) unsigned NOT NULL AUTO_INCREMENT,
  `name` varchar(200) NOT NULL,
  `description` varchar(200) DEFAULT NULL,
  `url` varchar(200) NOT NULL,
  `pid` bigint(20) DEFAULT NULL,
  PRIMARY KEY (`id`)
) ENGINE=InnoDB AUTO_INCREMENT=3 DEFAULT CHARSET=utf8mb4;

角色权限-关系表

CREATE TABLE `sys_permission_role` (
  `id` bigint(20) unsigned NOT NULL AUTO_INCREMENT,
  `role_id` bigint(20) unsigned NOT NULL,
  `permission_id` bigint(20) unsigned NOT NULL,
  PRIMARY KEY (`id`)
) ENGINE=InnoDB AUTO_INCREMENT=4 DEFAULT CHARSET=utf8mb4;

在pom.xml中添加security和jwt的相关依赖

<dependency>
        <groupId>org.springframework.security</groupId>
        <artifactId>spring-security-test</artifactId>
        <scope>test</scope>
    </dependency>
    <dependency>
        <groupId>org.springframework.boot</groupId>
        <artifactId>spring-boot-starter-security</artifactId>
    </dependency>
    <!--JWT-->
    <dependency>
        <groupId>io.jsonwebtoken</groupId>
        <artifactId>jjwt</artifactId>
        <version>0.9.0</version>
    </dependency>
    <dependency>
        <groupId>org.springframework.boot</groupId>
        <artifactId>spring-boot-starter-redis</artifactId>
        <version>1.3.8.RELEASE</version>
    </dependency>

2、在application.yml中配置mysql及jwt等

server:
  port: 8081

spring:
  datasource:
    druid:
      # MySQL 8.x: com.mysql.cj.jdbc.Driver
      driver-class-name: com.mysql.cj.jdbc.Driver
      url: jdbc:mysql://127.0.0.1:3306/数据库?serverTimezone=CTT&useUnicode=true&characterEncoding=utf-8&allowMultiQueries=true
      username: root
      password: 密码
      initial-size: 1
      min-idle: 1
      max-active: 20
      test-on-borrow: true
      view:
        prefix: /static/
  redis:
    host: 127.0.0.1
    port: 6379
    password:
    timeout: 3600
  http:
    encoding:
      charset: UTF-8
      force: true
      enabled: true

mybatis:
  #实体类的存放路径,如:com.funtl.hello.spring.boot.entity
  type-aliases-package: com.personnel.entity
  mapper-locations: classpath:mapper/*.xml
  #开启驼峰命名转换
  configuration:
    map-underscore-to-camel-case: true


jasypt:
  encryptor:
    password: 123456


jwt:
  tokenHeader: Authorization
  tokenPrefix: Bearer
  secret: lanjwt
  expiration: 3600
  rememberExpiration: 604800

#自定义参数,可以迁移走
token:
  #token失效时间(不是refreshToken)(这是自定义的)(秒)
  expirationSeconds: 300

  #默认7天登录有效(根据业务更改)
  validTime: 7

创建实体、Dao、Service和Controller
实体类 我是用 tk.mybatis自动生成的,如果有兴趣的可以参考这篇文章Spring Boot 整合 tk.mybatis

实体类 SysUser

package com.personnel.entity;

import org.springframework.security.core.GrantedAuthority;
import org.springframework.security.core.userdetails.UserDetails;

import javax.persistence.*;
import java.io.Serializable;
import java.util.Collection;
import java.util.Set;

@Table(name = "sys_user")
public class SysUser implements UserDetails, Serializable {
    private static final long serialVersionUID = 7171722954972237961L;
    @Id
    @GeneratedValue(strategy = GenerationType.IDENTITY)
    private Long id;

    private String username;

    private String password;

    private Set<? extends GrantedAuthority> authorities;

	// 省略getter/setter
   
}

实体类 SysRoleUser

package com.personnel.entity;

import javax.persistence.*;

@Table(name = "sys_role_user")
public class SysRoleUser {
    @Id
    @GeneratedValue(strategy = GenerationType.IDENTITY)
    private Long id;

    @Column(name = "sys_user_id")
    private Long sysUserId;

    @Column(name = "sys_role_id")
    private Integer sysRoleId;

    // 省略getter/setter
}

实体类 SysRole

package com.personnel.entity;

import javax.persistence.*;

@Table(name = "sys_role")
public class SysRole {
    @Id
    @GeneratedValue(strategy = GenerationType.IDENTITY)
    private Long id;

    private String name;

   // 省略getter/setter
}

实体类 SysPermissionRole

package com.personnel.entity;

import javax.persistence.*;

@Table(name = "sys_permission_role")
public class SysPermissionRole {
    @Id
    @GeneratedValue(strategy = GenerationType.IDENTITY)
    private Long id;

    @Column(name = "role_id")
    private Long roleId;

    @Column(name = "permission_id")
    private Long permissionId;

   // 省略getter/setter
}

Dao 层 SysUserMapper


public interface SysUserMapper extends MyMapper<SysUser> {
    //通过username查询用户
    @Select("select * from sys_user where username = #{username}")
    SysUser getUser(@Param("username") String username);

}

Dao 层 SysRoleUserMapper


public interface SysRoleUserMapper extends MyMapper<SysRoleUser> {
}

Dao 层 SysRoleMapper

public interface SysRoleMapper extends MyMapper<SysRole> {
}

Dao 层 SysRoleMapper

public interface SysPermissionRoleMapper extends MyMapper<SysPermissionRole> {
}

Dao 层 SysPermissionMapper

public interface SysPermissionMapper extends MyMapper<SysPermission> {

    @Select("SELECT * from Sys_permission")
    public List<SysPermission> findAll();

    @Select("select p.*" +
            "from Sys_User u" +
            "LEFT JOIN sys_role_user sru on u.id= sru.Sys_User_id" +
            "LEFT JOIN Sys_Role r on sru.Sys_Role_id=r.id" +
            "LEFT JOIN Sys_permission_role spr on spr.role_id=r.id" +
            "LEFT JOIN Sys_permission p on p.id =spr.permission_id" +
            "where u.id=#{userId}")

    public List<SysPermission> findByAdminUserId(int userId);
}

Service层 SysUserService


public interface SysUserService {

    SysUser findUserById(Integer id);

    List<SysUser> findUserByName(String username);

    void insert(SysUser user);
}

Service层 SysUserRoleService


public interface SysUserRoleService {

    List<SysRoleUser> findRoleListByUserId(Long userId);

    void insert(int id, Integer roleId);
}

Service层 SysRoleService


public interface SysRoleService {

    public SysRole findRoleById(Long id);

    public SysRole findRoleByName(String name);
}

Service层 SysPermissionService


public interface SysPermissionService {

    public SysPermission findResourceByUrl(String url);
}

Service层 SysPermissionRoleService

package com.personnel.service;

import com.personnel.entity.SysPermissionRole;

import java.util.List;

public interface SysPermissionRoleService {
    public List<SysPermissionRole> fingSysResourceRoleKeyByResId(Long resId);
}

impl 层 SysUserServiceImpl

@Service
public class SysUserServiceImpl implements SysUserService {
    @Autowired
    SysUserMapper sysUserMapper;
    @Override
    public SysUser findUserById(Integer id){
        SysUser sysUser = sysUserMapper.selectByPrimaryKey(id);
        return sysUser;
    }
    @Override
    public List<SysUser> findUserByName(String username){
        Example sysUserExample =new Example(SysUser.class);
        sysUserExample.createCriteria().andEqualTo("username",username);
        List<SysUser> sysUsers = sysUserMapper.selectByExample(sysUserExample);
        return sysUsers;
    }

    @Override
    public SysUser UserByName(String username){
        SysUser sysUsers = sysUserMapper.getUser(username);
        return sysUsers;
    }

    @Override
    public void insert(SysUser user) {
        sysUserMapper.insertSelective(user);
    }
}

impl 层 SysUserRoleServiceImpl

@Service
public class SysUserRoleServiceImpl implements SysUserRoleService {
    private static final Logger logger = LoggerFactory.getLogger(SysUserRoleServiceImpl.class);
    @Autowired
    SysRoleUserMapper sysRoleUserMapper;
    @Override
    public List<SysRoleUser> findRoleListByUserId(Long userId){
        Example sysUserRoleExample =new Example(SysRoleUser.class);
        sysUserRoleExample.createCriteria().andEqualTo("sysUserId",userId);

        List<SysRoleUser> sysRoleUsers = sysRoleUserMapper.selectByExample(sysUserRoleExample);
        logger.info("根据userId查询到的Roles"+sysRoleUsers.toString());
        return sysRoleUsers;
    }

    @Override
    public void insert(int id, Integer roleId) {
        SysRoleUser sysRoleUser = new SysRoleUser();
        sysRoleUser.setSysRoleId(roleId);
        sysRoleUser.setSysUserId((long) id);
        sysRoleUserMapper.insertSelective(sysRoleUser);

    }
}

impl 层 SysRoleServiceImpl

@Service
public class SysRoleServiceImpl implements SysRoleService {
    private static final Logger logger = LoggerFactory.getLogger(SysRoleServiceImpl.class);
    @Autowired
    SysRoleMapper sysRoleMapper;

    @Override
    public SysRole findRoleById(Long id) {
        SysRole sysRole = sysRoleMapper.selectByPrimaryKey(id);
        logger.info("根据id查询到的role:" + sysRole.toString());
        return sysRole;
    }

    @Override
    public SysRole findRoleByName(String name) {
        Example sysRoleExample =new Example(SysRole.class);
        sysRoleExample.createCriteria().andEqualTo("name",name);
        List<SysRole> sysRoles = sysRoleMapper.selectByExample(sysRoleExample);
        if(sysRoles == null || sysRoles.size()==0){
            return null;
        }
        return sysRoles.get(0);
    }

}

impl 层 SysPermissionServiceImpl

@Service
public class SysPermissionServiceImpl implements SysPermissionService {

    @Autowired
    SysPermissionMapper sysPermissionMapper;
    @Override
    public SysPermission findResourceByUrl(String url) {
        Example sysResourceExample =new Example(SysPermission.class);
        sysResourceExample.createCriteria().andEqualTo("url",url);
        List<SysPermission> sysResources = sysPermissionMapper.selectByExample(sysResourceExample);
        if(sysResources == null || sysResources.size()==0){
            return null;
        }
        return sysResources.get(0);
    }
}

impl 层 SysPermissionRoleServiceImpl

@Service
public class SysPermissionRoleServiceImpl implements SysPermissionRoleService {

    @Autowired
    SysPermissionRoleMapper sysPermissionRoleMapper;
    @Override
    public List<SysPermissionRole> fingSysResourceRoleKeyByResId(Long resId) {
        Example sysResourceRoleExample =new Example(SysPermissionRole.class);
        sysResourceRoleExample.createCriteria().andEqualTo("id",resId);

        List<SysPermissionRole> sysResourceRoleKeys = sysPermissionRoleMapper.selectByExample(sysResourceRoleExample);
        return sysResourceRoleKeys;
    }

}

Controller层 LoginController

@RestController
public class LoginController {
    private Logger logger = LoggerFactory.getLogger(LoginController.class);
    @Autowired
    SysUserService sysUserService;
    @Autowired
    SysRoleService sysRoleService;
    @Autowired
    SysUserRoleService sysUserRoleService;

    @RequestMapping("/")
    public String showHome() {
        String name = SecurityContextHolder.getContext().getAuthentication().getName();
        logger.info("当前登陆用户:" + name);

        return "home";
    }

    @RequestMapping("/login")
    public String showLogin() {
        return "login";
    }

    @RequestMapping("/admin")
    @ResponseBody
    /* @PreAuthorize("hasPermission('/admin','r')")*/
    public String printAdmin() {
        return "如果你看见这句话,说明你可以访问/admin路径";
    }

    @RequestMapping("/user")
    @ResponseBody
    /*@PreAuthorize("hasPermission('/user','c')")*/
    public String printUser() {
        return "如果你看见这句话,说明你可以访问/user路径";
    }

    @RequestMapping("/all")
    @ResponseBody
    /*@PreAuthorize("hasPermission('/user','c')")*/
    public String printAll() {
        return "如果你看见这句话,说明你可以访问/all路径";
    }

    @RequestMapping(value = "/register", method = RequestMethod.GET)
    public String showRegister() {
        return "register";
    }

    @RequestMapping(value = "/register", method = RequestMethod.POST)
    public Object register(SysUser user, Integer[] roles) throws Exception {
        String name = user.getUsername();

        if (StringUtils.isEmpty(name) || StringUtils.isEmpty(user.getPassword())) {
            throw new Exception("输入数据错误");
        }

        if (sysUserService.findUserByName(name) != null && sysUserService.findUserByName(name).size()>0 ) {
            throw new Exception("用户名已被注册");
        }

        user.setPassword(new BCryptPasswordEncoder().encode(user.getPassword()));
        sysUserService.insert(user);
        int id = Math.toIntExact(sysUserService.findUserByName(name).get(0).getId());
        for (Integer roleId : roles) {
            sysUserRoleService.insert(id, roleId);
        }
        return "redirect:/login";
    }

    @RequestMapping("/login/error")
    public String loginError(HttpServletRequest request) {
        AuthenticationException exception = (AuthenticationException) request.getSession().getAttribute("SPRING_SECURITY_LAST_EXCEPTION");
        Msg msg = new Msg<>(false, exception.getMessage(), exception.toString());
        request.getSession().removeAttribute("msg");
        request.getSession().setAttribute("msg", msg);
        return "login";
    }

配置SpringSecurity- UserDetailsService
自定义 UserDetailsService ,将用户信息和权限注入进来。
重写 loadUserByUsername 方法,参数是用户输入的用户名。返回值是UserDetails,这是一个接口,一般使用它的子类org.springframework.security.core.userdetails.User,它有三个参数,分别是用户名、密码和权限集。

@Service
public class CustomUserDetailsService implements UserDetailsService {
    @Autowired
    SysRoleService sysRoleService;
    @Autowired
    SysUserService sysUserService;
    @Autowired
    SysUserRoleService sysUserRoleService;

    @Override
    public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {
        Collection<GrantedAuthority> grantedAuthorities = new ArrayList<>();
        List<SysUser> users = sysUserService.findUserByName(username);
        if(users == null && users.size()<1){
            throw new UsernameNotFoundException("用户名不存在");
        }

        SysUser sysUser = users.get(0);
        List<SysRoleUser> roleListByUserIds = sysUserRoleService.findRoleListByUserId(sysUser.getId());
        for (SysRoleUser roleListByUserId : roleListByUserIds) {
            SysRole sysRole = sysRoleService.findRoleById(roleListByUserId.getId());
            grantedAuthorities.add( new SimpleGrantedAuthority(sysRole.getName()));
        }
        return new User(sysUser.getUsername(),sysUser.getPassword(),grantedAuthorities);
    }
}

WebSecurityConfig
该类是 Spring Security 的配置类,该类的三个注解分别是标识该类是配置类、开启 Security 服务、开启全局 Securtiy 注解。自定义的 userDetailsService 注入进来,在 configure() 方法中使用 auth.userDetailsService() 方法替换掉默认的 userDetailsService

@Configuration
/*标识该类是配置类*/
@EnableWebSecurity
/*开启Security服务*/
@EnableGlobalMethodSecurity(prePostEnabled = true)
/*开启全局Securtiy注解*/
public class WebSecurityConfig extends WebSecurityConfigurerAdapter {

    @Autowired
    CustomUserDetailsService customUserDetailsService;
    @Autowired
    CustomAuthenticationFailureHandler customAuthenticationFailureHandler;
    @Autowired
    CustomAuthenticationSuccessHandler customAuthenticationSuccessHandler;
    //根据一个url请求,获得访问它所需要的roles权限
    @Autowired
    FilterInvocationSecurityMetadataSourceImpl filterInvocationSecurityMetadataSource;
    //接收一个用户的信息和访问一个url所需要的权限,判断该用户是否可以访问
    @Autowired
    AccessDecisionManagerImpl accessDecisionManager;
    //403页面
    @Autowired
    AccessDeniedHandlerImpl accessDeniedHandler;
    @Autowired
    DataSource dataSource;
    @Autowired
    private CustomUserDetailsService userDetailsService;

    @Autowired
    JwtAuthenticationTokenFilter jwtAuthenticationTokenFilter;

    @Bean
    public PersistentTokenRepository persistentTokenRepository(){
        JdbcTokenRepositoryImpl tokenRepository = new JdbcTokenRepositoryImpl();
        tokenRepository.setDataSource(dataSource);
        // 如果token表不存在,使用下面语句可以初始化该表;若存在,会报错。
        //tokenRepository.setCreateTableOnStartup(true);
        return tokenRepository;
    }
    @Override
    /**定义认证用户信息获取来源,密码校验规则等,注释部分为明文密码验证方式,需要的话直接解除注释同时注释掉new BCryptPasswordEncoder()即可*/
    protected void configure(AuthenticationManagerBuilder auth) throws Exception {
        auth.userDetailsService(customUserDetailsService).passwordEncoder(
             new BCryptPasswordEncoder()
//                new PasswordEncoder() {
//                      @Override
//                      public String encode(CharSequence charSequence) {
//                          return charSequence.toString();
//                      }
//
//                      @Override
//                      public boolean matches(CharSequence charSequence, String s) {
//                          return s.equals(charSequence.toString());
//                      }
//                  }
              );
    }

    @Override
    /**定义安全策略*/
    protected void configure(HttpSecurity http) throws Exception {
        http.authorizeRequests()
                .antMatchers("/register", "/getVerifyCode", "/hello").permitAll()
                //配置安全策略,就是拦截URL,验证访问权限的功能
                .withObjectPostProcessor(new ObjectPostProcessor<FilterSecurityInterceptor>() {
                    @Override
                    public <O extends FilterSecurityInterceptor> O postProcess(O o) {
                        o.setSecurityMetadataSource(filterInvocationSecurityMetadataSource);
                        o.setAccessDecisionManager(accessDecisionManager);
                        return o;
                    }
                })
                .and()
                // 设置登陆页
                .formLogin()
//                .loginPage("/login")
                //登录失败后的处理方式
                .failureHandler(customAuthenticationFailureHandler)
                //登录成功后的处理方式
                .successHandler(customAuthenticationSuccessHandler)
                .and()
                //验证码功能实现
//                .addFilterBefore(new VerifyFilter(), UsernamePasswordAuthenticationFilter.class)
                //退出登录
                .logout().permitAll()
                .logoutUrl("/logout")
//                .logoutSuccessUrl("/login")
                .and()
                // 关闭CSRF跨域
                .csrf().disable()
                .exceptionHandling()
                //403
                .accessDeniedHandler(accessDeniedHandler);

        // 记住我
        http.rememberMe().rememberMeParameter("remember-me")
                .userDetailsService(userDetailsService).tokenValiditySeconds(1000);
        http.exceptionHandling().accessDeniedHandler(accessDeniedHandler); // 无权访问 JSON 格式的数据
        http.addFilterBefore(jwtAuthenticationTokenFilter, UsernamePasswordAuthenticationFilter.class); // JWT Filter
    }

    @Override
    //在这里配置哪些页面不需要认证
    public void configure(WebSecurity web) throws Exception {
        // 设置拦截忽略文件夹,可以对静态资源放行
        web.ignoring().antMatchers("/css/**", "/js/**");
    }

}

Jwt工具类

/**
 * @author: zzx
 * @date: 2018/10/16 9:06
 * @description: jwt生成token
 */
public class JwtTokenUtil {

    @Autowired
    private static RedisUtil redisUtil;

    // 寻找证书文件
    private static InputStream inputStream = Thread.currentThread().getContextClassLoader().getResourceAsStream("jwt.jks"); // 寻找证书文件
    private static PrivateKey privateKey = null;
    private static PublicKey publicKey = null;

    public static final String TOKEN_HEADER = "Authorization";
    public static final String TOKEN_PREFIX = "Bearer ";

    private static final String SECRET = "jwtsecretdemo";
    private static final String ISS = "echisan";

    // 过期时间是3600秒,既是1个小时
    private static final long EXPIRATION = 3600L;

    // 选择了记住我之后的过期时间为7天
    private static final long EXPIRATION_REMEMBER = 604800L;

    // 创建token
    public static String createToken(String username, boolean isRememberMe) {
        long expiration = isRememberMe ? EXPIRATION_REMEMBER : EXPIRATION;
        return Jwts.builder()
                .signWith(SignatureAlgorithm.HS512, SECRET)
                .setIssuer(ISS)
                .setSubject(username)
                .setIssuedAt(new Date())
                .setExpiration(new Date(System.currentTimeMillis() + expiration * 1000))
                .compact();
    }

    // 从token中获取用户名
    public static String getUsername(String token){
        return getTokenBody(token).getSubject();
    }

    /**
     * 生成token
     * @param subject (主体信息)
     * @param expirationSeconds 过期时间(秒)
     * @param claims 自定义身份信息
     * @return
     */
    public static String generateToken(String subject, int expirationSeconds, Map<String,Object> claims) {
        return Jwts.builder()
                .setClaims(claims)
                .setSubject(subject)
                .setExpiration(new Date(System.currentTimeMillis() + expirationSeconds * 1000))
//                .signWith(SignatureAlgorithm.HS512, salt) // 不使用公钥私钥
                .signWith(SignatureAlgorithm.RS256, privateKey)
                .compact();
    }

    /**
     * @author: zzx
     * @date: 2018-10-19 09:10
     * @deprecation: 解析token,获得subject中的信息
     */
    public static String parseToken(String token, String salt) {
        String subject = null;
        try {
            /*Claims claims = Jwts.parser()
//                    .setSigningKey(salt) // 不使用公钥私钥
                    .setSigningKey(publicKey)
                    .parseClaimsJws(token).getBody();*/
            subject = getTokenBody(token).getSubject();
        } catch (Exception e) {
        }
        return subject;
    }

    //获取token自定义属性
    public static Map<String,Object> getClaims(String token){
        Map<String,Object> claims = null;
        try {
            claims = getTokenBody(token);
        }catch (Exception e) {
        }

        return claims;
    }

    // 是否已过期
    public static boolean isExpiration(String expirationTime){
        /*return getTokenBody(token).getExpiration().before(new Date());*/

        //通过redis中的失效时间进行判断
        String currentTime = DateUtil.getTime();
        if(DateUtil.compareDate(currentTime,expirationTime)){
            //当前时间比过期时间小,失效
            return true;
        }else{
            return false;
        }
    }
    /**
     * 解密jwt,获得所有声明(包括标准和私有声明)
     *
     * @param
     * @return
     * @throws Exception
     */
    public static Claims getTokenBody(String token){
        return Jwts.parser()
                .setSigningKey(SECRET)
                .parseClaimsJws(token)
                .getBody();
    }
}

redis工具类

/**
 * @author: zzx
 * @date: 2018/10/23 10:31
 * @description: redis工具类
 */
@Component
public class RedisUtil {

    @Value("${token.expirationSeconds}")
    private int expirationSeconds;

    /*常量,各种实现方式都行,这里读取application.yml*/
    @Value("${token.validTime}")
    private int validTime;

    @Autowired
    private StringRedisTemplate redisTemplate;

    /**
     * 查询key,支持模糊查询
     *
     * @param key 传过来时key的前后端已经加入了*,或者根据具体处理
     * */
    public Set<String> keys(String key){
        return redisTemplate.keys(key);
    }

    /**
     * 字符串获取值
     * @param key
     * */
    public Object get(String key){
        return redisTemplate.opsForValue().get(key);
    }

    /**
     * 字符串存入值
     * 默认过期时间为2小时
     * @param key
     * */
    public void set(String key, String value){
        redisTemplate.opsForValue().set(key,value, 7200,TimeUnit.SECONDS);
    }

    /**
     * 字符串存入值
     * @param expire 过期时间(毫秒计)
     * @param key
     * */
    public void set(String key, String value,Integer expire){
        redisTemplate.opsForValue().set(key,value, expire,TimeUnit.SECONDS);
    }

    /**
     * 删出key
     * 这里跟下边deleteKey()最底层实现都是一样的,应该可以通用
     * @param key
     * */
    public void delete(String key){
        redisTemplate.opsForValue().getOperations().delete(key);
    }

    /**
     * 添加单个
     * 默认过期时间为两小时
     * @param key    key
     * @param filed  filed
     * @param domain 对象
     */
    public void hset(String key,String filed,Object domain){
        redisTemplate.opsForHash().put(key, filed, domain);
    }

    /**
     * 添加单个
     * @param key    key
     * @param filed  filed
     * @param domain 对象
     * @param expire 过期时间(毫秒计)
     */
    public void hset(String key,String filed,Object domain,Integer expire){
        redisTemplate.opsForHash().put(key, filed, domain);
        redisTemplate.expire(key, expire,TimeUnit.SECONDS);
    }

    /**
     * 添加HashMap
     *
     * @param key    key
     * @param hm    要存入的hash表
     */
    public void hset(String key, HashMap<String,Object> hm){
        redisTemplate.opsForHash().putAll(key,hm);
    }

    /**
     * 如果key存在就不覆盖
     * @param key
     * @param filed
     * @param domain
     */
    public void hsetAbsent(String key,String filed,Object domain){
        redisTemplate.opsForHash().putIfAbsent(key, filed, domain);
    }

    /**
     * 查询key和field所确定的值
     *
     * @param key 查询的key
     * @param field 查询的field
     * @return HV
     */
    public Object hget(String key,String field) {
        return redisTemplate.opsForHash().get(key, field);
    }

    /**
     * 查询该key下所有值
     *
     * @param key 查询的key
     * @return Map<HK, HV>
     */
    public Object hget(String key) {
        return redisTemplate.opsForHash().entries(key);
    }

    /**
     * 删除key下所有值
     *
     * @param key 查询的key
     */
    public void deleteKey(String key) {
        redisTemplate.opsForHash().getOperations().delete(key);
    }

    /**
     * 判断key和field下是否有值
     *
     * @param key 判断的key
     * @param field 判断的field
     */
    public Boolean hasKey(String key,String field) {
        return redisTemplate.opsForHash().hasKey(key,field);
    }

    /**
     * 判断key下是否有值
     *
     * @param key 判断的key
     */
    public Boolean hasKey(String key) {
        return redisTemplate.opsForHash().getOperations().hasKey(key);
    }

    /**
     * 判断此token是否在黑名单中
     * @param token
     * @return
     */
    public Boolean isBlackList(String token){
        return hasKey("blacklist",token);
    }

    /**
     * 将token加入到redis黑名单中
     * @param token
     */
    public void addBlackList(String token){
        hset("blacklist", token,"true");
    }


    /**
     * 查询token下的刷新时间
     *
     * @param token 查询的key
     * @return HV
     */
    public Object getTokenValidTimeByToken(String token) {
        return redisTemplate.opsForHash().get(token, "tokenValidTime");
    }

    /**
     * 查询token下的刷新时间
     *
     * @param token 查询的key
     * @return HV
     */
    public Object getUsernameByToken(String token) {
        return redisTemplate.opsForHash().get(token, "username");
    }

    /**
     * 查询token下的刷新时间
     *
     * @param token 查询的key
     * @return HV
     */
    public Object getIPByToken(String token) {
        return redisTemplate.opsForHash().get(token, "ip");
    }

    /**
     * 查询token下的过期时间
     *
     * @param token 查询的key
     * @return HV
     */
    public Object getExpirationTimeByToken(String token) {
        return redisTemplate.opsForHash().get(token, "expirationTime");
    }

    public void setTokenRefresh(String token,String username,String ip){
        //刷新时间
        Integer expire = validTime*24*60*60*1000;

        hset(token, "tokenValidTime",DateUtil.getAddDayTime(validTime),expire);
        hset(token, "expirationTime",DateUtil.getAddDaySecond(expirationSeconds),expire);
        hset(token, "username",username,expire);
        hset(token, "ip",ip,expire);
    }
}

如果你看到这基本配置 就已经完成了

Mars慕容
关注
  • 2
    点赞
  • 3
    收藏
    觉得还不错? 一键收藏
  • 打赏
    打赏
  • 1
    评论
专栏目录
【万字长文】SpringBoot整合SpringSecurity+JWT+Redis完整教程(提供Gitee源码)
黄团团的个人博客
07-28 5037
最近在学习SpringSecurity的过程中,参考了很多网上的教程,同时也参考了一些目前主流的开源框架,于是结合自己的思路写了一个SpringBoot整合SpringSecurity+JWT+Redis完整的项目,从0到1写完感觉还是收获到不少的,于是我把我完整的笔记写成博客分享给大家,算是比较全的一个项目了,仅供大家参考和学习哦!
springboot+security+mybatis+redis+jwt,鉴权框架搭建
06-22
本项目集成了springboot+security+mybatis+redis+jwt用于学习security鉴权功能,其中有集成了redis,mybatis,jasypt,jwt,thymeleaf,knife4j,mybatis-plus 项目搭建已经比较成熟,能够直接进行使用,通过代码可以学习security的权限配置,菜单权限,注解权限等 有学习SPI机制的学习
基于Spring Boot 3 + Spring Security6 + JWT + Redis实现登录、token身份认证
最新发布
程序员雅痞的博客
03-28 4067
基于Spring Boot3实现Spring Security6 + JWT + Redis实现登录、token身份认证。
Spring Boot 整合SpringSecurityJWTRedis实现统一鉴权认证
2301_80092713的博客
11-04 6120
Spring Security是一个强大且高度可定制的身份验证和访问控制框架。它是保护基于Spring的应用程序的实际标准。Spring Security是一个可以为Java应用程序提供全面安全服务的框架。同时,它也可以轻松扩展以满足自定义需求。
(微服务多模块)Springboot+Security+Redis+JWT 仅需一招
white_mvlog的博客
10-29 3442
小编在开发阶段发现,在现在众多文章中的教程里,虽然有许许多多的Springboot+Security+Redis+JWT,但是那些教程基本的运行环境都在单个项目单个模块中进行开发和测试的,这使得小编在实际的开发过程中,不能Ctrl+C and Ctrl+V直接完全解决这个登录认证的事情。故有这篇文章.....
日常记录-SpringBoot整合SpringSecurity(前后分离)+JWT+Redis
会走的鱼
09-04 2055
SpringBoot整合SpringSecurity一、搭建项目1、构建springboot项目2、导入依赖3、配置yml4、启动项目二、建立相关用户角色权限表1、创建数据库的字符集和排序规则2、用户表结构3、权限表结构4、用户与权限关联表结构5、插入测试数据三、创建实体类和Mapper1、SysUser2、SysPermission3、SysUserPermissionRelation4、配置@MapperScan四、Redis配置1、RedisConfig2、RedisUtil五、统一全局返回格式与处理
通用权限管理系统+springboot+mybatis plus+spring security+jwt+redis+mysql
05-30
后端使用SpringBoot框架进行业务逻辑开发,利用Spring Security实现权限控制。数据库采用MySQL进行数据存储,使用MyBatis进行数据访问。 权限控制模块设计包括用户、角色和权限三个主要模块。用户模块用于管理用户...
基于SpringBoot2+MybatisPlus+SpringSecurity+jwt+redis+Vue的前后端商城系统源码
05-13
yshop基于当前流行技术组合的前后端分离商城系统: SpringBoot2+MybatisPlus+SpringSecurity+jwt+redis+Vue的前后端分离的商城系统, 包含分类、sku、运费模板、素材库、小程序直播、拼团、砍价、商户管理、 秒杀、...
SpringBoot2+MybatisPlus+SpringSecurity+jwt+redis+Vue的前后端分离的商城系统
04-30
基于当前流行技术组合的前后端分离商城系统:SpringBoot2+MybatisPlus+SpringSecurity+jwt+redis+Vue的前后端分离的商城系统, 包含商城、sku、运费模板、素材库、小程序直播、拼团、砍价、商户管理、 秒杀、优惠券...
SpringBoot+SpringSecurity+JWT+MybatisPlus实现基于注解的权限验证
08-26
SpringBoot+SpringSecurity+JWT+MybatisPlus实现基于注解的权限验证,可根据注解的格式不同,做到角色权限控制,角色加资源权限控制等,粒度比较细化。 @PreAuthorize("hasAnyRole('ADMIN','USER')"):具有admin或...
springSecurity+JWT+Redis权限认证(完整项目代码)
gorylee的博客
12-10 3099
springboot+springsecurity+JWT+redis
spring-securityspring-security4安全框架配置详解
热门推荐
如切如磋,如琢如磨,臻于至善。
02-15 5万+
Spring Security是一个能够为基于Spring的企业应用系统提供声明式的安全访问控制解决方案的安全框架。它提供了一组可以在Spring应用上下文中配置的Bean,充分利用了Spring IoC,DI(控制反转Inversion of Control ,DI:Dependency Injection 依赖注入)和AOP(面向切面编程)功能,为应用系统提供声明式的安全访问控制功能,减少了为企
SpringBoot SpringSecurity JWT+Redis+RSA授权登录登出 验证码 前后端分离 分布式
qq_50909707的博客
10-08 3748
对于微服务来说,私钥放在认证服务上,其他服务只需要存公钥即可。因为其他服务只做校验,不加密JWT。私钥加密,公钥解密。公钥和私钥放到服务器上,私钥用于授权服务器授权token时加密,其他服务器仅需要通过公钥便可对加密内容进行解析了。服务器通过用户输入的验证码结果和redis中的缓存进行比较得出是否验证码正确。只要安装了JDK,就有这个工具。携带错误的token测试:可以看到错误的token会被服务器警告。退出登录后,redis中缓存的用户信息将被删除。这里我们便实现了登录逻辑。复制文本,重命名文件。
spring boot集成spring securityjwt+redis有完整源码)
fds技术枭牛
09-06 1077
一、Spring Security官方解释 Spring Security是一个强大的和高度可定制的身份验证和访问控制框架。它是保证基于spring的应用程序安全的实际标准。Spring Security是一个框架,着重于为Java应用程序提供身份验证和授权。春天像所有项目,Spring Security的真正力量是很容易找到的它可以扩展以满足定制需求。 本项目使用jwt当作token,使用redis存储token,登录信息不依赖于单个项目,集中存储到redis内存型数据库中。 二、spring boot
spring security+jwt+redis
阳仔的博客
05-21 4258
spring security+jwt+redis实现无状态服务安全框架(1)1.依赖导入2.过滤器3.思路在认证过滤器之前,我们自定义两个过滤器JwtLoginFilterJwtAuthenticationFilte登录成功与失败处理MyAuthenticationFailureHandler授权工具类SecurityUtilsJwtTokenUtils对于认证登录信息,使用的安全框架默认的认证方法,你可以实现UserDetailsService重写loadUserByUsername方法来完成登录信息与
springboot整合springsecurity+jwt+redis
klz
05-02 7671
依赖 <!-- springsecurity依赖--> <dependency> <groupId>org.springframework.boot</groupId> <artifactId>spring-boot-starter-security</artifactId> ...
安全框架Spring Security(认证和授权)
YINJOER的博客
08-16 600
Spring Security 今天从以下几个内容介绍: Spring Security简介 Spring Security的Maven依赖 Spring Security使用 Spring Security简介 Spring SecuritySpring提供的安全认证服务的框架。 使用Spring Security可以帮助我们来简化认证和授权的过程。官网:https://projects.spring.io/spring-security/ Spring Security的Maven依赖 如果
单点登录一:springboot项目使用redisspringSecurityjwt实现单点登录的demo
qq_35515283的博客
05-22 1950
springboot项目使用redisspringSecurityjwt实现单点登录,写一个最基础的demo。容易理解
基于springboot2+mybatisplus+springsecurity5.7+jwt+redis
08-11
基于SpringBoot2、MyBatisPlus、Spring Security5.7、JWTRedis的开发框架可以提供以下功能和优势: 1. Spring Boot2是一个轻量级的Java开发框架,能够快速构建Web应用程序和微服务。它提供了自动配置和约定大于...

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论 1
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包

打赏作者

Mars慕容

你的鼓励将是我创作的最大动力

¥1 ¥2 ¥4 ¥6 ¥10 ¥20
扫码支付:¥1
获取中
扫码支付

您的余额不足,请更换扫码支付或充值

打赏作者

实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值