package com.shiro.common;
import org.apache.log4j.Logger;
import org.apache.shiro.SecurityUtils;
import org.apache.shiro.authc.AuthenticationException;
import org.apache.shiro.authc.UsernamePasswordToken;
import org.apache.shiro.config.IniSecurityManagerFactory;
import org.apache.shiro.mgt.SecurityManager;
import org.apache.shiro.subject.Subject;
import org.apache.shiro.util.Factory;
public class ShiroUtils {
private Logger log=Logger.getLogger(this.getClass().getName());
public static Subject login(String configFile,String username,String password) {
c static void main(String[] args) {
//通过SecurityManager获取当前用户
//读取配置文件,初始化SecurityManager工厂
Factory<SecurityManager> factory=new IniSecurityManagerFactory("classpath:shiro.ini");
//获取securityManager实例
SecurityManager securityManager = factory.getInstance();
//把securityManager实例绑定在SecurityUtils
SecurityUtils.setSecurityManager(securityManager);
//获取当前用户
Subject subject = SecurityUtils.getSubject();
//凭证,创建token令牌
UsernamePasswordToken token=new UsernamePasswordToken("wang","123");
try {
//身份认证
subject.login(token);
System.out.println("验证身份成功");
} catch (AuthenticationException e) {
System.out.println("验证身份失败");
e.printStackTrace();
}
//subject.logout();
return subject;
}
}
package com.shiro.common;
import org.apache.log4j.Logger;
import org.apache.shiro.SecurityUtils;
import org.apache.shiro.authc.AuthenticationException;
import org.apache.shiro.authc.UsernamePasswordToken;
import org.apache.shiro.config.IniSecurityManagerFactory;
import org.apache.shiro.mgt.SecurityManager;
import org.apache.shiro.subject.Subject;
import org.apache.shiro.util.Factory;
public class ShiroUtils {
private Logger log=Logger.getLogger(this.getClass().getName());
public static Subject login(String configFile,String username,String password) {
Factory<SecurityManager> factory=new IniSecurityManagerFactory(configFile);
SecurityManager securityManager = factory.getInstance();
SecurityUtils.setSecurityManager(securityManager);
Subject subject = SecurityUtils.getSubject();
UsernamePasswordToken token=new UsernamePasswordToken(username, password);
try {
subject.login(token);
System.out.println("验证身份成功");
} catch (AuthenticationException e) {
System.out.println("验证身份失败");
e.printStackTrace();
}
//subject.logout();
return subject;
}
}
jdbc_realm.ini
[main]
jdbcRealm=org.apache.shiro.realm.jdbc.JdbcRealm
dataSource=com.mchange.v2.c3p0.ComboPooledDataSource
dataSource.driverClass=com.mysql.jdbc.Driver
dataSource.jdbcUrl=jdbc:mysql://localhost:3306/sys
dataSource.user=root
dataSource.password=root
jdbcRealm.dataSource=$dataSource
securityManager.realms=$jdbcRealm
log4j.properties
log4j.rootLogger=INFO, stdout
log4j.appender.stdout=org.apache.log4j.ConsoleAppender
log4j.appender.stdout.layout=org.apache.log4j.PatternLayout
log4j.appender.stdout.layout.ConversionPattern=%d %p [%c] - %m %n
# General Apache libraries
log4j.logger.org.apache=WARN
# Spring
log4j.logger.org.springframework=WARN
# Default Shiro logging
log4j.logger.org.apache.shiro=TRACE
# Disable verbose logging
log4j.logger.org.apache.shiro.util.ThreadContext=WARN
log4j.logger.org.apache.shiro.cache.ehcache.EhCache=WARN
shiro_permission.ini
[users]
wang=123,role1,role2,role3
xin=123,role1,role2
[roles]
role1=user:select
role2=user:add,user:update
role3=user:update
role=user:delete
测试类
package com.shiro.test;
import static org.junit.Assert.*;
import java.util.ArrayList;
import java.util.Arrays;
import org.apache.log4j.Logger;
import org.apache.shiro.subject.Subject;
import org.junit.Test;
import com.shiro.common.ShiroUtils;
public class ShiroTest {
private Logger log=Logger.getLogger(this.getClass().getName());
@Test
public void testHasRole() {
Subject subject = ShiroUtils.login("classpath:shiro_role.ini", "wang", "123");
System.out.println(subject.hasRole("role1")?"有role1这个角色":"无role1这个角色");
if(subject.hasRole("role1")){
log.debug("有role1这个角色");
System.out.println("有role1这个角色");
}else{
log.debug("无role1这个角色");
System.out.println("无role1这个角色");
}
}
/* @Test
public void testHasRoles() {
Subject subject = ShiroUtils.login("classpath:shiro_role.ini", "wang", "123");
boolean[] roles = subject.hasRoles(Arrays.asList("role1","role2","role3"));
System.out.println(roles[0]?"有role1这个角色":"无role1这个角色");
System.out.println(roles[1]?"有role2这个角色":"无role2这个角色");
System.out.println(roles[2]?"有role3这个角色":"无role3这个角色");
System.out.println(roles[3] ?"有role4这个角色":"无role4这个角色");
System.out.println(subject.hasRole("role")?"有role这个角色":"无role这个角色");
if(subject.hasRole("role1")){
log.debug("有role1这个角色");
System.out.println("有role1这个角色");
}else{
log.debug("无role1这个角色");
System.out.println("无role1这个角色");
}
}*/
@Test
public void testHasAllRoles() {
Subject subject = ShiroUtils.login("classpath:shiro_role.ini", "wang", "123");
boolean allRoles = subject.hasAllRoles(Arrays.asList("role1","role2","role3"));
//System.out.println(allRoles?"全有role这个角色":"不是全有role这个角色");
System.out.println(subject.hasAllRoles(Arrays.asList("role1","role2","role3"))?"全有role这个角色":"不是全有role这个角色");
}
@Test
public void testCheckRole() {
Subject subject = ShiroUtils.login("classpath:shiro_role.ini", "wang", "123");
subject.checkRole("role1");
subject.checkRoles(Arrays.asList("role1","role2","role3"));
//System.out.println(allRoles?"全有role这个角色":"不是全有role这个角色");
//System.out.println(subject.hasAllRoles(Arrays.asList("role1","role2","role3"))?"全有role这个角色":"不是全有role这个角色");
}
}
<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
<modelVersion>4.0.0</modelVersion>
<groupId>com.shiro.wang</groupId>
<artifactId>Shiro</artifactId>
<version>0.0.1-SNAPSHOT</version>
<name>Shiro</name>
<description>Shiro</description>
<dependencies>
<!-- https://mvnrepository.com/artifact/org.apache.shiro/shiro-core -->
<!-- shiro核心包 -->
<dependency>
<groupId>org.apache.shiro</groupId>
<artifactId>shiro-core</artifactId>
<version>1.2.4</version>
</dependency>
<!-- https://mvnrepository.com/artifact/org.slf4j/slf4j-log4j12 -->
<!-- slf4j运行包 ,shiro有依赖关系-->
<dependency>
<groupId>org.slf4j</groupId>
<artifactId>slf4j-log4j12</artifactId>
<version>1.7.12</version>
<scope>test</scope>
</dependency>
<dependency>
<groupId>log4j</groupId>
<artifactId>log4j</artifactId>
<version>1.2.17</version>
</dependency>
<!-- https://mvnrepository.com/artifact/c3p0/c3p0 -->
<!-- 数据连接池 -->
<dependency>
<groupId>c3p0</groupId>
<artifactId>c3p0</artifactId>
<version>0.9.1.2</version>
</dependency>
<!-- https://mvnrepository.com/artifact/commons-logging/commons-logging -->
<!-- 基于c3p0 -->
<dependency>
<groupId>commons-logging</groupId>
<artifactId>commons-logging</artifactId>
<version>1.2</version>
</dependency>
<!-- https://mvnrepository.com/artifact/mysql/mysql-connector-java -->
<!-- mysql数据库驱动包 -->
<dependency>
<groupId>mysql</groupId>
<artifactId>mysql-connector-java</artifactId>
<version>5.1.37</version>
</dependency>
<!-- 单元测试 -->
<dependency>
<groupId>junit</groupId>
<artifactId>junit</artifactId>
<version>4.12</version>
</dependency>
</dependencies>
</project>