我们知道如果我们不希望用户、角色、权限信息写死在配置里面。我们应该实现UserDetails与UserDetailsService接口,从而从数据库或者其他的存储上动态的加载这些信息。
要知道UserDetails和UserDetailsService
实体类User实现UserDetails
/**
* @ClassName User
* @Description TODO
* @Author Administrator
* @Date 2020/8/13 15:07
* @Version 1.0
*/
@Data
public class User implements UserDetails {
String password; //密码
String username; //用户名
private String roles;
boolean accountNonExpired; //是否没过期
boolean accountNonLocked; //是否没被锁定
boolean credentialsNonExpired; //是否没过期
boolean enabled; //账号是否可用
Collection<? extends GrantedAuthority> authorities; //用户的权限集合
public User() {
}
public User(String username, String password,String roles) {
this.username = username;
this.password = password;
this.roles = roles;
}
//省略构造方法
//省略set方法
//省略get方法(即接口UserDetails的方法)
}
MyUserDetailsService实现UserDetailsService
@Component
public class MyUserDetailsService implements UserDetailsService {
@Autowired
private UserMapper userMapper;
@Override
public UserDetails loadUserByUsername(String username)
throws UsernameNotFoundException {
//获得用户信息
User user =
userMapper.getUserByName(username);
if(user == null){
throw new UsernameNotFoundException("用户名不存在");
}
return user;
}
}
核心配置类的修改
@Override
public void configure(AuthenticationManagerBuilder auth) throws Exception {
auth.userDetailsService(myUserDetailsService)
.passwordEncoder(passwordEncoder());
/* auth.inMemoryAuthentication()
.withUser("user").password(passwordEncoder().encode("123456"))
.roles("user").and()
.withUser("admin").password(passwordEncoder().encode("123456"))
//.authorities("sys:log","sys:user")
.roles("admin")
.and()
.passwordEncoder(passwordEncoder());//配置BCrypt加密*/
}
@Bean
public PasswordEncoder passwordEncoder(){
System.out.println("1:PasswordEncoder passwordEncoder() ");
return new BCryptPasswordEncoder();
}
mybatis的xml
<select id="getUserByName" resultType="com.springsecurity.springsecurity2.bean.User">
select * from user where username = #{username}
</select>
<insert id="insertbUserBatch" parameterType = "java.util.List">
INSERT INTO user(username,password)
VALUES
<foreach collection="list" index="index" item="item" separator=",">
(#{item.username},#{item.password})
</foreach>
</insert>
数据库
在做批量添加时:有一个问题,roles这列报错,只能在xml中删除了roles这个字段
@Test
void contextLoads() {
List users = new ArrayList<User>();
User u1 = new User("小明",passwordEncoder.encode("123456"),"a");
User u2= new User("小画",passwordEncoder.encode("123456"),"a");
users.add(u1);
users.add(u2);
int row = userMapper.insertbUserBatch(users);
System.out.println(row);
}
user account is lock是什么意思?用户被锁定?
后台
参考如下:
就可以正常登录了
我们再来看看UserDetails的源码
再来看UserDetailsService的源码