springCloud+shiro实现权限认证详细教程
新建eureka注册中心和shiro认证服务器,省略过程。。。。。
shiro认证服务:
1、导包
<dependency> <groupId>org.apache.shiro</groupId> <artifactId>shiro-spring</artifactId> <version>${shiro.version}</version> </dependency>
2、配置文件
swagger2.enable=true
spring.application.name=thinkd-operation
server.port=9820
#server.port=${
random.int(9820,9829)}
eureka.instance.ip-address=true
eureka.client.service-url.defaultZone=http://localhost:9000/eureka,http://localhost:9001/eureka
## mybatis相关配置 mybatis-config.xml文件的位置
#mybatis.config-location=classpath:mybatis-config.xml
mybatis.type-aliases-package=com.tends.aopthinkd.operation.pojo
mybatis.mapper-locations=classpath:mappers/**.xml
spring.datasource.url=jdbc:mysql://localhost:3306/tends_testdb?useSSL=false&serverTimezone=UTC&characterEncoding=utf8&useUnicode=true
# 避免使用Springboot默认的连接池Hikari
spring.datasource.type=com.alibaba.druid.pool.DruidDataSource
spring.datasource.username=root
spring.datasource.password=root
spring.datasource.driver-class-name=com.mysql.jdbc.Driver
3、加上数据库表,要自己添加用户角色的信息:
CREATE TABLE `sys_user` (
`id` bigint NOT NULL AUTO_INCREMENT COMMENT '主键ID',
`username` varchar(200) NOT NULL COMMENT '用户名',
`password` varchar(120) CHARACTER SET utf8 COLLATE utf8_general_ci NOT NULL COMMENT '用户密码',
`salt` varchar(20) CHARACTER SET utf8 COLLATE utf8_general_ci DEFAULT NULL COMMENT '加密盐值',
`status` tinyint(1) NOT NULL DEFAULT '0' COMMENT '用户状态:0未启用,1正常,2异常',
`email` varchar(60) DEFAULT NULL COMMENT '邮箱',
`created` datetime NOT NULL COMMENT '创建时间',
`updated` datetime NOT NULL COMMENT '更新时间',
`remarks` text COMMENT '备注',
PRIMARY KEY (`id`)
) ENGINE=InnoDB AUTO_INCREMENT=3 DEFAULT CHARSET=utf8
CREATE TABLE `sys_role` (
`id` bigint NOT NULL AUTO_INCREMENT COMMENT '角色主键ID',
`role_name` varchar(200) NOT NULL COMMENT '角色名称',
`role_desc` varchar(300) DEFAULT NULL COMMENT '角色描述',
`created` datetime NOT NULL COMMENT '创建时间',
`updated` datetime NOT NULL COMMENT '更新时间',
PRIMARY KEY (`id`)
) ENGINE=InnoDB AUTO_INCREMENT=4 DEFAULT CHARSET=utf8
CREATE TABLE `sys_user_role` (
`pk` bigint NOT NULL AUTO_INCREMENT COMMENT '关系键 主键id',
`uid` bigint NOT NULL COMMENT '用户id',
`rid` bigint NOT NULL COMMENT '角色id',
`created` datetime NOT NULL COMMENT '创建时间',
`updated` datetime NOT NULL COMMENT '更新时间',
PRIMARY KEY (`pk`)
) ENGINE=InnoDB AUTO_INCREMENT=4 DEFAULT CHARSET=utf8
CREATE TABLE `sys_permission` (
`id` int NOT NULL,
`name` varchar(255) DEFAULT NULL,
`description` varchar(255) DEFAULT NULL,
PRIMARY KEY (`id`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci COMMENT='用户权限表'
CREATE TABLE `sys_permission_role` (
`permission_id` int NOT NULL,
`role_id` int NOT NULL,
PRIMARY KEY (`permission_id`,`role_id`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci COMMENT='角色-权限-关系表'
CREATE TABLE `sys_shiro_token` (
`id` bigint NOT NULL AUTO_INCREMENT,
`user_id` bigint NOT NULL COMMENT '用户id',
`token` varchar(200) DEFAULT NULL,
`ip` varchar(60) DEFAULT NULL,
`expire_time` datetime DEFAULT NULL COMMENT '过期时间',
`update_time` datetime DEFAULT NULL COMMENT '更新时间',
PRIMARY KEY (`id`)
) ENGINE=InnoDB AUTO_INCREMENT=2 DEFAULT CHARSET=utf8
4、添加实体类(好几个)
@Getter
@Setter //提供用户核心信息
public class SysUser implements Serializable {
private Long id;
private String username;
private String password;
private String email;
private Integer status;
private List<SysRole> roles = new ArrayList<SysRole>();
}
@Getter
@Setter //授予身份验证对象以权限
public class SysRole implements Serializable {
private static final long serialVersionUID = 6263052755291926771L;
private Long id;
private String roleDesc;
private String roleName;
}
@Getter
@Setter //授予身份验证对象以权限
public class sysUserRole implements Serializable {
private Long pk;
private Long uid; //用户id
private Long rid; //角色id
private Date created;
private Date updated;
}
@Getter
@Setter //用户权限表
public class SysPermission implements Serializable {
private Long id;
private String name;
private String description;
}
//系统用户Token
@Getter
@Setter
public class SysUserTokenPojo implements Serializable {
private Long id;
//用户ID
private Long userId;
//token
private String token;
//ip
private String ip;
//过期时间
private Date expireTime;
//更新时间
private Date updateTime;
}
5、创建mapper映射,并指定接口
**UserMapper**
<select id="findByUsername" resultType="com.tends.aopthinkd.operation.pojo.SysUser">
SELECT * FROM sys_user WHERE username=#{
username} LIMIT 1
</select>
<select id="findUserById" resultType="com.tends.aopthinkd.operation.pojo.SysUser">
SELECT * FROM sys_user WHERE id=#{
userId