Spring Security 5.7.5 CURRENT GA获取Global/LocalAuthenticationManager以及自定义配置类

cs4m

已于 2024-07-29 18:10:31 修改

阅读量725

点赞数 1

分类专栏： Java/Kotlin 文章标签： spring boot

于 2022-11-06 20:39:09 首次发布

本文链接：https://blog.csdn.net/qq_50517956/article/details/127720715

版权

Java/Kotlin 专栏收录该内容

19 篇文章 0 订阅

订阅专栏

一、GlobalAuthenticationManager：

    private AuthenticationConfiguration authenticationConfiguration;

    public void setAuthenticationConfiguration(AuthenticationConfiguration authenticationConfiguration) {
        this.authenticationConfiguration = authenticationConfiguration;
    }
    
    @Bean
    SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
        // 获取GlobalAuthenticationManager
        AuthenticationManager authenticationManager = authenticationConfiguration.getAuthenticationManager();
        
        return http.build();
    }

二、LocalAuthenticationManager：

public class MyCustom extends AbstractHttpConfigurer<MyCustom, HttpSecurity> {
    @Override
    public void configure(HttpSecurity http) throws Exception {
        // 获取LocalAuthenticationManager
        AuthenticationManager authenticationManager = http.getSharedObject(AuthenticationManager.class);
    }
}

三、自定义配置类

形式一：

public class SmsLoginConfigurer extends AbstractHttpConfigurer<SmsLoginConfigurer, HttpSecurity> {
    private AuthenticationSuccessHandler authenticationSuccessHandler;

    private AuthenticationFailureHandler authenticationFailureHandler;


    @Override
    public void configure(HttpSecurity http) throws Exception {
        SmsLoginAuthenticationFilter smsLoginAuthenticationFilter = new SmsLoginAuthenticationFilter("/smsCodeLogin");
        smsLoginAuthenticationFilter.setAuthenticationManager(http.getSharedObject(AuthenticationManager.class));
        smsLoginAuthenticationFilter.setAuthenticationSuccessHandler(authenticationSuccessHandler);
        smsLoginAuthenticationFilter.setAuthenticationFailureHandler(authenticationFailureHandler);
        smsLoginAuthenticationFilter.setAuthenticationDetailsSource(new WebAuthenticationDetailsSource());
        http.addFilterAfter(smsLoginAuthenticationFilter, UsernamePasswordAuthenticationFilter.class);
    }

    public final SmsLoginConfigurer successHandler(AuthenticationSuccessHandler authenticationSuccessHandler) {
        this.authenticationSuccessHandler = authenticationSuccessHandler;
        return this;
    }

    public final SmsLoginConfigurer failureHandler(AuthenticationFailureHandler authenticationFailureHandler) {
        this.authenticationFailureHandler = authenticationFailureHandler;
        return this;
    }
}

    public DefaultSecurityFilterChain filterChain(HttpSecurity http,
                                                  MyAuthenticationSuccessHandler myAuthenticationSuccessHandler,
                                                  MyAuthenticationFailureHandler myAuthenticationFailureHandler,
                                                  MyAuthenticationEntryPoint myAuthenticationEntryPoint) throws Exception {
        SmsLoginConfigurer<Httpsecurity> smsLoginConfigurer = new SmsLoginConfigurer();
        smsLoginConfigurer.successHandler(myAuthenticationSuccessHandler);
        smsLoginConfigurer.failureHandler(myAuthenticationFailureHandler);
        http.authenticationProvider(new SmsLoginAuthenticationProvider());  // 设置自己的Provider或者直接使用LocalAuthenticationManager中的Provider。
        http.apply(smsLoginConfigurer);  // 应用自己的配置类
        return http.build();
    }

形式二：

public class SmsLoginConfigurer<B extends HttpSecurityBuilder<B>> extends AbstractHttpConfigurer<SmsLoginConfigurer<B>, B> {
    private AuthenticationSuccessHandler authenticationSuccessHandler;

    private AuthenticationFailureHandler authenticationFailureHandler;

    @Override
    public void configure(B builder) throws Exception {
        SmsLoginAuthenticationFilter smsLoginAuthenticationFilter = new SmsLoginAuthenticationFilter("/smsCodeLogin");
        smsLoginAuthenticationFilter.setAuthenticationManager(builder.getSharedObject(AuthenticationManager.class));
        smsLoginAuthenticationFilter.setAuthenticationSuccessHandler(authenticationSuccessHandler);
        smsLoginAuthenticationFilter.setAuthenticationFailureHandler(authenticationFailureHandler);
        smsLoginAuthenticationFilter.setAuthenticationDetailsSource(new WebAuthenticationDetailsSource());
        builder.addFilterAfter(smsLoginAuthenticationFilter, UsernamePasswordAuthenticationFilter.class);
    }

    public final SmsLoginConfigurer<B> successHandler(AuthenticationSuccessHandler authenticationSuccessHandler) {
        this.authenticationSuccessHandler = authenticationSuccessHandler;
        return this;
    }

    public final SmsLoginConfigurer<B> failureHandler(AuthenticationFailureHandler authenticationFailureHandler) {
        this.authenticationFailureHandler = authenticationFailureHandler;
        return this;
    }
}

    public DefaultSecurityFilterChain filterChain(HttpSecurity http,
                                                  MyAuthenticationSuccessHandler myAuthenticationSuccessHandler,
                                                  MyAuthenticationFailureHandler myAuthenticationFailureHandler,
                                                  MyAuthenticationEntryPoint myAuthenticationEntryPoint) throws Exception {
        SmsLoginConfigurer smsLoginConfigurer = new SmsLoginConfigurer();
        smsLoginConfigurer.successHandler(myAuthenticationSuccessHandler);
        smsLoginConfigurer.failureHandler(myAuthenticationFailureHandler);
        http.authenticationProvider(new SmsLoginAuthenticationProvider());  // 设置自己的Provider或者直接使用LocalAuthenticationManager中的Provider。
        http.apply(smsLoginConfigurer);  // 应用自己的配置类
        return http.build();
    }