Spring Security 的基本使用
- 创建WebSecurityConfigurerAdapter 类,这个方法主要是用来配置 security中的验证项
在这里插入代码片@Configuration
public class MySecurityConfigurer extends WebSecurityConfigurerAdapter {
@Bean
PasswordEncoder passwordEncoder()
{
// return NoOpPasswordEncoder.getInstance();
return new BCryptPasswordEncoder();
}
@Override
protected void configure(HttpSecurity http) throws Exception {
//formlogin登录
http.formLogin().and()
//任何请求都进行拦截
.authorizeRequests()
.anyRequest()
.authenticated();
}
}
- 配置用户登录信息UserDetailsService
@Component
public class MyUserDetailsService implements UserDetailsService {
private Logger logger= LoggerFactory.getLogger(getClass());
@Autowired
PasswordEncoder passwordEncoder;
@Override
public UserDetails loadUserByUsername(String s) throws UsernameNotFoundException {
return new User("james",passwordEncoder.encode("123"), AuthorityUtils.commaSeparatedStringToAuthorityList("admin"));
}
}