整合shiro
第一 导入依赖
<dependency>
<groupId>org.apache.shiro</groupId>
<artifactId>shiro-spring-boot-starter</artifactId>
<version>1.4.0</version>
</dependency>
第二步 书写realm类
public class UserRealm extends AuthorizingRealm {
@Autowired
UserService userService;
@Override
protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principalCollection) {
System.out.println("执行了授权方法");
return null;
}
@Override
protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken authenticationToken) throws AuthenticationException {
System.out.println("执行了认证方法");
UsernamePasswordToken usernamePasswordToken=(UsernamePasswordToken) authenticationToken;
User1 user1=userService.getUserByName(usernamePasswordToken.getUsername());
if(user1==null){
return null;
}
return new SimpleAuthenticationInfo("",user1.getPwd(),"");
}
}
第三步 ; 创建configuration类
@Configuration
public class ShiroConfig {
@Bean
public UserRealm userRealm(){
return new UserRealm();
}
@Bean
public DefaultWebSecurityManager getDefaultWebSecurityManager(@Qualifier("userRealm") UserRealm userRealm){
DefaultWebSecurityManager securityManager=new DefaultWebSecurityManager();
securityManager.setRealm(userRealm);
return securityManager;
}
@Bean
public ShiroFilterFactoryBean getShiroFilterFactoryBean(
@Qualifier("getDefaultWebSecurityManager") DefaultWebSecurityManager defaultWebSecurityManager){
ShiroFilterFactoryBean bean=new ShiroFilterFactoryBean();
bean.setSecurityManager(defaultWebSecurityManager);
Map<String,String> filterChainMap=new HashMap<>();
filterChainMap.put("/user/add","authc");
filterChainMap.put("/user/update","authc");
bean.setFilterChainDefinitionMap(filterChainMap);
bean.setLoginUrl("/tologin");
return bean;
}
}
第四步: 书写login方法
@RequestMapping("/login")
public String login(String username, String password, Model model){
Subject subject=SecurityUtils.getSubject();
UsernamePasswordToken token=new UsernamePasswordToken(username,password);
try {
subject.login(token);//这是最重要的方法
return "index";
} catch (UnknownAccountException e){
model.addAttribute("msg","用户名错误");
return "login";
} catch (IncorrectCredentialsException e) {
model.addAttribute("msg","密码错误");
return "login";
}
}
2021-02-27
最新推荐文章于 2021-02-28 19:15:38 发布