2021-02-27

最新推荐文章于 2021-02-28 19:15:38 发布

wangz1992

最新推荐文章于 2021-02-28 19:15:38 发布

阅读量86

点赞数

文章标签： shiro

本文链接：https://blog.csdn.net/wangz1992/article/details/114171250

版权

整合shiro 
第一 导入依赖
 <dependency>
            <groupId>org.apache.shiro</groupId>
            <artifactId>shiro-spring-boot-starter</artifactId>
            <version>1.4.0</version>
        </dependency>
   第二步  书写realm类
   public class UserRealm extends AuthorizingRealm {

    @Autowired
    UserService userService;
    @Override
    protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principalCollection) {
       System.out.println("执行了授权方法");
        return null;
    }

    @Override
    protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken authenticationToken) throws AuthenticationException {
        System.out.println("执行了认证方法");

        UsernamePasswordToken usernamePasswordToken=(UsernamePasswordToken) authenticationToken;
        User1 user1=userService.getUserByName(usernamePasswordToken.getUsername());
        if(user1==null){
            return null;
        }
        return new SimpleAuthenticationInfo("",user1.getPwd(),"");
    }
}
第三步 ； 创建configuration类
@Configuration
public class ShiroConfig {
    @Bean
    public UserRealm userRealm(){
        return new UserRealm();
    }
    @Bean
    public DefaultWebSecurityManager getDefaultWebSecurityManager(@Qualifier("userRealm") UserRealm userRealm){
        DefaultWebSecurityManager securityManager=new DefaultWebSecurityManager();
        securityManager.setRealm(userRealm);
        return securityManager;
    }
    @Bean
    public ShiroFilterFactoryBean getShiroFilterFactoryBean(
            @Qualifier("getDefaultWebSecurityManager") DefaultWebSecurityManager defaultWebSecurityManager){
            ShiroFilterFactoryBean bean=new ShiroFilterFactoryBean();
            bean.setSecurityManager(defaultWebSecurityManager);
            Map<String,String> filterChainMap=new HashMap<>();
            filterChainMap.put("/user/add","authc");
            filterChainMap.put("/user/update","authc");
            bean.setFilterChainDefinitionMap(filterChainMap);
            bean.setLoginUrl("/tologin");
            return bean;
    }
  
}
第四步： 书写login方法
 @RequestMapping("/login")
    public String login(String username, String password, Model model){
        Subject subject=SecurityUtils.getSubject();
        UsernamePasswordToken token=new UsernamePasswordToken(username,password);
        try {
            subject.login(token);//这是最重要的方法
            return "index";
        } catch (UnknownAccountException e){
            model.addAttribute("msg","用户名错误");
            return "login";
        } catch (IncorrectCredentialsException e) {
            model.addAttribute("msg","密码错误");
            return "login";
        }
    }