今天尝试看了下 spring security中 cookie的使用 。 实现了自定的cookie ,在cookie中加入了 ip的绑定 。废话多说,直接上代码
重写了 TokenBasedRememberMeServices 类。实现了自定义的 RememberMeServices
import java.security.MessageDigest;
import java.security.NoSuchAlgorithmException;
import java.util.Arrays;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import org.springframework.security.core.Authentication;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.security.crypto.codec.Hex;
import org.springframework.security.web.authentication.rememberme.InvalidCookieException;
import org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices;
public class IpTokenBasedRememberMeSerivces extends TokenBasedRememberMeServices {
private static