spring security简单配置

已于 2022-07-11 11:12:09 修改
阅读量282 收藏
点赞数
分类专栏: spring 文章标签: spring java
于 2022-07-06 08:45:20 首次发布
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/weixin_44485192/article/details/125631957
版权

spring security简单配置


使用版本 jdk17,springboot 2.7.1

主要集中在5个类里面配置

在这里插入图片描述

1,实现UserDetailsService

@Configuration
public class MyUserDetailsService implements UserDetailsService {

    private final Map<String, String> users = Map.of("user1", "authority1", "user2", "authority2");

    @Override
    public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {
//		省略在数据库查找用户,此时通用密码为123456
        String password = new BCryptPasswordEncoder().encode("123456");
        if (!users.containsKey(username)) {
            throw new UsernameNotFoundException("没有找到用户名!!");
        }

        List<GrantedAuthority> grantedAuthorities = AuthorityUtils.createAuthorityList(users.get(username));
        return new User(username, password, grantedAuthorities);
    }
}

2,实现AuthenticationManager

@Configuration
public class MyAuthenticationManager implements AuthenticationManager {

	@Autowired
	private UserDetailsService userDetailsService;

	@Autowired
	private PasswordEncoder passwordEncoder;

	@Override
	public Authentication authenticate(Authentication authentication) throws AuthenticationException {

		UserDetails userDetails = userDetailsService.loadUserByUsername(authentication.getName());
		if (!passwordEncoder.matches((String) authentication.getCredentials(), userDetails.getPassword())) {
			throw new BadCredentialsException("用户名或密码错误");
		}
		System.out.println(userDetails);
		return new UsernamePasswordAuthenticationToken(authentication, authentication.getCredentials(),
				userDetails.getAuthorities());
	}
}

3,登录成功与失败的处理


@Configuration
public class AuthenticationHandleAdapter implements AuthenticationSuccessHandler, AuthenticationFailureHandler {

	@Autowired
	private ObjectMapper objectMapper;

	private void write(HttpServletResponse response, Object object) {
		try {
			response.setContentType(MediaType.APPLICATION_JSON_VALUE);
			response.setCharacterEncoding("UTF-8");
			response.getWriter().print(objectMapper.writeValueAsString(object));
			response.getWriter().flush();
		} catch (IOException e) {
			e.printStackTrace();
		}
	}

	@Override
	public void onAuthenticationSuccess(HttpServletRequest request, HttpServletResponse response,
			Authentication authentication) throws IOException, ServletException {

		write(response, Map.of("message", "ok"));
	}

	@Override
	public void onAuthenticationFailure(HttpServletRequest request, HttpServletResponse response,
			AuthenticationException exception) throws IOException, ServletException {
		write(response, Map.of("message", "failed: " + exception.getMessage()));
	}
}

4,访问拒绝处理

@Configuration
public class MyAccessDeniedHandler implements AccessDeniedHandler {

    private final ObjectMapper objectMapper;

    public MyAccessDeniedHandler(ObjectMapper objectMapper) {
        this.objectMapper = objectMapper;
    }

    @Override
    public void handle(HttpServletRequest request,
                       HttpServletResponse response,
                       AccessDeniedException accessDeniedException) throws IOException, ServletException {
        try {
            response.setContentType(MediaType.APPLICATION_JSON_VALUE);
            response.setCharacterEncoding("UTF-8");
            response.getWriter().print(objectMapper.writeValueAsString(
                    Map.of("message", "access deny: " + accessDeniedException.getMessage())));
            response.getWriter().flush();
        } catch (IOException e) {
            e.printStackTrace();
        }
    }
}

5,核心配置

@Configuration
public class WebSecurityConfig {

    @Bean
    PasswordEncoder bCryptPasswordEncoder() {
        return new BCryptPasswordEncoder();
    }

    @Bean
    SecurityFilterChain filterChain(HttpSecurity http,
                                    MyAuthenticationManager authenticationManager,
                                    MyAccessDeniedHandler accessDeniedHandler,
                                    AuthenticationHandleAdapter authenticationHandler) throws Exception {
        return http
                .formLogin(customizer -> customizer
                        .loginPage("/loginPage")
                        .successHandler(authenticationHandler)
                        .failureHandler(authenticationHandler)
                        .loginProcessingUrl("/login")
                )
                .authorizeRequests(authorizeRequests -> authorizeRequests
                        .antMatchers("/hello").authenticated()
                        .antMatchers("/authority1").hasAuthority("authority1")
                        .antMatchers("/authority2").hasAuthority("authority2")
                )
                .exceptionHandling(exceptionHandling -> exceptionHandling
                        .accessDeniedHandler(accessDeniedHandler)
                )
                .authenticationManager(authenticationManager)
                .csrf().disable()
                .build();

    }
}

POM文件内容添加

		<dependency>
			<groupId>org.springframework.boot</groupId>
			<artifactId>spring-boot-starter-security</artifactId>
		</dependency>
		<dependency>
			<groupId>org.springframework.boot</groupId>
			<artifactId>spring-boot-starter-web</artifactId>
		</dependency>
爱 不会绝迹
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值