springboot中使用shiro

于 2018-04-04 17:00:25 发布
阅读量660 收藏 2
点赞数
CC 4.0 BY-SA版权
分类专栏: springboot2 Shiro
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.youkuaiyun.com/chenyidong521/article/details/79819776
本文介绍如何在项目中使用Apache Shiro进行权限验证配置。主要内容包括:在pom文件中添加Shiro依赖;创建配置类ShiroConfiguration实现自定义Realm;设置过滤器工厂Bean等。

摘要生成于 C知道 ,由 DeepSeek-R1 满血版支持, 前往体验 >

首先在pom文件中添加shiro的jar包

  <!--权限验证Shiro-->
  <dependency>
       <groupId>org.apache.shiro</groupId>
       <artifactId>shiro-spring</artifactId>
       <version>1.2.4</version>
   </dependency>

在项目中添加shiro的配置类ShiroConfiguration


@Configuration
public class ShiroConfiguration {



    @Bean
    public MyShiroRealm myShiroRealm(){
        MyShiroRealm myShiroRealm=new MyShiroRealm();
        myShiroRealm.setCachingEnabled(false);
        return myShiroRealm;
    }
    @Bean
    public DefaultWebSecurityManager defaultWebSecurityManager(MyShiroRealm myShiroRealm){
        DefaultWebSecurityManager securityManager=new DefaultWebSecurityManager();
        securityManager.setRealm(myShiroRealm);
        return securityManager;
    }

    @Bean
    public ShiroFilterFactoryBean shiroFilter(DefaultWebSecurityManager defaultWebSecurityManager){
        ShiroFilterFactoryBean shiroFilterFactoryBean=new ShiroFilterFactoryBean();
        shiroFilterFactoryBean.setLoginUrl("/login");
        shiroFilterFactoryBean.setSuccessUrl("/subLogin");
        shiroFilterFactoryBean.setSecurityManager(defaultWebSecurityManager);
        //shiroFilterFactoryBean.setUnauthorizedUrl("/login");
        Map<String,String> filerChainDefinitionMap=new LinkedHashMap<>();
        filerChainDefinitionMap.put("/logout","logout");
        filerChainDefinitionMap.put("/static/**","anon");
        filerChainDefinitionMap.put("/loginPage","anon");
        filerChainDefinitionMap.put("/login","anon");
        filerChainDefinitionMap.put("/success","anon");
        filerChainDefinitionMap.put("/**","authc");
        shiroFilterFactoryBean.setFilterChainDefinitionMap(filerChainDefinitionMap);
        return shiroFilterFactoryBean;
    }



}

因为上面需要ShiroRealm我们这里自己创建一个MyShiroRealm ,这里面写的是验证登陆人的账号密码是否正确,和验证账号的权限信息。

public class MyShiroRealm extends AuthorizingRealm {

    @Resource
    private TbUserDao userDao;

    @Override
    protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principalCollection) {
      ShiroUser shiroUser = (ShiroUser) principals.getPrimaryPrincipal();

        SimpleAuthorizationInfo info = new SimpleAuthorizationInfo();
        //权限表中权限拼接的set集合
        Set<String> permNames = userService.findPermNamesByUserId(shiroUser.getId());

        info.addStringPermissions(permNames);

        logger.info(String.format("用户[%s]登录成功,获取权限集合:%s", shiroUser.getLoginName(), permNames.toString()));

        return info;
    }

    @Override
    protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken authenticationToken) throws AuthenticationException {
        UsernamePasswordToken token=(UsernamePasswordToken)authenticationToken;
        String userName = token.getUsername();//查看是否有此用户
        TbUser user=userDao.findTbUserByLoginName(userName);
        if(user==null) return null;
        ShiroUser shiroUser = new ShiroUser();
        try{
            shiroUser.setId(user.getId());
            shiroUser.setLoginName(user.getLoginName());
            shiroUser.setName(user.getName());
            shiroUser.setDataRange(user.getDataRange());
            if(user.getCompany() != null){
                shiroUser.setCompanyId(user.getCompany().getId());
                shiroUser.setCompanyName(user.getCompany().getCompanyName());
                shiroUser.setState(user.getCompany().getState());
            }else{
                shiroUser.setState("1");
            }
            String roleNames = "";
            for(TBRole r : user.getRoles()){
                roleNames += ","+r.getName();
            }
            shiroUser.setRoleNames(roleNames.substring(1));
        }catch(Exception e){
            e.printStackTrace();
        }
            return new SimpleAuthenticationInfo(shiroUser,user.getPassWord(),user.getLoginName());

    }
        /**
     * 自定义Authentication对象,使得Subject除了携带用户的登录名外还可以携带更多信息.
     */
    public static class ShiroUser implements Serializable {
        private static final long serialVersionUID = -1373760761780840081L;
        public Long id;
        public String loginName;
        public String name;
        public String dataRange;
        public Long companyId;
        public String companyName;
        public String roleNames;
        public String state;
        public String getDataRange() {
            return dataRange;
        }

        public void setDataRange(String dataRange) {
            this.dataRange = dataRange;
        }

        public String getName() {
            return name;
        }

        public String getLoginName() {
            return loginName;
        }

        public Long getId() {
            return id;
        }

        public static long getSerialversionuid() {
            return serialVersionUID;
        }

        public void setId(Long id) {
            this.id = id;
        }

        public void setLoginName(String loginName) {
            this.loginName = loginName;
        }

        public void setName(String name) {
            this.name = name;
        }


        public Long getCompanyId() {
            return companyId;
        }

        public void setCompanyId(Long companyId) {
            this.companyId = companyId;
        }


        public void setCompanyName(String companyName) {
            this.companyName = companyName;
        }

        public String getCompanyName() {
            return companyName;
        }

        public String getRoleNames() {
            return roleNames;
        }

        public void setRoleNames(String roleNames) {
            this.roleNames = roleNames;
        }

        public String getState() {
            return state;
        }

        public void setState(String state) {
            this.state = state;
        }

        /**
         * 本函数输出将作为默认的<shiro:principal/>输出.
         */
        @Override
        public String toString() {
            return loginName;
        }

        /**
         * 重载hashCode,只计算loginName;
         */
        @Override
        public int hashCode() {
            return Objects.hashCode(loginName);
        }

        /**
         * 重载equals,只计算loginName;
         */
        @Override
        public boolean equals(Object obj) {
            if (this == obj) {
                return true;
            }
            if (obj == null) {
                return false;
            }
            if (getClass() != obj.getClass()) {
                return false;
            }
            ShiroUser other = (ShiroUser) obj;
            if (loginName == null) {
                if (other.loginName != null) {
                    return false;
                }
            } else if (!loginName.equals(other.loginName)) {
                return false;
            }

            return true;
        }

    }
}
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值