Shiro在线刷新权限

最新推荐文章于 2024-11-05 08:08:40 发布
最新推荐文章于 2024-11-05 08:08:40 发布
阅读量633 收藏 2
点赞数
分类专栏: Shiro 文章标签: shiro 在线刷新 Shiro1.6.0
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.youkuaiyun.com/u010138825/article/details/109818330
版权

shiro-spring-boot-web-starter 1.6.0版本[SpringBoot微服务框架]
提前说好,说我缺文件的,一般那是不中要的

ShiroFreshService


    /**
     * 初始化权限 -> 拿全部权限
     *
     * @param :
     * @return: java.util.Map<java.lang.String, java.lang.String>
     */
    Map<String, String> loadFilterChainDefinitionMap();


    /**
     * 重新构建权限过滤器
     * 一般在修改了用户角色、用户等信息时,需要再次调用该方法
     */
    void reCreateFilterChains(ShiroFilterFactoryBean shiroFilterFactoryBean);

ShiroFreshServiceImpl

@Slf4j
@Service
public class ShiroFreshServiceImpl implements ShiroFreshService {

    @Autowired
    private RoleMenuService roleMenuService;

    @Autowired
    private ConfigProperties configProperties;

    private static ReentrantReadWriteLock readWriteLock = new ReentrantReadWriteLock();
    private static Lock writeLock = readWriteLock.writeLock();

    @Override
    public Map<String, String> loadFilterChainDefinitionMap() {
        Map<String, String> filterChainDefinitionMap = new LinkedHashMap<>();
        filterChainDefinitionMap.put("/validcaptcha", "anon");//验证验证码
        filterChainDefinitionMap.put("/validate", "anon");
        filterChainDefinitionMap.put("/login", "anon");
        filterChainDefinitionMap.put("/logout", "anon");
        filterChainDefinitionMap.put("/css/** ", "anon");
        filterChainDefinitionMap.put("/image/**", "anon");
        filterChainDefinitionMap.put("/js/**", "anon");
        filterChainDefinitionMap.put("/error/**", "anon");
        filterChainDefinitionMap.put("/plugins/**", "anon");
        filterChainDefinitionMap.put("/favicon.ico", "anon");
        filterChainDefinitionMap.put("/401", "anon");
        filterChainDefinitionMap.put("/403", "anon");
        filterChainDefinitionMap.put("/404", "anon");
        filterChainDefinitionMap.put("/500", "anon");
        List<UrlRoleVo> urlRoleVoList = roleMenuService.findAllUrlRolesList();
        String roleCode = configProperties.getAdminRoleCode();
        if (CollectionUtils.isNotEmpty(urlRoleVoList)) {
            urlRoleVoList.forEach(ur -> filterChainDefinitionMap.put(ur.url(), "roles[" + ur.role().toUpperCase() + "," + roleCode + "]"));
        }
        //对所有用户认证
        filterChainDefinitionMap.put("/**", "authc");
        return filterChainDefinitionMap;
    }

    @Override
    public void reCreateFilterChains(ShiroFilterFactoryBean shiroFilterFactoryBean) {
        writeLock.lock();
        try {
            AbstractShiroFilter shiroFilter = null;
            try {
                shiroFilter = (AbstractShiroFilter) shiroFilterFactoryBean.getObject();
            } catch (Exception e) {
                log.error("ShiroFreshServiceImpl刷新权限异常", e);
                throw new HdapException(GET_SHIRO_FILTER);
            }
            PathMatchingFilterChainResolver filterChainResolver = (PathMatchingFilterChainResolver) shiroFilter.getFilterChainResolver();
            DefaultFilterChainManager filterChainManager = (DefaultFilterChainManager) filterChainResolver.getFilterChainManager();
            //加载数据
            Map<String, String> filterChainDefinitionMap = loadFilterChainDefinitionMap();
            // 清空老的权限控制
            filterChainManager.getFilterChains().clear();
            shiroFilterFactoryBean.getFilterChainDefinitionMap().clear();
            shiroFilterFactoryBean.setFilterChainDefinitionMap(filterChainDefinitionMap);
            // 重新构建生成
            for (Map.Entry<String, String> filterChainDefinition : filterChainDefinitionMap.entrySet()) {
                filterChainManager.createChain(filterChainDefinition.getKey(), filterChainDefinition.getValue());
            }
        } finally {
            writeLock.unlock();
        }
    }
}

Config

/**
 * 参考【仅作参考】
 * 1. https://blog.youkuaiyun.com/New_Yao/article/details/100769385
 * 2. https://www.cnblogs.com/zhengqing/p/11603824.html
 * *.https://shiro.apache.org/spring-boot.html
 */
@Slf4j
@Configuration
public class SysUserSecurityConfig {

    @Value("${server.servlet.session.timeout}")
    @DurationUnit(ChronoUnit.SECONDS)
    private Duration timeout = Duration.ofMinutes(30L);

    @Autowired
    private ShiroFreshService shiroFreshService;

    /**
     * 设置用于匹配密码的CredentialsMatcher
     * SHA-256
     *
     * @return
     */
    @Bean
    public HashedCredentialsMatcher credentialsMatcher() {
        HashedCredentialsMatcher credentialsMatcher = new HashedCredentialsMatcher();
        // 散列算法,这里使用更安全的sha256算法
        credentialsMatcher.setHashAlgorithmName(Sha256Hash.ALGORITHM_NAME);
        // 散列迭代次数
        credentialsMatcher.setHashIterations(1024);
        return credentialsMatcher;
    }

    /**
     * 配置自定义Realm
     *
     * @return
     */
    @Bean
    public SysUserRealm sysUserRealm() {
        SysUserRealm sysUserRealm = new SysUserRealm();
        // 配置使用哈希密码匹配
        sysUserRealm.setCredentialsMatcher(credentialsMatcher());
        // 启用身份验证缓存,即缓存AuthenticationInfo信息,默认false
        sysUserRealm.setAuthenticationCachingEnabled(true);
        // 启用授权缓存,即缓存AuthorizationInfo信息,默认false,一旦配置了缓存管理器,授权缓存默认开启
        sysUserRealm.setAuthorizationCachingEnabled(true);
        return sysUserRealm;
    }

    /**
     * 内存中的缓存管理器
     *
     * @return
     */
    @Bean
    protected CacheManager cacheManager() {
        return new MemoryConstrainedCacheManager();
    }

    /**
     * 配置会话管理器,设定会话超时及保存
     *
     * @return
     */
    @Bean("sessionManager")
    public SessionManager sessionManager() {
        DefaultWebSessionManager sessionManager = new DefaultWebSessionManager();
        //全局会话超时时间(单位毫秒),默认30分钟
        sessionManager.setGlobalSessionTimeout(timeout.getSeconds() * 1000);
        //是否开启删除无效的session对象  默认为true
        sessionManager.setDeleteInvalidSessions(true);
        //是否开启定时调度器进行检测过期session 默认为true
        sessionManager.setSessionValidationSchedulerEnabled(true);
        //设置session失效的扫描时间, 清理用户直接关闭浏览器造成的孤立会话 默认为 1个小时
        //设置该属性 就不需要设置 ExecutorServiceSessionValidationScheduler 底层也是默认自动调用ExecutorServiceSessionValidationScheduler
        //暂时设置为 5秒 用来测试
        // sessionManager.setSessionValidationInterval(5000);
        //禁用URL会话重写
        sessionManager.setSessionIdUrlRewritingEnabled(false);
        return sessionManager;

    }

    /**
     * 安全控制中心
     *
     * @return
     */
    @Bean("securityManager")
    public SessionsSecurityManager securityManager() {
        DefaultWebSecurityManager defaultSecurityManager = new DefaultWebSecurityManager();
        //配置自定义Realm
        defaultSecurityManager.setRealm(sysUserRealm());
        //内存中的缓存管理器
        defaultSecurityManager.setCacheManager(cacheManager());
        //配置会话管理器,设定会话超时及保存
        defaultSecurityManager.setSessionManager(sessionManager());
        return defaultSecurityManager;
    }

    /**
     * 配置Filter过滤器
     *
     * @return
     */
    @Bean
    public ShiroFilterFactoryBean shiroFilterFactoryBean() {
        ShiroFilterFactoryBean filterFactoryBean = new ShiroFilterFactoryBean();
        // 必须设置SecuritManager
        filterFactoryBean.setSecurityManager(securityManager());
        //用户未登录时跳转的请求路径
        filterFactoryBean.setLoginUrl(SysRoute.REDIRECT_LOGIN);
        //用户未登录成功跳转的请求路径
        filterFactoryBean.setSuccessUrl("/");
        //用户没有访问权限时跳转的请求路径
        filterFactoryBean.setUnauthorizedUrl("/401");
        Map<String, Filter> filters = new LinkedHashMap();
        //配置拦截器,实现无权限返回(过滤器制定)
        filters.put("authc", new MyFormAuthenticationFilter());
        filters.put("roles", new MyRolesAuthorizationFilter());
        filterFactoryBean.setFilters(filters);
        Map<String, String> filterChainDefinitionMap = shiroFreshService.loadFilterChainDefinitionMap();
        filterFactoryBean.setFilterChainDefinitionMap(filterChainDefinitionMap);
        return filterFactoryBean;
    }

}

realm

@Slf4j
public class SysUserRealm extends AuthorizingRealm {

    @Autowired
    private UserService userService;

    @Autowired
    private EmpService empService;

    @Autowired
    private ConfigProperties configProperties;


    /**
     * 认证
     */
    @Override
    protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken authenticationToken) {
        String username = (String) authenticationToken.getPrincipal();
        log.info("#SHIRO#认证" + username);
        SysUser sysUser = userService.getSysUserOneByUsername(username);
        if (ObjectUtils.isNotEmpty(sysUser)) {
            //status 用户状态,0,离职,1:正常,2:禁用
            switch (sysUser.status()) {
                case 0:
                    throw new UserStatusException(new ErrCode(10001, "用户离职状态,禁止登录"));
                case 2:
                    throw new UserStatusException(new ErrCode(10002, "用户锁定状态,禁止登录"));
                default:
                    break;
            }
            return new SimpleAuthenticationInfo(username, sysUser.password(), ByteSource.Util.bytes(username), getName());
        }
        throw new UnknownAccountException("用户名或密码不存在");
    }

    /**
     * 授权信息
     */
    @Override
    protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principalCollection) {
        log.info("#SHIRO#授权");
        if (principalCollection == null) {
            throw new AuthorizationException("用户凭证不能为空");
        }
        SimpleAuthorizationInfo info = new SimpleAuthorizationInfo();
        String username = (String) getAvailablePrincipal(principalCollection);
        //登录用户角色
        Set<String> roles = new HashSet<>();
        List<String> roleCodeList = empService.getRoleCodeListByUsername(username);
        if (CollectionUtils.isNotEmpty(roleCodeList)) {
            roles.addAll(roleCodeList.stream().map(String::toUpperCase).collect(Collectors.toSet()));
        }
        SysUser sysUser = userService.getSysUserOneByUsername(username);
        if (ObjectUtils.isNotEmpty(sysUser) && configProperties.getAdminId().equals(sysUser.id())) {
            roles.add(configProperties.getAdminRoleCode());
        }
        info.setRoles(roles);
        return info;
    }


    /**
     * 自定义方法:清除所有 授权缓存
     */
    public void clearAllCachedAuthorizationInfo() {
        getAuthorizationCache().clear();
    }


}

MyFormAuthenticationFilter

/**
 * Name: 需要登录认证
 * Description:
 * User: bambo
 * Date: 2020-07-16
 * Time: 16:12
 */
@Slf4j
public class MyFormAuthenticationFilter extends FormAuthenticationFilter {


    /**
     * @param request
     * @param response
     * @return true-继续往下执行,false-该filter过滤器已经处理,不继续执行其他过滤器
     * @throws IOException
     */
    @Override
    protected boolean onAccessDenied(ServletRequest request, ServletResponse response) throws IOException {
        log.info("#SHIRO#认证处理(1),onAccessDenied:MyFormAuthenticationFilter");
        Subject subject = this.getSubject(request, response);
        if (subject.getPrincipal() == null) {
            log.info("#SHIRO#认证处理(2-1),凭证丢失【重新登录】:MyFormAuthenticationFilter");
            if (AjaxBoolUtil.isAjax((HttpServletRequest) request)) {
                response.setCharacterEncoding(AjaxBoolUtil.CHARACTER_ENCODING);
                response.setContentType(AjaxBoolUtil.CONTENT_TYPE);
                response.getWriter().write(GsonUtil.toString(Result.right("请重新登录!")));
            } else {
                ((HttpServletResponse) response).sendRedirect(SysRoute.LOGIN_LOGIN);
            }
        } else {
            log.info("#SHIRO#认证处理(2-2),未经认证【401】:MyFormAuthenticationFilter");
            if (AjaxBoolUtil.isAjax((HttpServletRequest) request)) {
                response.setCharacterEncoding(AjaxBoolUtil.CHARACTER_ENCODING);
                response.setContentType(AjaxBoolUtil.CONTENT_TYPE);
                response.getWriter().write(GsonUtil.toString(Result.right("未经认证!")));
            } else {
                WebUtils.toHttp(response).sendError(401);
            }
        }
        return false;
    }


}

MyRolesAuthorizationFilter

@Slf4j
public class MyRolesAuthorizationFilter extends AuthorizationFilter {

    @Override
    public boolean isAccessAllowed(ServletRequest request, ServletResponse response, Object mappedValue)
            throws IOException {
        log.info("#SHIRO#授权效验(1):MyRolesAuthorizationFilter");
        final Subject subject = getSubject(request, response);
        if (subject.getPrincipal() == null) {
            return false;
        }
        final String[] rolesArray = (String[]) mappedValue;
        if (rolesArray == null || rolesArray.length == 0) {
            log.info("#SHIRO#(2-1),无指定角色时,无需检查,允许访问:MyRolesAuthorizationFilter");
            return true;
        }
        for (String roleName : rolesArray) {
            if (subject.hasRole(roleName)) {
                log.info("#SHIRO#(2-2),有匹配角色,允许访问:MyRolesAuthorizationFilter");
                return true;
            }
        }
        log.info("#SHIRO#未经授权(3),无授权:MyRolesAuthorizationFilter");
        return false;
    }


    @Override
    public boolean onAccessDenied(ServletRequest request, ServletResponse response) throws IOException {
        log.info("#SHIRO#授权处理(1),onAccessDenied:MyRolesAuthorizationFilter");
        Subject subject = this.getSubject(request, response);
        if (subject.getPrincipal() == null) {
            log.info("#SHIRO#授权处理(2-1),凭证丢失【重新登录】:MyRolesAuthorizationFilter");
            if (AjaxBoolUtil.isAjax((HttpServletRequest) request)) {
                response.setCharacterEncoding(AjaxBoolUtil.CHARACTER_ENCODING);
                response.setContentType(AjaxBoolUtil.CONTENT_TYPE);
                response.getWriter().write(GsonUtil.toString(Result.right("请重新登录!")));
            } else {
                ((HttpServletResponse) response).sendRedirect(SysRoute.LOGIN_LOGIN);
            }
        } else {
            log.info("#SHIRO#授权处理(2-2),未经授权【403】:MyRolesAuthorizationFilter");
            if (AjaxBoolUtil.isAjax((HttpServletRequest) request)) {
                response.setCharacterEncoding(AjaxBoolUtil.CHARACTER_ENCODING);
                response.setContentType(AjaxBoolUtil.CONTENT_TYPE);
                response.getWriter().write(GsonUtil.toString(Result.right("未经授权!")));
            } else {
                WebUtils.toHttp(response).sendError(403);
            }
        }
        return false;
    }
}

Sha256PasswordHelper

public class Sha256PasswordHelper {

    public static String encryption(String username, String pwd) {
        return new Sha256Hash(pwd, username, 1024).toString();
    }
}

ShiroBeanLifecycleConfig

@Configuration
public class ShiroBeanLifecycleConfig {

    /**
     * 安全框架shiro的bean生命周期
     * LifecycleBeanPostProcessor将Initializable和Destroyable的实现类统一在其内部自动分别调用了Initializable.init()和Destroyable.destroy()方法,
     * 从而达到管理shiro bean生命周期的目的。
     *
     * @return
     */
    @Bean("lifecycleBeanPostProcessor")
    public LifecycleBeanPostProcessor lifecycleBeanPostProcessor() {
        return new LifecycleBeanPostProcessor();
    }

    /**
     * APC 自动代理创建器
     * 扫描上下文,寻找所有的Advistor(通知器),将这些Advisor应用到所有符合切入点的Bean中。所以必须在lifecycleBeanPostProcessor创建之后创建。
     *
     * @return
     * @DependsOn({"lifecycleBeanPostProcessor"}) 保证创建DefaultAdvisorAutoProxyCreator 之前先创建LifecycleBeanPostProcessor 。
     */
    @Bean
    @DependsOn({"lifecycleBeanPostProcessor"})
    public DefaultAdvisorAutoProxyCreator defaultAdvisorAutoProxyCreator() {
        DefaultAdvisorAutoProxyCreator advisorAutoProxyCreator = new DefaultAdvisorAutoProxyCreator();
        //使用cglib方式为Action对象创建代理对象[pom.xml如果引入了aop-starter依赖包装,就需要做出更改]
        advisorAutoProxyCreator.setProxyTargetClass(true);
        return advisorAutoProxyCreator;
    }
}

ToolDateUtil

@Slf4j
public class ToolDateUtil {


    //LocalDate -> Date
    public static Date asDate(LocalDate localDate) {
        return Date.from(localDate.atStartOfDay().atZone(ZoneId.systemDefault()).toInstant());
    }

    //LocalDateTime -> Date
    public static Date asDate(LocalDateTime localDateTime) {
        return Date.from(localDateTime.atZone(ZoneId.systemDefault()).toInstant());
    }

    //String -> Date
    public static Date asYMDDate(String date) {
        DateFormat fmt = new SimpleDateFormat("yyyy-MM-dd");
        try {
            return fmt.parse(date);
        } catch (ParseException e) {
            log.error(e.getMessage(), e);
            return null;
        }
    }

    //Date -> LocalDate
    public static LocalDate asLocalDate(Date date) {
        return Instant.ofEpochMilli(date.getTime()).atZone(ZoneId.systemDefault()).toLocalDate();
    }

    //Date -> LocalDateTime
    public static LocalDateTime asLocalDateTime(Date date) {
        return Instant.ofEpochMilli(date.getTime()).atZone(ZoneId.systemDefault()).toLocalDateTime();
    }

    //Date -> String
    public static String YmdHmToString(Date date) {
        SimpleDateFormat formatter = new SimpleDateFormat("yyyy-MM-dd-HH-mm");
        return formatter.format(date);
    }

    //Date -> String
    public static String YmdToString(Date date) {
        SimpleDateFormat formatter = new SimpleDateFormat("yyyy-MM-dd");
        return formatter.format(date);
    }

    //String -> Date
    public static Date asMinDate(String ymd) {
        DateTimeFormatter dtfYMD = DateTimeFormatter.ofPattern("yyyy-MM-dd");
        LocalDate date = LocalDate.parse(ymd, dtfYMD);
        return asDate(LocalDateTime.of(date, LocalTime.MIN));
    }

    //String -> Date
    public static Date asMaxDate(String ymd) {
        DateTimeFormatter dtfYMD = DateTimeFormatter.ofPattern("yyyy-MM-dd");
        LocalDate date = LocalDate.parse(ymd, dtfYMD);
        return asDate(LocalDateTime.of(date, LocalTime.MAX));
    }

}

调用

 @Autowired
    private ShiroFilterFactoryBean shiroFilterFactoryBean;
    shiroFreshService..reCreateFilterChains(shiroFilterFactoryBean)
Shiro动态刷新权限配置
福荼荼的踩坑路
07-14 1253
项目环境SpringBoot+Shiro 集成方法不再赘述。 Shiro的资源路径的权限配置从数据库读取 @Autowired JurisdictionService jurisdictionService; /** * 配置资源的访问权限 * Bean name shiroFilter * @param securityManager 管理器 * @return ShiroFilterFactoryBean */ @Bean(na
shiro刷新权限
u012693016的博客
06-24 1734
/** * @title 刷新用户权限 * @param principal * @desc principal为用户的认证信息 */ public static void reloadAuthorizing(Object principal) throws Exception{ RealmSecurityManager rsm = (RealmSecurityManag...
shiro登录认证
虫二
06-21 260
<!--添加日志功能--> <dependency> <groupId>org.slf4j</groupId> <artifactId>slf4j-api</artifactId> </dependency> <...
Shiro在线刷新权限的方法
Honins的博客
11-16 3639
要解决Shiro在线刷新权限的问题,首先要弄清楚shiro权限什么时候加载 shiro权限加载的时间是在第一次进行权限操作的时候 比如我在controller里配置 @RequirePermission,在调用这个接口的时候就会加载权限   权限加载是在这个方法里进行的 但是当数据库权限变动的时候,就需要动态的刷新了 这里的权限刷新其实是 清空-》加载的过程 shiro有提供...
Shiro刷新权限
qq_41360800的博客
03-02 1261
自定义Realm添加如下代码 public void clearAuthz(){ this.clearCachedAuthorizationInfo(SecurityUtils.getSubject().getPrincipals()); } /** * shiro刷新权限 */ public static void reloadAuthorizing() { LoggerFact...
Springboot+Shiro+jwt+Redis+Mybatis 有效期内Token刷新方案.zip
02-04
在JWT的场景下,Shiro可以用于处理登录验证,创建并验证JWT,以及控制资源访问权限。 JWT是一种轻量级的身份验证标准,用于在多个服务之间安全地传输用户信息。它包含三部分:头部、载荷和签名。在本方案中,JWT被...
SpringBoot 集成 Shiro 实现动态uri权限
04-22
6. **权限刷新**: 当权限信息发生变化时,Shiro需要能够感知并刷新缓存,确保权限控制的准确性。 7. **错误处理**: 对未授权的请求,Shiro会抛出异常,需要捕获并返回合适的错误信息给前端。 代码生成工具`code-...
springboot整和jwt、shiro、redis实现token自动刷新
08-19
Shiro是Java的一个安全框架,提供了会话管理、权限控制、身份认证等特性,与Spring Boot结合可以轻松实现权限控制。在Spring Boot中集成Shiro,我们可以通过编写自定义的Realm,对接JWT的验证逻辑,使得Shiro能够...
Shiro权限刷新
cuishujian_2003的博客
11-04 631
在实际应用中,用户的权限可能会因为多种原因而发生变化,如用户角色的调整、权限的授予或撤销等。如果系统不能及时地反映这些变化,就可能导致安全漏洞或功能受限。因此,Shiro框架提供了权限刷新的机制,以确保系统的安全性和功能的完整性。
shiro 权限与角色
02-01
这里是shrio权限与角色,入门做为一个参考
SpringBoot整合Shiro,实现从数据库加载权限权限的动态更新、Session共享
01-28
SpringBoot整合Shiro,实现从数据库加载权限权限的动态更新、Session共享
shiro实现登录安全认证
Licht1988的博客
07-17 442
shiro实现登录安全认证 shiro的优势,不需要再代码里面判断是否登录,是否有执行的权限,实现了从前端页面到后台代码的权限的控制非常的灵活方便 传统的登录认证方式是,从前端页面获取到用户输入的账号和密码之后,直接去数据库查询账号和密码是否匹配和存在,如果匹配和存在就登录成功,没有就提示错误 而shiro的认证方式则是,从前端页面获取到用户输入的账号和密码之后,传入给一个Usernam...
springBoot集成shiro+权限刷新
最新发布
lrh35的博客
11-05 531
综上所述,在 Spring Boot 结合 Shiro 进行管理时,通过合理配置 Shiro 的基础组件以及实现有效的权限刷新机制,可以更好地保障系统的安全性和权限管理的灵活性。当权限发生变化时(比如管理员在后台修改了用户的角色或权限),可以通过清理 Shiro 相关缓存来实现权限刷新。通过这种方式,当权限发生变化时,可以及时、主动地更新用户的授权信息,确保用户的权限访问符合最新的设置。方法修改用户权限后,会清理掉授权信息的缓存,下次用户访问相关资源时,Shiro 会重新进行授权计算。
SpringBoot 整合 Shiro 实现动态权限加载更新+Session 共享+单点登录
公众号:Java后端
01-08 664
作者 | Sans编辑 |江南一点雨地址 | juejin.im/post/5d087d605188256de9779e64一.说明Shiro 是一个安全框架,项目中主要用它做认证,授...
图一乐:SpringBoot整合Shiro实现动态权限加载更新
qq_48362134的博客
09-14 649
浅谈SpringBoot整合Shiro实现动态权限加载更新,图一乐就行
Shiro 修改权限刷新权限
weixin_30394251的博客
01-30 601
shiro 访问鉴权:Realm AuthorizingRealm->doGetAuthorizationInfo doGetAuthorizationInfo protected abstract AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principals) Retrieves the Au...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值