碼上快樂

相關內容    簡體    繁體

SpringBoot整合Shiro 一:搭建環境

本文轉載自   查看原文   2020-04-23 18:34   1327    Shiro/ SpringBoot

 

Java項目的安全框架一般使用 shiro 與 spring security

  具體怎么選擇可以參考文章:安全框架 Shiro 和 Spring Security 如何選擇

我這里選擇使用Shiro

 

環境搭建

創建SpringBoot項目

導入Maven依賴

<dependency>
     <groupId>org.springframework.boot</groupId>
     <artifactId>spring-boot-starter-web</artifactId>
 </dependency><dependency>
     <groupId>org.apache.shiro</groupId>
     <artifactId>shiro-spring</artifactId>
     <version>1.5.1</version>
 </dependency><dependency>
     <groupId>org.springframework.boot</groupId>
     <artifactId>spring-boot-starter-thymeleaf</artifactId>
     <version>2.2.5.RELEASE</version>
 </dependency>

 

創建 Realm 類

  需要繼承 AuthorizingRealm

package com.zy.config;
 ​
 import org.apache.shiro.authc.AuthenticationException;
 import org.apache.shiro.authc.AuthenticationInfo;
 import org.apache.shiro.authc.AuthenticationToken;
 import org.apache.shiro.authz.AuthorizationInfo;
 import org.apache.shiro.realm.AuthorizingRealm;
 import org.apache.shiro.subject.PrincipalCollection;
 ​
 public class UserRealm extends AuthorizingRealm {
 ​
     //授權
     @Override
     protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principalCollection) {
         System.out.println("執行了=>授權doGetAuthorizationInfo");
         return null;
     }
 ​
     //認證
     @Override
     protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken authenticationToken) throws AuthenticationException {
         System.out.println("執行了=>認證doGetAuthenticationInfo");
         return null;
     }
 }

 

Shiro配置類

步驟1

 創建realm對象

//創建realm對象(步驟1)
 @Bean(name = "userRealm")
 public UserRealm userRealm(){
     return new UserRealm();
 }

 

步驟2

 DefaultWebSecurityManager

   --> import org.apache.shiro.web.mgt.DefaultWebSecurityManager;

//DefaultWebSecurityManager(步驟2)
 @Bean(name = "defaultWebSecurityManager")
 public DefaultWebSecurityManager defaultWebSecurityManager(@Qualifier("userRealm") UserRealm userRealm){
 ​
     DefaultWebSecurityManager securityManager=new DefaultWebSecurityManager();
     securityManager.setRealm(userRealm());
     return securityManager;
 ​
 }

 

步驟3

 ShiroFilterFactoryBean

//ShiroFilterFactoryBean(步驟3)
 @Bean(name = "shiroFilterFactoryBean")
 //@Bean
 public ShiroFilterFactoryBean shiroFilterFactoryBean(@Qualifier("defaultWebSecurityManager")DefaultWebSecurityManager defaultWebSecurityManager){
     ShiroFilterFactoryBean bean=new ShiroFilterFactoryBean();
 ​
     bean.setSecurityManager(defaultWebSecurityManager);
     return bean;
 }

ShiroConfig搭建完成

package com.zy.config;
 ​
 import org.apache.shiro.spring.web.ShiroFilterFactoryBean;
 import org.apache.shiro.web.mgt.DefaultWebSecurityManager;
 import org.springframework.beans.factory.annotation.Qualifier;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
 ​
 @Configuration
 public class ShiroConfig {
 ​
     //ShiroFilterFactoryBean(步驟3)
     @Bean(name = "shiroFilterFactoryBean")
     //@Bean
     public ShiroFilterFactoryBean shiroFilterFactoryBean(@Qualifier("defaultWebSecurityManager")DefaultWebSecurityManager defaultWebSecurityManager){
         ShiroFilterFactoryBean bean=new ShiroFilterFactoryBean();
 ​
         bean.setSecurityManager(defaultWebSecurityManager);
         return bean;
     }
 ​
     //DefaultWebSecurityManager(步驟2)
     @Bean(name = "defaultWebSecurityManager")
     public DefaultWebSecurityManager defaultWebSecurityManager(@Qualifier("userRealm") UserRealm userRealm){
 ​
         DefaultWebSecurityManager securityManager=new DefaultWebSecurityManager();
         securityManager.setRealm(userRealm());
         return securityManager;
 ​
     }
 ​
     //創建realm對象(步驟1)
     @Bean(name = "userRealm")
     public UserRealm userRealm(){
         return new UserRealm();
     }
 ​
 }

 

 

Controller

 首先是index頁面

index.html

<!DOCTYPE html>
 <html lang="en" xmlns:th="http://www.thymeleaf.org"
       xmlns:shiro="http://www.thymeleaf.org/thymeleaf-extras-shiro">
 <head>
     <meta charset="UTF-8">
     <title>Title</title>
 </head>
 <body><h1>首頁</h1>
 <p th:text="${msg}"></p><a th:href="@{/user/add}">add</a> | <a th:href="@{/user/update}">update</a></body>
 </html>

對應Controller

@RequestMapping({"/","/index"})
 public String toIndex(Model model){
     model.addAttribute("msg","HelloShiro");
 ​
     return "index";
 }

 

add頁面

add.html

<!DOCTYPE html>
 <html lang="en">
 <head>
     <meta charset="UTF-8">
     <title>Title</title>
 </head>
 <body><h1>add</h1></body>
 </html>

對應Controller

 @RequestMapping("/user/add")
 public String add(){
 ​
     return "user/add";
 }

 

update頁面

update.html

 <!DOCTYPE html>
 <html lang="en">
 <head>
     <meta charset="UTF-8">
     <title>Title</title>
 </head>
 <body><h1>update</h1></body>
 </html>

對應Controller

@RequestMapping("/user/update")
 public String update(){
 ​
     return "user/update";
 }

 

MyController(總)

 package com.zy.controller;
 ​
 import org.springframework.stereotype.Controller;
 import org.springframework.ui.Model;
 import org.springframework.web.bind.annotation.RequestMapping;
 ​
 @Controller
 public class MyController {
 ​
     @RequestMapping({"/","/index"})
     public String toIndex(Model model){
         model.addAttribute("msg","HelloShiro");
 ​
         return "index";
     }
 ​
     @RequestMapping("/user/add")
     public String add(){
 ​
         return "user/add";
     }
 ​
     @RequestMapping("/user/update")
     public String update(){
 ​
         return "user/update";
     }
 }

 

測試

index界面

add界面

update界面

測試成功,搭建完成

 

 


免責聲明!

本站轉載的文章為個人學習借鑒使用,本站對版權不負任何法律責任。如果侵犯了您的隱私權益,請聯系本站郵箱yoyou2525@163.com刪除。



猜您在找 (一) springboot 項目搭建 --《springboot與shiro整合》 shiro(三)——springboot整合shiro SpringBoot 集成 Shiro:搭建Web環境(一) (二) shiro集成 --《springboot與shiro整合》 SpringBoot整合Shiro SpringBoot整合Shiro (二) springboot 整合apache shiro springboot整合shiro springboot整合shiro springboot整合shiro應用
 
粵ICP備18138465號   © 2018-2025 CODEPRJ.COM