• 欢迎访问搞代码网站,推荐使用最新版火狐浏览器和Chrome浏览器访问本网站!
  • 如果您觉得本站非常有看点,那么赶紧使用Ctrl+D 收藏搞代码吧
> 后端 > springboot > springboot整合shiro安全框架

springboot整合shiro安全框架

springboot 海叔叔 4年前 (2021-08-19) 30次浏览 已收录 0个评论

本文简单介绍springboot整合shiro安全框架的相关内容
1.配置 pom

<shiro.version>1.4.0</shiro.version>
<!--shiro start -->
<dependency>
	<groupId>org.apache.shiro</groupId>
	<artifactId>shiro-core</artifactId>
	<version>${shiro.version}</version>
</dependency>
<dependency>
	<groupId>org.apache.shiro</groupId>
	<artifactId>shiro-web</artifactId>
	<version>${shiro.version}</version>
</dependency>
<dependency>
	<groupId>org.apache.shiro</groupId>
	<artifactId>shiro-ehcache</artifactId>
	<version>${shiro.version}</version>
</dependency>
<dependency>
	<groupId>org.apache.shiro</groupId>
	<artifactId>shiro-spring</artifactId>
	<version>${shiro.version}</version>
</dependency>
<!--shiro end -->

2. MyShiroRealm.java

package com.gaodaima.test;

import java.util.Collection;
import java.util.HashSet;

import org.apache.shiro.authc.*;
import org.apache.shiro.authz.AuthorizationInfo;
import org.apache.shiro.authz.SimpleAuthorizationInfo;
import org.apache.shiro.realm.AuthorizingRealm;
import org.apache.shiro.session.Session;
import org.apache.shiro.subject.PrincipalCollection;
import org.fh.service.system.UsersService;
import org.fh.util.Const;
import org.fh.util.Jurisdiction;
import org.fh.entity.PageData;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.context.annotation.Lazy;
 
/**
 * 说明:Shiro身份认证
 * From:www.gaodaima.com
 */
public class MyShiroRealm extends AuthorizingRealm {
 
    @Autowired
    @Lazy
    private UsersService usersService;
    /**
     * 登录认证
     */
    @Override
    protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken authenticationToken) throws AuthenticationException {
        UsernamePasswordToken token = (UsernamePasswordToken)authenticationToken;     //UsernamePasswordToken用于存放提交的登录信息
     PageData pd = new PageData();
     pd.put("USERNAME", token.getUsername());
            try {
                pd = usersService.findByUsername(pd);
                if (pd != null){
                 return new SimpleAuthenticationInfo(pd.getString("USERNAME"), pd.getString("PASSWORD"), getName());
         }
            } catch (Exception e) {
                return null;
            }
        return null;
    }
    @Override
    protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principals) {
        String USERNAME = (String) super.getAvailablePrincipal(principals);
        SimpleAuthorizationInfo info = new SimpleAuthorizationInfo();
        Session session = Jurisdiction.getSession();
        Collection<String> shiroSet= new HashSet<String>();
        shiroSet = (Collection<String>)session.getAttribute(USERNAME + Const.SHIROSET);
        if(null != shiroSet){
            info.addStringPermissions(shiroSet);
            return info;
        }else {
            return null;
        }
    }
}
搞代码网(gaodaima.com)提供的所有资源部分来自互联网,如果有侵犯您的版权或其他权益,请说明详细缘由并提供版权或权益证明然后发送到邮箱[email protected],我们会在看到邮件的第一时间内为您处理,或直接联系QQ:872152909。本网站采用BY-NC-SA协议进行授权
转载请注明原文链接:springboot整合shiro安全框架
喜欢 (0)
[搞代码]
分享 (0)
发表我的评论
取消评论

表情 贴图 加粗 删除线 居中 斜体 签到

Hi,您需要填写昵称和邮箱!

  • 昵称 (必填)
  • 邮箱 (必填)
  • 网址