Shiro+springboot+mybatis(md5+salt+散列)认证与授权-02
生活随笔
收集整理的這篇文章主要介紹了
Shiro+springboot+mybatis(md5+salt+散列)认证与授权-02
小編覺得挺不錯的,現(xiàn)在分享給大家,幫大家做個參考.
代碼延續(xù)地址:Shiro+springboot+mybatis(md5+salt+散列)認(rèn)證與授權(quán)-01
1.創(chuàng)建t_role角色表(比如管理員admin,普通用戶user等),創(chuàng)建t_pers權(quán)限表(比如add,update,delete等),t_user_role與t_role_pers作為三個表的中間表(因為這三個表之間是多對多的關(guān)系)
2.UserMapper.xml新增sql查詢
3.UserDao新增方法
//根據(jù)用戶名查詢所有角色User findByRolesUserName(String username);//根據(jù)角色id查詢權(quán)限集合List<Pers> findPermsByRoleId(String id);4.Service層新增方法(接口代碼省略)
@Overridepublic User findByRolesUserName(String username) {return userDao.findByRolesUserName(username);}@Overridepublic List<Pers> findPermsByRoleId(String id) {return userDao.findPermsByRoleId(id);}5.改變自定義realm
/*** @author:抱著魚睡覺的喵喵* @date:2020/12/29* @description: 自定義realm完成用戶認(rèn)證和授權(quán)*/ public class CustomerRealm extends AuthorizingRealm {/*** 用戶授權(quán)* @param principalCollection* @return*/@Overrideprotected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principalCollection) {System.out.println("調(diào)用權(quán)限認(rèn)證:"+principalCollection);String primaryPrincipal = (String) principalCollection.getPrimaryPrincipal();//調(diào)用身份信息獲取角色和權(quán)限信息UserService userService = (UserService) ApplicationContextUtils.getBean("userService");//根據(jù)主身份獲取角色和權(quán)限信息User users = userService.findByRolesUserName(primaryPrincipal);//授權(quán)角色信息if (!CollectionUtils.isEmpty(users.getRoles())){SimpleAuthorizationInfo simpleAuthorizationInfo = new SimpleAuthorizationInfo();users.getRoles().forEach(role -> {simpleAuthorizationInfo.addRole(role.getName());List<Pers> perms = userService.findPermsByRoleId(role.getId());if (!CollectionUtils.isEmpty(perms)){perms.forEach(pers -> {simpleAuthorizationInfo.addStringPermission(pers.getName());});}});return simpleAuthorizationInfo;}return null;}/*** 用戶認(rèn)證* @param authenticationToken* @return* @throws AuthenticationException*/@Overrideprotected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken authenticationToken) throws AuthenticationException {String principal = (String) authenticationToken.getPrincipal();//在工廠中獲取業(yè)務(wù)對象UserService userService = (UserService) ApplicationContextUtils.getBean("userService");User user = userService.findByUserName(principal);if (!ObjectUtils.isEmpty(user)){return new SimpleAuthenticationInfo(user.getUsername(),user.getPassword(), ByteSource.Util.bytes(user.getSalt()),this.getName());}return null;} }6.index.jsp
<%@page contentType="text/html; utf-8" pageEncoding="UTF-8" isELIgnored="false" %> <%@taglib prefix="shiro" uri="http://shiro.apache.org/tags" %> <!doctype html> <html lang="en"> <head><meta charset="UTF-8"><meta name="viewport"content="width=device-width, user-scalable=no, initial-scale=1.0, maximum-scale=1.0, minimum-scale=1.0"><meta http-equiv="X-UA-Compatible" content="ie=edge"><title>Document</title> </head> <body><h1>系統(tǒng)主頁,歡迎你的到來</h1><a href="${pageContext.request.contextPath}/user/outLogin">退出</a><ul><shiro:hasAnyRoles name="user"><li><a href="">用戶管理</a><ul><shiro:hasPermission name="user:add:*"><li><a href="">添加用戶</a></li></shiro:hasPermission><li><a href="">刪除用戶</a></li><li><a href="">修改用戶</a></li><li><a href="">查詢用戶</a></li></ul></li></shiro:hasAnyRoles><shiro:hasRole name="product"><li><a href="">部分格式化</a> </li></shiro:hasRole><shiro:hasRole name="admin"><li><a href="">商品管理</a> </li><li><a href="">訂單管理</a> </li><li><a href="">物流管理</a> </li></shiro:hasRole><shiro:hasRole name="shper"><li><a href="">終極格式化</a> </li></shiro:hasRole></ul> </body> </html>7.訪問http://localhost:8080/shiro/login.jsp
退出
總結(jié)
以上是生活随笔為你收集整理的Shiro+springboot+mybatis(md5+salt+散列)认证与授权-02的全部內(nèi)容,希望文章能夠幫你解決所遇到的問題。
- 上一篇: Shiro+springboot+myb
- 下一篇: Shiro+springboot+myb