-
spring security快速入门 (无多余额外功能)
ps:情人节不得学一手认证鉴权压压惊
1.导入依赖
- <dependencies>
- <dependency>
- <groupId>org.springframework.bootgroupId>
- <artifactId>spring-boot-starter-webartifactId>
- dependency>
- <dependency>
- <groupId>org.projectlombokgroupId>
- <artifactId>lombokartifactId>
- dependency>
- <dependency>
- <groupId>org.springframework.bootgroupId>
- <artifactId>spring-boot-starter-securityartifactId>
- dependency>
- <dependency>
- <groupId>mysqlgroupId>
- <artifactId>mysql-connector-javaartifactId>
- dependency>
- <dependency>
- <groupId>com.baomidougroupId>
- <artifactId>mybatis-plus-boot-starterartifactId>
- <version>3.5.1version>
- dependency>
- dependencies>
配置数据库连接 yml
- server:
- port: 8080
- spring:
- datasource:
- driver-class-name: com.mysql.cj.jdbc.Driver
- url: jdbc:mysql://localhost:3306/easymybatis?serverTimezone=GMT%2B8
- username: root
- password: 123456
2.实现UserDetailsServic接口(自行创建mapper接口)
数据库结构:
- @Service
- public class MyUserDetailService implements UserDetailsService {
- @Autowired
- private UserMapper userMapper;
- @Override
- public UserDetails loadUserByUsername(String s) throws UsernameNotFoundException {
- QueryWrapper
queryWrapper=new QueryWrapper<>(); - queryWrapper.eq("name",s);
- MemberUser memberUser = userMapper.selectOne(queryWrapper);
- if (memberUser==null){
- throw new UsernameNotFoundException("验证失败");
- }
- List
auths= AuthorityUtils.commaSeparatedStringToAuthorityList("role"); - return new User(memberUser.getName(),new BCryptPasswordEncoder().encode(memberUser.getPassword()),auths);
- }
- }
3.编写相关配置类 继承WebSecurityConfigurerAdapter
- @SpringBootConfiguration
- public class SpringSecurityConfig extends WebSecurityConfigurerAdapter {
- @Autowired
- private MyUserDetailService userDetailService;
- @Override
- protected void configure(AuthenticationManagerBuilder auth) throws Exception {
- //super.configure(auth);
- //用DetailService 方式鉴权
- auth.userDetailsService(userDetailService).passwordEncoder(passwordEncoder());
- }
- //老版不分离自定义登录方案
- /* @Override
- protected void configure(HttpSecurity http) throws Exception {
- http.formLogin()
- .loginPage("index.html") //登录页面
- .successForwardUrl("success.html") //登录成功跳转
- .loginProcessingUrl("/user/login").permitAll() //请求服务器路径
- .and().authorizeRequests()
- .antMatchers("/","index/html").permitAll() //不需要认证
- .antMatchers("/test").hasAnyAuthority("role") //拥有权限才能访问
- .anyRequest().authenticated()
- .and().csrf().disable();
- }
- */
- //加密措施
- @Bean
- PasswordEncoder passwordEncoder(){
- return new BCryptPasswordEncoder();
- }
- }
4.测试
- @RestController
- @RequestMapping("test")
- public class TestController {
- @GetMapping("hello")
- public String test(){
- return "hello security";
- }
- }
-
相关阅读:
Linux- dup()系统调用
全堆栈图像生成器专为Multiverse后端Bootcamp设计,结合了React、Firebase和Hugging Face API
(pytorch进阶之路)交叉熵、信息熵、二分类交叉熵、负对数似然、KL散度、余弦相似度
Undefined reference to pthread_create in Linux
vivo 自研Jenkins资源调度系统设计与实践
C#.Net筑基-类型系统②常见类型
当每分钟有1000个请求,接口只能处理500个请求时
【MYSQL】表的操作
多亲手机 F22 Pro何时发布 多亲手机 F22 Pro配置如何
nginx,域名绑定ipv6,本地能访问,但远程无法访问,如何解决?
- 原文地址:https://blog.csdn.net/qq_50598935/article/details/126157359
