• shiro授权-SSM

    目录

    一、授权

    1.1 配置SQL语句 UserMapper.xml

    1.2

    UserMapper 

     UserBiz 

     UserBizImpl

     MyRealm

     applicationContext-shiro.xml

     二、shiro注解式开发

     2.1 Springmvc.xml

    2.2 ShiroController 

    一、授权

    1.1 配置SQL语句 UserMapper.xml

    1.  <select id="selectRoleIdsByUserName" resultType="java.lang.String" parameterType="java.lang.String">
    2.           select  roleid from t_shiro_user u,t_shiro_user_role ur where u.userid = ur.userid and u.username = #{userName}
    3.     select>
    4.  
    5.   <select id="selectPerIdsByUserName" resultType="java.lang.String" parameterType="java.lang.String">
    6.         select rp.perid from t_shiro_user u,t_shiro_user_role ur,t_shiro_role_permission rp where u.userid = ur.userid and ur.roleid = rp.roleid and u.username = #{userName}
    7. select>

    1.2

    UserMapper 

    1. package com.cdl.ssm.mapper;
    2.  
    3. import com.cdl.ssm.model.User;
    4. import org.apache.ibatis.annotations.Param;
    5. import org.springframework.stereotype.Repository;
    6.  
    7. import java.util.Set;
    8.  
    9. @Repository
    10. public interface UserMapper {
    11.     int deleteByPrimaryKey(Integer userid);
    12.  
    13.     int insert(User record);
    14.  
    15.     int insertSelective(User record);
    16.  
    17.     User selectByPrimaryKey(Integer userid);
    18.  
    19.     /*通过账号插询*/
    20.     User queryUserByUserName(@Param("userName") String userName);
    21.  
    22.     //通过用户名拿到角色ID
    23.     Set selectRoleIdsByUserName(@Param("userName") String userName);
    24.  
    25.     //通过用户名拿到权限ID
    26.     Set selectPerIdsByUserName(@Param("userName") String userName);
    27.  
    28.     int updateByPrimaryKeySelective(User record);
    29.  
    30.     int updateByPrimaryKey(User record);
    31. }

     UserBiz 

    1. package com.cdl.ssm.biz;
    2.  
    3. import com.cdl.ssm.model.User;
    4.  
    5. import java.util.Set;
    6.  
    7. /**
    8.  * @author cdl
    9.  * @site www.cdl.com
    10.  * @create 2022-08-25 18:48
    11.  */
    12. public interface UserBiz {
    13.  
    14.     int deleteByPrimaryKey(Integer userid);
    15.  
    16.     int insert(User record);
    17.  
    18.     int insertSelective(User record);
    19.  
    20.     User selectByPrimaryKey(Integer userid);
    21.  
    22.     /*通过账号插询*/
    23.     User queryUserByUserName( String userName);
    24.  
    25.     //通过用户名拿到角色ID
    26.     Set selectRoleIdsByUserName(String userName);
    27.  
    28.     //通过用户名拿到权限ID
    29.     Set selectPerIdsByUserName(String userName);
    30.  
    31.     int updateByPrimaryKeySelective(User record);
    32.  
    33.     int updateByPrimaryKey(User record);
    34.  
    35. }

     UserBizImpl

    1. package com.cdl.ssm.biz.impl;
    2.  
    3. import com.cdl.ssm.biz.UserBiz;
    4. import com.cdl.ssm.mapper.UserMapper;
    5. import com.cdl.ssm.model.User;
    6. import org.springframework.beans.factory.annotation.Autowired;
    7. import org.springframework.stereotype.Service;
    8.  
    9. import java.util.Set;
    10.  
    11. /**
    12.  * @author cdl
    13.  * @site www.cdl.com
    14.  * @create 2022-08-25 18:49
    15.  */
    16. @Service("userBiz")
    17. public class UserBizImpl implements UserBiz {
    18.     @Autowired
    19.     private UserMapper userMapper;
    20.  
    21.     @Override
    22.     public int deleteByPrimaryKey(Integer userid) {
    23.         return userMapper.deleteByPrimaryKey(userid);
    24.     }
    25.  
    26.     @Override
    27.     public int insert(User record) {
    28.         return userMapper.insert(record);
    29.     }
    30.  
    31.     @Override
    32.     public int insertSelective(User record) {
    33.         return userMapper.insertSelective(record);
    34.     }
    35.  
    36.     @Override
    37.     public User selectByPrimaryKey(Integer userid) {
    38.         return userMapper.selectByPrimaryKey(userid);
    39.     }
    40.  
    41.     @Override
    42.     public User queryUserByUserName(String userName) {
    43.         return userMapper.queryUserByUserName(userName);
    44.     }
    45.  
    46.     @Override
    47.     public Set selectRoleIdsByUserName(String userName) {
    48.         return userMapper.selectRoleIdsByUserName(userName);
    49.     }
    50.  
    51.     @Override
    52.     public Set selectPerIdsByUserName(String userName) {
    53.         return userMapper.selectPerIdsByUserName(userName);
    54.     }
    55.  
    56.     @Override
    57.     public int updateByPrimaryKeySelective(User record) {
    58.         return userMapper.updateByPrimaryKeySelective(record);
    59.     }
    60.  
    61.     @Override
    62.     public int updateByPrimaryKey(User record) {
    63.         return userMapper.updateByPrimaryKey(record);
    64.     }
    65. }
    66.

     MyRealm

    1. package com.cdl.ssm.shiro;
    2.  
    3. import com.cdl.ssm.biz.UserBiz;
    4. import com.cdl.ssm.model.User;
    5. import org.apache.shiro.authc.AuthenticationException;
    6. import org.apache.shiro.authc.AuthenticationInfo;
    7. import org.apache.shiro.authc.AuthenticationToken;
    8. import org.apache.shiro.authc.SimpleAuthenticationInfo;
    9. import org.apache.shiro.authz.AuthorizationInfo;
    10. import org.apache.shiro.authz.SimpleAuthorizationInfo;
    11. import org.apache.shiro.realm.AuthorizingRealm;
    12. import org.apache.shiro.subject.PrincipalCollection;
    13. import org.apache.shiro.util.ByteSource;
    14.  
    15. import java.util.Set;
    16.  
    17. /**
    18.  * @author cdl
    19.  * @site www.cdl.com
    20.  * @create 2022-08-25 19:08
    21.  */
    22. public class MyRealm extends AuthorizingRealm {
    23.  
    24.     public UserBiz userBiz;
    25.  
    26.     public UserBiz getUserBiz() {
    27.         return userBiz;
    28.     }
    29.  
    30.     public void setUserBiz(UserBiz userBiz) {
    31.         this.userBiz = userBiz;
    32.     }
    33.  
    34.  
    35.  
    36.     @Override
    37.     protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principals) {
    38.         System.out.println("用户授权...");
    39.         String userName = principals.getPrimaryPrincipal().toString();//获取账户名
    40.         Set roleIds =  userBiz.selectRoleIdsByUserName(userName);
    41.         Set perIds = userBiz.selectPerIdsByUserName(userName);
    42.         SimpleAuthorizationInfo info = new SimpleAuthorizationInfo();
    43.       //将当前登录的权限 交给shiro的授权器
    44.        info.setStringPermissions(perIds);
    45.        //将当前角色的权限 交给shiro的授权器
    46.        info.setRoles(roleIds);
    47.         return info;
    48.     }
    49.  
    50.     @Override
    51.     protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken token) throws AuthenticationException {
    52.         String userName = token.getPrincipal().toString();
    53.         User user = userBiz.queryUserByUserName(userName);
    54.         AuthenticationInfo info = new SimpleAuthenticationInfo(
    55.                 user.getUsername(),
    56.                 user.getPassword(),
    57.                 ByteSource.Util.bytes(user.getSalt()),
    58.                 this.getName()//realm的名字
    59.         );
    60.         return info;
    61.     }
    62. }
    63.

     applicationContext-shiro.xml

    1. "1.0" encoding="UTF-8"?>
    2. <beans xmlns="http://www.springframework.org/schema/beans"
    3.        xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
    4.        xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd">
    5.  
    6.     
    7.     <bean id="shiroRealm" class="com.cdl.ssm.shiro.MyRealm">
    8.         <property name="userBiz" ref="userBiz" />
    9.         
    10.         
    11.         
    12.         
    13.         <property name="credentialsMatcher">
    14.             <bean id="credentialsMatcher" class="org.apache.shiro.authc.credential.HashedCredentialsMatcher">
    15.                 
    16.                 <property name="hashAlgorithmName" value="md5"/>
    17.                 
    18.                 <property name="hashIterations" value="1024"/>
    19.                 
    20.                 <property name="storedCredentialsHexEncoded" value="true"/>
    21.             bean>
    22.         property>
    23.     bean>
    24.  
    25.     
    26.     <bean id="securityManager" class="org.apache.shiro.web.mgt.DefaultWebSecurityManager">
    27.         <property name="realm" ref="shiroRealm" />
    28.     bean>
    29.  
    30.     
    31.     <bean id="shiroFilter" class="org.apache.shiro.spring.web.ShiroFilterFactoryBean">
    32.         
    33.         <property name="securityManager" ref="securityManager" />
    34.         
    35.         <property name="loginUrl" value="/login"/>
    36.         
    37.         
    38.         
    39.         <property name="unauthorizedUrl" value="/unauthorized.jsp"/>
    40.         
    41.         <property name="filterChainDefinitions">
    42.             <value>
    43.                 
    44.                 
    45.                 
    46.                 
    47.                 /user/login=anon
    48.                 /user/updatePwd.jsp=authc
    49.                 /admin/*.jsp=roles[4]
    50.                 /user/teacher.jsp=perms[2]
    51.                 
    52.             value>
    53.         property>
    54.     bean>
    55.  
    56.     
    57.     <bean id="lifecycleBeanPostProcessor" class="org.apache.shiro.spring.LifecycleBeanPostProcessor"/>
    58. beans>

    运行登录界面 输入zs的正确密码和账号之后

     

     输入zdm的 有用户新增的权限

     二、shiro注解式开发

      @RequiresAuthenthentication:表示当前Subject已经通过login进行身份验证;即 Subject.isAuthenticated()返回 true

      @RequiresUser:表示当前Subject已经身份验证或者通过记住我登录的

      @RequiresGuest:表示当前Subject没有身份验证或者通过记住我登录过,即是游客身份

      @RequiresRoles(value = {"admin","user"},logical = Logical.AND):表示当前Subject需要角色admin和user

      @RequiresPermissions(value = {"user:delete","user:b"},logical = Logical.OR):表示当前Subject需要权限user:delete或者user:b

     2.1 Springmvc.xml

    1. <bean class="org.springframework.aop.framework.autoproxy.DefaultAdvisorAutoProxyCreator"
    2.       depends-on="lifecycleBeanPostProcessor">
    3.     <property name="proxyTargetClass" value="true">property>
    4. bean>
    5. <bean class="org.apache.shiro.spring.security.interceptor.AuthorizationAttributeSourceAdvisor">
    6.     <property name="securityManager" ref="securityManager"/>
    7. bean>
    8.  
    9. <bean id="exceptionResolver" class="org.springframework.web.servlet.handler.SimpleMappingExceptionResolver">
    10.     <property name="exceptionMappings">
    11.         <props>
    12.             <prop key="org.apache.shiro.authz.UnauthorizedException">
    13.                 unauthorized
    14.             prop>
    15.         props>
    16.     property>
    17.     <property name="defaultErrorView" value="unauthorized"/>
    18. bean>
    19.

    2.2 ShiroController 

    1. package com.cdl.ssm.controller;
    2.  
    3. import org.apache.shiro.authz.annotation.Logical;
    4. import org.apache.shiro.authz.annotation.RequiresPermissions;
    5. import org.apache.shiro.authz.annotation.RequiresRoles;
    6. import org.apache.shiro.authz.annotation.RequiresUser;
    7. import org.springframework.stereotype.Controller;
    8. import org.springframework.web.bind.annotation.RequestMapping;
    9.  
    10. import javax.servlet.http.HttpServletRequest;
    11.  
    12. /**
    13.  * @author cdl
    14.  * @site www.cdl.com
    15.  * @create 2022-08-26 19:54
    16.  */
    17. @RequestMapping("/shiro")
    18. @Controller
    19. public class ShiroController {
    20.  
    21.     @RequiresUser//代表只有通过登录后才能通过
    22.     @RequestMapping("/passUser")
    23.     public String passUser(HttpServletRequest request){
    24.         System.out.println("身份认证通过、、、");
    25.         return "admin/addUser";
    26.     }
    27.  
    28.     @RequiresRoles(value = {"1","4"},logical = Logical.AND)
    29.     @RequestMapping("/passRole")
    30.     public String passRole(HttpServletRequest request){
    31.         System.out.println("角色认证通过、、、");
    32.         return "admin/listUser";
    33.     }
    34.  
    35.     @RequiresPermissions(value = {"user:update","user:view"},logical = Logical.OR)
    36.     @RequestMapping("/passPer")
    37.     public String passPer(HttpServletRequest request){
    38.         return "admin/resetPwd";
    39.     }
    40.  
    41.     @RequestMapping("/unauthorized")
    42.     public String unauthorized(){
    43.         return "unauthorized";
    44.     }
    45.  
    46.  
    47. }

    输入zs的账号和密码

     

     

  • 相关阅读:
    跨链桥真的不能碰?一文详解跨链桥的分类以及过去、现在与未来
    Neo4j 基本语法
    k8s笔记21--prometheus 监控 nginx ingress
    【python基础】文件和异常详解:使用、读取、写入、追加、保存用户的信息,以及优雅的处理异常
    夏天快乐的源泉
    C#对象二进制序列化优化:位域技术实现极限压缩
    网络工程师进阶课:华为HCIP认证课程介绍
    【JUC系列】Fork/Join框架之概览
    leetcode 216. 组合总和 III
    npm更新包时This operation requires a one-time password.
  • 原文地址:https://blog.csdn.net/weixin_62735525/article/details/126548276