• shrio的springboot完整配置


    package com.zys.sys.config;
    
    import java.util.HashMap;
    import java.util.Map;
    
    import javax.servlet.Filter;
    
    import org.apache.shiro.authc.credential.CredentialsMatcher;
    import org.apache.shiro.authc.credential.HashedCredentialsMatcher;
    import org.apache.shiro.mgt.SecurityManager;
    import org.apache.shiro.spring.security.interceptor.AuthorizationAttributeSourceAdvisor;
    import org.apache.shiro.spring.web.ShiroFilterFactoryBean;
    import org.apache.shiro.web.mgt.DefaultWebSecurityManager;
    import org.springframework.aop.framework.autoproxy.DefaultAdvisorAutoProxyCreator;
    import org.springframework.boot.autoconfigure.condition.ConditionalOnClass;
    import org.springframework.boot.autoconfigure.condition.ConditionalOnWebApplication;
    import org.springframework.boot.autoconfigure.condition.ConditionalOnWebApplication.Type;
    import org.springframework.boot.context.properties.ConfigurationProperties;
    import org.springframework.boot.web.servlet.FilterRegistrationBean;
    import org.springframework.context.annotation.Bean;
    import org.springframework.context.annotation.Configuration;
    import org.springframework.web.filter.DelegatingFilterProxy;
    
    import com.zys.sys.UserRealm.UserRealm;
    
    import at.pollux.thymeleaf.shiro.dialect.ShiroDialect;
    import lombok.Data;
    
    /**
     * 
     * @author LJH
     *
     */
    @Configuration
    @ConditionalOnWebApplication(type = Type.SERVLET)
    @ConditionalOnClass(value = { SecurityManager.class })
    @ConfigurationProperties(prefix = "shiro")
    @Data
    public class ShiroAutoConfiguration {
    
        private static final String SHIRO_DIALECT = "shiroDialect";
        private static final String SHIRO_FILTER = "shiroFilter";
        private String hashAlgorithmName = "md5";// 加密方式
        private int hashIterations = 2;// 散列次数
        private String loginUrl = "/index.html";// 默认的登陆页面
    
        private String[] anonUrls;
        private String logOutUrl;
        private String[] authcUlrs;
    
        /**
         * 声明凭证匹配器
         */
        @Bean("credentialsMatcher")
        public HashedCredentialsMatcher hashedCredentialsMatcher() {
            HashedCredentialsMatcher credentialsMatcher = new HashedCredentialsMatcher();
            credentialsMatcher.setHashAlgorithmName(hashAlgorithmName);
            credentialsMatcher.setHashIterations(hashIterations);
            return credentialsMatcher;
        }
    
        /**
         * 声明userRealm
         */
        @Bean("userRealm")
        public UserRealm userRealm(CredentialsMatcher credentialsMatcher) {
            UserRealm userRealm = new UserRealm();
            // 注入凭证匹配器
            userRealm.setCredentialsMatcher(credentialsMatcher);
            return userRealm;
        }
    
        /**
         * 配置SecurityManager
         */
        @Bean("securityManager")
        public SecurityManager securityManager(UserRealm userRealm) {
            DefaultWebSecurityManager securityManager = new DefaultWebSecurityManager();
            // 注入userRealm
            securityManager.setRealm(userRealm);
            return securityManager;
        }
    
        /**
         * 配置shiro的过滤器
         */
        @Bean(SHIRO_FILTER)
        public ShiroFilterFactoryBean shiroFilterFactoryBean(SecurityManager securityManager) {
            ShiroFilterFactoryBean factoryBean = new ShiroFilterFactoryBean();
            // 设置安全管理器
            factoryBean.setSecurityManager(securityManager);
            // 设置未登陆的时要跳转的页面
            factoryBean.setLoginUrl(loginUrl);
            Map<String, String> filterChainDefinitionMap = new HashMap<>();
            // 设置放行的路径
            if (anonUrls != null && anonUrls.length > 0) {
                for (String anon : anonUrls) {
                    filterChainDefinitionMap.put(anon, "anon");
                }
            }
            // 设置登出的路径
            if (null != logOutUrl) {
                filterChainDefinitionMap.put(logOutUrl, "logout");
            }
            // 设置拦截的路径
            if (authcUlrs != null && authcUlrs.length > 0) {
                for (String authc : authcUlrs) {
                    filterChainDefinitionMap.put(authc, "authc");
                }
            }
            Map<String, Filter> filters=new HashMap<>();
    //        filters.put("authc", new ShiroLoginFilter());
            //配置过滤器
            factoryBean.setFilters(filters);
            factoryBean.setFilterChainDefinitionMap(filterChainDefinitionMap);
            return factoryBean;
        }
    
        /**
         * 注册shiro的委托过滤器,相当于之前在web.xml里面配置的
         * 
         * @return
         */
        @Bean
        public FilterRegistrationBean<DelegatingFilterProxy> delegatingFilterProxy() {
            FilterRegistrationBean<DelegatingFilterProxy> filterRegistrationBean = new FilterRegistrationBean<DelegatingFilterProxy>();
            DelegatingFilterProxy proxy = new DelegatingFilterProxy();
            proxy.setTargetFilterLifecycle(true);
            proxy.setTargetBeanName(SHIRO_FILTER);
            filterRegistrationBean.setFilter(proxy);
            return filterRegistrationBean;
        }
    
        /* 加入注解的使用,不加入这个注解不生效--开始 */
        /**
         * 
         * @param securityManager
         * @return
         */
        @Bean
        public AuthorizationAttributeSourceAdvisor authorizationAttributeSourceAdvisor(SecurityManager securityManager) {
            AuthorizationAttributeSourceAdvisor authorizationAttributeSourceAdvisor = new AuthorizationAttributeSourceAdvisor();
            authorizationAttributeSourceAdvisor.setSecurityManager(securityManager);
            return authorizationAttributeSourceAdvisor;
        }
    
        @Bean
        public DefaultAdvisorAutoProxyCreator getDefaultAdvisorAutoProxyCreator() {
            DefaultAdvisorAutoProxyCreator advisorAutoProxyCreator = new DefaultAdvisorAutoProxyCreator();
            advisorAutoProxyCreator.setProxyTargetClass(true);
            return advisorAutoProxyCreator;
        }
        /* 加入注解的使用,不加入这个注解不生效--结束 */
    
        /**
         * 这里是为了能在html页面引用shiro标签,上面两个函数必须添加,不然会报错
         * 
         * @return
         */
        @Bean(name = SHIRO_DIALECT)
        public ShiroDialect shiroDialect() {
            return new ShiroDialect();
        }
    }

    yml文件

    #shiro的配置
    shiro:
      hash-algorithm-name: md5
      hash-iterations: 2
      anon-urls:
      - /index.html*
      - /sys/toLogin*
      - /login/login*
      - /resources/**
      login-url: /index.html
      log-out-url: /login/logout*
      authc-ulrs:
      - /**
  • 相关阅读:
    前端周刊第一期
    Java CAS 原理详解
    【转载】Linux系统调用SYSCALL_DEFINE详解
    简述伪共享和缓存一致性MESI
    exchange发邮件
    Flutter屏幕适配(自适应)方案
    dart类初始化 future方案
    windows下postgresql自启动
    How can I call an async method in StatelessWidget.build method?
    实战分层架构
  • 原文地址:https://www.cnblogs.com/xiaozhang666/p/12096929.html
Copyright © 2020-2023  润新知