gpt4 book ai didi

spring boot 集成shiro的配置方法

转载 作者:qq735679552 更新时间:2022-09-27 22:32:09 26 4
gpt4 key购买 nike

CFSDN坚持开源创造价值,我们致力于搭建一个资源共享平台,让每一个IT人在这里找到属于你的精彩世界.

这篇CFSDN的博客文章spring boot 集成shiro的配置方法由作者收集整理,如果你对这篇文章有兴趣,记得点赞哟.

spring boot提供了一个自带的认证框架,同时也提供自定义的javaconfig配置扩展,spring-sercurity同样也是优秀的框架,但是习惯了用apache shiro框架,而且原项目就是集成的shiro框架,到网上找了一下配置方式,没找到完全配置的方法,因此决定自己动手,丰衣足食! 。

        要在spring boot上集成其他框架,首先要会spring javaconfig方法,利用此方法同样可以配置其他模块,废话少说,开始。。.

        开始前需要导入maven依赖(shiro-web可选):          。

?
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
   <dependency>
   <groupId>org.apache.shiro</groupId>
   <artifactId>shiro-core</artifactId>
   <version>${shiro.version}</version>
</dependency>
<dependency>
   <groupId>org.apache.shiro</groupId>
   <artifactId>shiro-web</artifactId>
   <version>${shiro.version}</version>
</dependency>
<dependency>
   <groupId>org.apache.shiro</groupId>
   <artifactId>shiro-spring</artifactId>
   <version>${shiro.version}</version>
</dependency>
<dependency>
   <groupId>org.apache.shiro</groupId>
   <artifactId>shiro-ehcache</artifactId>
   <version>${shiro.version}</version>
</dependency>

        原shiro集成spring的配置拿出来,如下:

?
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
<?xml version= "1.0" encoding= "UTF-8" ?>
<beans xmlns= "http://www.springframework.org/schema/beans"
xmlns:xsi= "http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation= "http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd"
default -lazy-init= "true" >
<description>Shiro安全配置 来源于: http: //shiro.apache.org/spring.html
</description>
<bean id= "securityManager" class = "org.apache.shiro.web.mgt.DefaultWebSecurityManager" >
<!-- Single realm app. If you have multiple realms, use the 'realms' property
instead. -->
<property name= "realm" ref= "ShiroRealmImpl" />
<property name= "cacheManager" ref= "shiroEhcacheManager" />
</bean>
<!-- Define the realm you want to use to connect to your back-end security
datasource: -->
<bean id= "ShiroRealmImpl" class = "com.wechatserver.web.services.system.impl.ShiroRealmImpl" />
<bean id= "shiroFilter" class = "org.apache.shiro.spring.web.ShiroFilterFactoryBean" >
<property name= "securityManager" ref= "securityManager" />
<property name= "loginUrl" value= "/login" /> <!-- 没有权限或者失败后跳转的页面 -->
<property name= "successUrl" value= "/sa/index" />
<property name= "filterChainDefinitions" >
<!-- , roles[admin], perms[document:read] -->
<value>
<!--
/user/** = authc
/role/edit/* = perms[role:edit]
/role/save = perms [role:edit]
/role/list = perms [role:view]
-->
/sa/** = authc
/** = anon
</value>
</property>
</bean>
<!-- 用户授权/认证信息Cache, 采用EhCache 缓存 -->
<bean id= "shiroEhcacheManager" class = "org.apache.shiro.cache.ehcache.EhCacheManager" >
<property name= "cacheManagerConfigFile" value= "classpath:ehcache-shiro.xml" />
</bean>
<!-- 保证实现了Shiro内部lifecycle函数的bean执行 -->
<bean id= "lifecycleBeanPostProcessor" class = "org.apache.shiro.spring.LifecycleBeanPostProcessor" />
<!-- AOP式方法级权限检查 -->
<!-- Enable Shiro Annotations for Spring-configured beans. Only run after -->
<!-- the lifecycleBeanProcessor has run: -->
<bean
class = "org.springframework.aop.framework.autoproxy.DefaultAdvisorAutoProxyCreator"
depends-on= "lifecycleBeanPostProcessor" >
<property name= "proxyTargetClass" value= "true" />
</bean>
<bean
class = "org.apache.shiro.spring.security.interceptor.AuthorizationAttributeSourceAdvisor" >
<property name= "securityManager" ref= "securityManager" />
</bean>
</beans>

好多类啊,没办法一个一个配置,javaconfig文件如下:

?
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
import java.util.LinkedHashMap;
import java.util.Map;
import org.apache.shiro.cache.ehcache.EhCacheManager;
import org.apache.shiro.spring.LifecycleBeanPostProcessor;
import org.apache.shiro.spring.security.interceptor.AuthorizationAttributeSourceAdvisor;
import org.apache.shiro.spring.web.ShiroFilterFactoryBean;
import org.apache.shiro.web.mgt.DefaultWebSecurityManager;
import org.springframework.aop.framework.autoproxy.DefaultAdvisorAutoProxyCreator;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
@Configuration
public class ShiroConfiguration {
   private static Map<String, String> filterChainDefinitionMap = new LinkedHashMap<String, String>();
   @Bean (name = "ShiroRealmImpl" )
   public ShiroRealmImpl getShiroRealm() {
     return new ShiroRealmImpl();
   }
   @Bean (name = "shiroEhcacheManager" )
   public EhCacheManager getEhCacheManager() {
     EhCacheManager em = new EhCacheManager();
     em.setCacheManagerConfigFile( "classpath:ehcache-shiro.xml" );
     return em;
   }
   @Bean (name = "lifecycleBeanPostProcessor" )
   public LifecycleBeanPostProcessor getLifecycleBeanPostProcessor() {
     return new LifecycleBeanPostProcessor();
   }
   @Bean
   public DefaultAdvisorAutoProxyCreator getDefaultAdvisorAutoProxyCreator() {
     DefaultAdvisorAutoProxyCreator daap = new DefaultAdvisorAutoProxyCreator();
     daap.setProxyTargetClass( true );
     return daap;
   }
   @Bean (name = "securityManager" )
   public DefaultWebSecurityManager getDefaultWebSecurityManager() {
     DefaultWebSecurityManager dwsm = new DefaultWebSecurityManager();
     dwsm.setRealm(getShiroRealm());
     dwsm.setCacheManager(getEhCacheManager());
     return dwsm;
   }
   @Bean
   public AuthorizationAttributeSourceAdvisor getAuthorizationAttributeSourceAdvisor() {
     AuthorizationAttributeSourceAdvisor aasa = new AuthorizationAttributeSourceAdvisor();
     aasa.setSecurityManager(getDefaultWebSecurityManager());
     return new AuthorizationAttributeSourceAdvisor();
   }
   @Bean (name = "shiroFilter" )
   public ShiroFilterFactoryBean getShiroFilterFactoryBean() {
     ShiroFilterFactoryBean shiroFilterFactoryBean = new ShiroFilterFactoryBean();
     shiroFilterFactoryBean
         .setSecurityManager(getDefaultWebSecurityManager());
     shiroFilterFactoryBean.setLoginUrl( "/login" );
     shiroFilterFactoryBean.setSuccessUrl( "/sa/index" );
     filterChainDefinitionMap.put( "/sa/**" , "authc" );
     filterChainDefinitionMap.put( "/**" , "anon" );
     shiroFilterFactoryBean
         .setFilterChainDefinitionMap(filterChainDefinitionMap);
     return shiroFilterFactoryBean;
   }
}

注意点:最后一个是filterChainDefinitionMap的初始化,Map用的是LinkedHashMap来初始化的,各位应用的时候将其配置成properties文件,然后初始化就ok了,改写好后直接启动Ok,搬运到spring boot应该是OK的.

别忘了在ehcache-shiro.xml 。

?
1
2
3
4
5
6
7
8
9
10
11
<ehcache updateCheck= "false" name= "shiroCache" >
   <defaultCache
       maxElementsInMemory= "10000"
       eternal= "false"
       timeToIdleSeconds= "120"
       timeToLiveSeconds= "120"
       overflowToDisk= "false"
       diskPersistent= "false"
       diskExpiryThreadIntervalSeconds= "120"
       />
</ehcache>

备注:ShiroRealmImpl类请参考官方文档  。

总结 。

以上所述是小编给大家介绍的spring boot 集成shiro的配置方法,希望对大家有所帮助,如果大家有任何疑问请给我留言,小编会及时回复大家的。在此也非常感谢大家对我网站的支持! 。

原文链接:http://blog.csdn.net/qiuqiupeng/article/details/38984779 。

最后此篇关于spring boot 集成shiro的配置方法的文章就讲到这里了,如果你想了解更多关于spring boot 集成shiro的配置方法的内容请搜索CFSDN的文章或继续浏览相关文章,希望大家以后支持我的博客! 。

26 4 0
Copyright 2021 - 2024 cfsdn All Rights Reserved 蜀ICP备2022000587号
广告合作:1813099741@qq.com 6ren.com