SpringSecurity 动态验证
-
- 准备数据库
- 创建实体类并实现SpringSecurity接口
-
- User实体类实现UserDetails 接口
- Role实体类实现GrantedAuthority 接口
- 创建service 以及mapper
-
- service 继承 UserDetailsService
- serviceImpl
- Mybatis Mapper
- 修改SpringSecurity 配置类
- 启动测试
- 以上便完成了一个简答的通过数据库动态认证
准备数据库
users 用户表
role 角色表
注意: password必须是加密形式,在测试中可以使用以下代码获得加密后的字符串
PasswordEncoder passwordEncoder = new BCryptPasswordEncoder();
System.out.println(passwordEncoder.encode("password"));
// 得到类似结果
// $2a$10$TlXkY79VCDieFjFRceAvDeiuyBpTUIOzx5HvuoCTUmIjLs5qoxFN.
创建实体类并实现SpringSecurity接口
User实体类实现UserDetails 接口
public class User implements UserDetails {private String username;private String password;private String name;private String identity;List<UserRolo> roles = new ArrayList<>();// get set 方法@Overridepublic boolean isAccountNonExpired() { //判断用户是否过期,true未过期return true;}@Overridepublic boolean isAccountNonLocked() { //判断用户是否锁定,true未锁定return true;}@Overridepublic boolean isCredentialsNonExpired() { //判断凭据是否过期,true未过期return true;}@Overridepublic boolean isEnabled() { 判断账户是否启用,true启动return true;}@Overridepublic Collection<? extends GrantedAuthority> getAuthorities() { //获取权限列表return roles;}
}
Role实体类实现GrantedAuthority 接口
public class UserRolo implements GrantedAuthority {private int id;private String rolename;private String roledesc;private int uid;//get set 方法@Overridepublic String getAuthority() { //GrantedAuthority 接口方法,用以返回角色名称字段return rolename;}}
创建service 以及mapper
service 继承 UserDetailsService
public interface UserService extends UserDetailsService {}serviceImpl
@Service
class UserServiceImpl implements UserService{@AutowiredUserMapper userMapper;@Overridepublic UserDetails loadUserByUsername(String s) throws UsernameNotFoundException {User user = userMapper.getUser(s); //查询用户return user;}
}Mybatis Mapper
@Component
@Mapper
public interface UserMapper {@Select("select * from users where username=#{username}")@Results({@Result(id=true,column="id",property="id"),@Result(column="username",property="username"),@Result(column="password",property="password"),@Result(column="id",property="roles",many=@Many(select="com.tangye.springsecurity.mapper.UserMapper.getRoleList",fetchType= FetchType.EAGER))})User getUser(String username);@Select("select * from role where uid=#{id}")List<UserRolo> getRoleList(int id);}
修改SpringSecurity 配置类
@Configuration
public class WebSecutityConfig extends WebSecurityConfigurerAdapter {@AutowiredPasswordEncoder passwordEncoder;@Autowiredprivate UserService userService;@Overrideprotected void configure(AuthenticationManagerBuilder auth) throws Exception {auth.userDetailsService(userService).passwordEncoder(passwordEncoder);}@Overrideprotected void configure(HttpSecurity http) throws Exception {http.formLogin().defaultSuccessUrl("/admin").and().authorizeRequests().antMatchers("/admin").hasAuthority("admin").antMatchers("/user").hasAuthority("user").anyRequest().authenticated();}
}启动测试
访问localhost:8080
以数据库中admin用户登录
发现只能访问admin页面 , 其他角色类型同理