SpringBoot之整合SpringSecurity

Author: YuKongEr

chapter11/src/test/java/com/yukong/mail/ThreadTest.java

@@ -0,0 +1,8 @@
+package com.yukong.mail;
+
+/**
+ * @author: yukong
+ * @date: 2018/12/7 15:23
+ */
+public class ThreadTest {
+}

chapter12/.gitignore

@@ -0,0 +1,29 @@
+HELP.md
+/target/
+!.mvn/wrapper/maven-wrapper.jar
+
+### STS ###
+.apt_generated
+.classpath
+.factorypath
+.project
+.settings
+.springBeans
+.sts4-cache
+
+### IntelliJ IDEA ###
+.idea
+*.iws
+*.iml
+*.ipr
+
+### NetBeans ###
+/nbproject/private/
+/nbbuild/
+/dist/
+/nbdist/
+/.nb-gradle/
+/build/
+
+### VS Code ###
+.vscode/

chapter12/pom.xml

@@ -0,0 +1,62 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+<modelVersion>4.0.0</modelVersion>
+<parent>
+<groupId>org.springframework.boot</groupId>
+<artifactId>spring-boot-starter-parent</artifactId>
+<version>2.1.4.RELEASE</version>
+<relativePath/> <!-- lookup parent from repository -->
+</parent>
+<groupId>com.yukong</groupId>
+<artifactId>springboot-springsecurity</artifactId>
+<version>0.0.1-SNAPSHOT</version>
+<name>springboot-springsecurity</name>
+<description>springboot-springsecurity study</description>
+
+<properties>
+<java.version>1.8</java.version>
+</properties>
+
+<dependencies>
+<dependency>
+<groupId>org.springframework.boot</groupId>
+<artifactId>spring-boot-starter-security</artifactId>
+</dependency>
+<dependency>
+<groupId>org.springframework.boot</groupId>
+<artifactId>spring-boot-starter-web</artifactId>
+</dependency>
+<dependency>
+<groupId>org.mybatis.spring.boot</groupId>
+<artifactId>mybatis-spring-boot-starter</artifactId>
+<version>2.0.1</version>
+</dependency>
+
+<dependency>
+<groupId>mysql</groupId>
+<artifactId>mysql-connector-java</artifactId>
+<scope>runtime</scope>
+</dependency>
+<dependency>
+<groupId>org.springframework.boot</groupId>
+<artifactId>spring-boot-starter-test</artifactId>
+<scope>test</scope>
+</dependency>
+<dependency>
+<groupId>org.springframework.security</groupId>
+<artifactId>spring-security-test</artifactId>
+<scope>test</scope>
+</dependency>
+</dependencies>
+
+<build>
+<plugins>
+<plugin>
+<groupId>org.springframework.boot</groupId>
+<artifactId>spring-boot-maven-plugin</artifactId>
+</plugin>
+</plugins>
+</build>
+
+</project>

chapter12/src/main/java/com/yukong/SpringbootSpringsecurityApplication.java

@@ -0,0 +1,16 @@
+package com.yukong;
+
+import org.mybatis.spring.annotation.MapperScan;
+import org.springframework.boot.SpringApplication;
+import org.springframework.boot.autoconfigure.SpringBootApplication;
+
+@SpringBootApplication
+@MapperScan("com.yukong.mapper")
+
+public class SpringbootSpringsecurityApplication {
+
+public static void main(String[] args) {
+SpringApplication.run(SpringbootSpringsecurityApplication.class, args);
+}
+
+}

chapter12/src/main/java/com/yukong/config/MyUserDetailServiceImpl.java

@@ -0,0 +1,24 @@
+package com.yukong.config;
+
+import com.yukong.mapper.UserMapper;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.security.core.userdetails.UserDetails;
+import org.springframework.security.core.userdetails.UserDetailsService;
+import org.springframework.security.core.userdetails.UsernameNotFoundException;
+import org.springframework.stereotype.Service;
+
+/**
+ * @author yukong
+ * @date 2019-04-11 17:35
+ */
+@Service
+public class MyUserDetailServiceImpl implements UserDetailsService {
+
+ @Autowired
+ private UserMapper userMapper;
+
+ @Override
+ public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {
+ return userMapper.selectByUsername(username);
+ }
+}

chapter12/src/main/java/com/yukong/config/SecurityConfig.java

@@ -0,0 +1,52 @@
+package com.yukong.config;
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+import org.springframework.security.core.userdetails.UserDetailsService;
+import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
+import org.springframework.security.crypto.password.PasswordEncoder;
+
+/**
+ * @author yukong
+ * @date 2019-04-11 15:08
+ */
+@Configuration
+public class SecurityConfig extends WebSecurityConfigurerAdapter {
+
+ @Autowired
+ private UserDetailsService userDetailsService;
+
+// @Override
+// protected void configure(HttpSecurity http) throws Exception {
+// http.formLogin()
+// .loginPage("/panda-signIn.html")
+// .loginProcessingUrl("/authentication/form")
+// .failureUrl("/login?error")
+// .and()
+// .authorizeRequests()
+// .antMatchers(new String[]{"/static/**","/js/**","/css/**","/img/**","/images/**","/fonts/**","/**/favicon.ico"})
+// .permitAll()
+// .antMatchers("/panda-signIn.html")
+// .permitAll()
+// .anyRequest()
+// .authenticated()
+// .and()
+// .csrf().disable();
+// }
+
+ @Bean
+ public PasswordEncoder passwordEncoder(){
+ return new BCryptPasswordEncoder();
+ }
+
+ @Autowired
+ public void configureGlobal(AuthenticationManagerBuilder auth) throws Exception {
+ // 配置UserDetailsService 跟 PasswordEncoder 加密器
+ auth.userDetailsService(userDetailsService).passwordEncoder(passwordEncoder());
+ auth.eraseCredentials(false);
+ }
+}

chapter12/src/main/java/com/yukong/controller/UserController.java

@@ -0,0 +1,25 @@
+package com.yukong.controller;
+
+import com.yukong.entity.User;
+import com.yukong.mapper.UserMapper;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.web.bind.annotation.PathVariable;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RestController;
+
+/**
+ * @author yukong
+ * @date 2019-04-11 15:22
+ */
+@RestController
+public class UserController {
+
+ @Autowired
+ private UserMapper userMapper;
+
+ @RequestMapping("/user/{username}")
+ public User hello(@PathVariable String username) {
+ return userMapper.selectByUsername(username);
+ }
+
+}

chapter12/src/main/java/com/yukong/entity/User.java

@@ -0,0 +1,107 @@
+package com.yukong.entity;
+
+import org.springframework.security.core.GrantedAuthority;
+import org.springframework.security.core.authority.AuthorityUtils;
+import org.springframework.security.core.userdetails.UserDetails;
+
+import java.util.Collection;
+
+/**
+ *
+ * @author yukong
+ * @date 2019-04-11 16:50
+ */
+public class User implements UserDetails {
+ /**
+ * 主键
+ */
+ private Long id;
+
+ /**
+ * 用户名
+ */
+ private String username;
+
+ /**
+ * 用户号码
+ */
+ private String svcNum;
+
+ /**
+ * 密码
+ */
+ private String password;
+
+ /**
+ * 客户id 1对1
+ */
+ private Long custId;
+
+ public Long getId() {
+ return id;
+ }
+
+ public void setId(Long id) {
+ this.id = id;
+ }
+
+ @Override
+ public String getUsername() {
+ return username;
+ }
+
+ @Override
+ public boolean isAccountNonExpired() {
+ return false;
+ }
+
+ @Override
+ public boolean isAccountNonLocked() {
+ return false;
+ }
+
+ @Override
+ public boolean isCredentialsNonExpired() {
+ return false;
+ }
+
+ @Override
+ public boolean isEnabled() {
+ return true;
+ }
+
+ public void setUsername(String username) {
+ this.username = username;
+ }
+
+ public String getSvcNum() {
+ return svcNum;
+ }
+
+ public void setSvcNum(String svcNum) {
+ this.svcNum = svcNum;
+ }
+
+ @Override
+ public Collection<? extends GrantedAuthority> getAuthorities() {
+ // 这里我们没有用到权限，所以返回一个默认的admin权限
+ return AuthorityUtils.commaSeparatedStringToAuthorityList("admin");
+ }
+
+ @Override
+ public String getPassword() {
+ return password;
+ }
+
+ public void setPassword(String password) {
+ this.password = password;
+ }
+
+ public Long getCustId() {
+ return custId;
+ }
+
+ public void setCustId(Long custId) {
+ this.custId = custId;
+ }
+}

chapter12/src/main/java/com/yukong/mapper/UserMapper.java

@@ -0,0 +1,17 @@
+package com.yukong.mapper;
+
+import com.yukong.entity.User;
+
+/**
+ *
+ * @author yukong
+ * @date 2019-04-11 16:50
+ */
+public interface UserMapper {
+
+ int insertSelective(User record);
+
+ User selectByUsername(String username);
+
+
+}

chapter12/src/main/resources/application.yml

@@ -0,0 +1,8 @@
+spring:
+ datasource:
+ driver-class-name: com.mysql.cj.jdbc.Driver
+ url: jdbc:mysql://127.0.0.1:3306/db_test?useUnicode=true&characterEncoding=utf8
+ username: root
+ password: abc123
+mybatis:
+ mapper-locations: classpath:mapper/*.xml