2. 程式人生 > >SpringBoot 下 SpringSecurity 入門搭建

SpringBoot 下 SpringSecurity 入門搭建

阿新 發佈:2018-11-17

提示:僅供自己學習參考(開發環境maven3.9+jdk1.7+eclipseMar4.5.2)

1、目錄結構:


2、原始碼:

(1)Springboot001Application 類

package com.ljh.springboot001;

import org.springframework.boot.SpringApplication;
import org.springframework.boot.autoconfigure.SpringBootApplication;

@SpringBootApplication
public class Springboot001Application {


public static void main(String[] args) {
SpringApplication.run(Springboot001Application.class, args);
}
}

(2)WebMvcConfig 類繼承WebMvcConfigurerAdapter(spring-webmvc-4.1.16.RELEASE.jar的)

package com.ljh.springboot001.config;

import org.springframework.context.annotation.Configuration;
import org.springframework.web.servlet.config.annotation.ViewControllerRegistry;
import org.springframework.web.servlet.config.annotation.WebMvcConfigurerAdapter;
@Configuration
public class WebMvcConfig extends WebMvcConfigurerAdapter{

@Override
public void addViewControllers(ViewControllerRegistry registry) {
registry.addViewController("/login").setViewName("login");
}

}

(3)WebSecurityConfig 類繼承WebSecurityConfigurerAdapter(spring-security-config-3.2.7.RELEASE.jar的)

package com.ljh.springboot001.config;

import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
import org.springframework.security.core.userdetails.UserDetailsService;

import com.ljh.springboot001.security.CustomUserService;

@Configuration
public class WebSecurityConfig extends WebSecurityConfigurerAdapter{


@Bean
UserDetailsService customUserService(){
System.out.println("userservice ........................");
return new CustomUserService();
}

@Override
protected void configure(AuthenticationManagerBuilder auth) throws Exception {
auth.userDetailsService(customUserService());
}

@Override
protected void configure(HttpSecurity http) throws Exception {
http.authorizeRequests()
.anyRequest()
.authenticated()
.and()
.formLogin()
.loginPage("/login")
.failureUrl("/login?error")
.permitAll()
.and()
.logout().permitAll();
}
// .defaultSuccessUrl("/home")

}


(4)SysUserRepository介面繼承JpaRepository(spring-data-jpa-xxx.jar的)

package com.ljh.springboot001.dao;
 
import org.springframework.data.jpa.repository.JpaRepository;
import org.springframework.stereotype.Repository;


import com.ljh.springboot001.domain.SysUser;


@Repository
public interface SysUserRepository extends JpaRepository<SysUser, Long>{  
     
SysUser findByUsername(String username);
}  

(5)Msg 類

package com.ljh.springboot001.domain;


public class Msg {


private String title;
private String content;
private String etraInfo;
public Msg(String title, String content, String etraInfo) {
super();
this.title = title;
this.content = content;
this.etraInfo = etraInfo;
}
public String getTitle() {
return title;
}
public void setTitle(String title) {
this.title = title;
}
public String getContent() {
return content;
}
public void setContent(String content) {
this.content = content;
}
public String getEtraInfo() {
return etraInfo;
}
public void setEtraInfo(String etraInfo) {
this.etraInfo = etraInfo;
}

}

(6)SysRole 類

package com.ljh.springboot001.domain;


import javax.persistence.Entity;
import javax.persistence.GeneratedValue;
import javax.persistence.Id;


@Entity
public class SysRole {//角色 即 許可權
@Id
@GeneratedValue
private Long id;

private String name;
    
public String getName() {
return name;
}


public void setName(String name) {
this.name = name;
}


public Long getId() {
return id;
}


public void setId(Long id) {
this.id = id;
}

}


(7)SysUser  類實現UserDetails   介面(spring-security-core-xxx.jar)

package com.ljh.springboot001.domain;


import java.util.List;
import java.util.ArrayList;
import java.util.Collection;

import javax.annotation.Generated;
import javax.persistence.CascadeType;
import javax.persistence.Entity;
import javax.persistence.FetchType;
import javax.persistence.GeneratedValue;
import javax.persistence.Id;
import javax.persistence.ManyToMany;


import org.springframework.security.core.GrantedAuthority;
import org.springframework.security.core.authority.SimpleGrantedAuthority;
import org.springframework.security.core.userdetails.UserDetails;


@Entity
public class SysUser  implements UserDetails   { //使用者


 
private static final long serialVersionUID = 1L;
@Id
@GeneratedValue
private Long id;
private String username;
private String password;

@ManyToMany(cascade = {CascadeType.REFRESH},fetch = FetchType.EAGER)
private List<SysRole> roles ;

@Override
public Collection<? extends GrantedAuthority> getAuthorities() {
List<GrantedAuthority> auths = new ArrayList<GrantedAuthority>();
List<SysRole> roles = this.getRoles();
for (SysRole role : roles) {
auths.add(new SimpleGrantedAuthority(role.getName()));
}
return auths;
}

public List<SysRole> getRoles() {
return roles;
}

public Long getId() {
return id;
}


public void setId(Long id) {
this.id = id;
}


public void setUsername(String username) {
this.username = username;
}


public void setPassword(String password) {
this.password = password;
}


public void setRoles(List<SysRole> roles) {
this.roles = roles;
}




@Override
public String getPassword() {
return password;
}


@Override
public String getUsername() {
return username;
}


@Override
public boolean isAccountNonExpired() {
return true;
}


@Override
public boolean isAccountNonLocked() {
return true;
}


@Override
public boolean isCredentialsNonExpired() {
return true;
}


@Override
public boolean isEnabled() {
return true;
}


}


(8)CustomUserService 類實現UserDetailsService介面(spring-security-core-xxx.jar)

package com.ljh.springboot001.security;


import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.security.core.userdetails.UserDetailsService;
import org.springframework.security.core.userdetails.UsernameNotFoundException;
import org.springframework.stereotype.Service;


import com.ljh.springboot001.dao.SysUserRepository;
import com.ljh.springboot001.domain.SysUser;


public class CustomUserService implements UserDetailsService{
@Autowired
SysUserRepository sysUserRepository;

@Override
public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {
System.out.println("loadUserByUsername......................");
SysUser user  = sysUserRepository.findByUsername(username);
if(user == null){
throw new UsernameNotFoundException("使用者名稱不存在");
}
return user;
}


}

(9)HomeController 類

package com.ljh.springboot001.web;


import org.springframework.boot.SpringApplication;
import org.springframework.boot.autoconfigure.EnableAutoConfiguration;
import org.springframework.stereotype.Controller;
import org.springframework.ui.Model;
import org.springframework.web.bind.annotation.RequestMapping;


import com.ljh.springboot001.domain.Msg;


@Controller
public class HomeController {


@RequestMapping("/")
public String index(Model model){
Msg msg = new Msg("測試標題","測試內容","額外資訊,只對管理員 lZ示 ");
model.addAttribute("msg",msg);
return "home";
}
}


(10)bootstrap檔案


(11)thymeleaf模板檔案


(12)springboot核心配置檔案(application.properties)

server.port=9000
#spring.datasource.driverClassName=com.mysql.jdbc.Driver
#spring.datasource.url=jdbc\:mysql\:\localhost:3306\test?useUnicode=true&&characterEncoding=utf-8
#spring.datasource.username=root
#spring.datasource.password=123456
spring.datasource.driverClassName=com.mysql.jdbc.Driver
spring.datasource.url=jdbc:mysql://127.0.0.1:3306/test
spring.datasource.password=123456
spring.datasource.username=root
spring.jpa.database-platform=org.hibernate.dialect.MySQLDialect

logging.level.org.springframework.security=INFO
spring.thymeleaf.prefix=classpath:/templates/
spring.thymeleaf.suffix=.html  
#spring.thymeleaf.mode=HTML5  
#spring.thymeleaf.encoding=UTF-8;charset=<encoding> is added 
#spring.thymeleaf.content-type=text/html  
spring.thymeleaf.cache=true
  
spring.jpa.hibernate.ddl-auto=update
spring.jpa.show-sql=true
server.tomcat.uri-encoding=utf-8
#spring.mvc.view.prefix=/templates/
#spring.mvc.view.suffix=.html
#記憶體中的預設使用者賬號
security.user.name=ljh
#記憶體中的預設密碼
security.user。password=ljh
(13)data.sql檔案
 
insert into SYS_USER(id ,username,password) values (1,'ljh','ljh');
insert into SYS_USER(id ,username,password) values (2,'sdd','sdd');
insert into SYS_ROLE(id ,name) values (1,'ROLE_ADMIN');
insert into SYS_ROLE(id ,name) values (2,'ROLE_USER');
insert into SYS_USER_ROLES(SYS_USER_ID ,ROLES_ID) values (1,1);
insert into SYS_USER_ROLES(SYS_USER_ID ,ROLES_ID) values (2,2);

(14)home.html

<!DOCTYPE html>
<html xmlns:th="http://www.thymeleaf.org"
xmlns:sec="http://www.thymeleaf.org/thymeleaf-extras-springsecurity4">
<head>
<meta content="text/html;charset=UTF-8"/>
<title sec:authentication="name"></title>
<link rel="stylesheet" th:href="@{/css/bootstrap.min.css}"/>
<style type="text/css">
body{
padding-top:50px;
}
.starter-template{
padding:40px 15px;
text-align: center;
}
</style>
</head>
<body>
<nav class="navbar navbar-inverse navbar-fixed-top">
<div class="container">
<div class = "navbar-header">
<a class = "navbar-brand" href = "#">Spring security demo</a>
</div>
<div id="navbar" class="collapse navbar-collapse">
<ul class = "nav navbar-nav">
<li><a th:href="@{/}">首頁</a></li>
</ul>
</div>
</div>
</nav>
<div class="container">
<div class="starter-template">
<h1 th:text="${msg.title}"></h1>
<p class="bg-primary" th:text="${msg.content}"></p>
<div sec:authorize="hasRole('ROLE_ADMIN')"> 
<p class="bg-info" th:text="${msg.etraInfo}"></p>
</div>
<div sec:authorize="hasRole('ROLE_USER')"> 
<p class="bg-info"> 無更多資訊顯示</p>
</div>
<form th:action="@{/logout}" method="post">
<input type="submit" class="btn btn-primary" value="exit"/>
</form>
</div>
</div>
</body>
</html>
(15)login.html

<!DOCTYPE html>
<html xmlns:th="http://www.thymeleaf.org"
xmlns:layout="http://www.ultraq.net.nz/web/thymeleaf/layout">
<head>
<meta content="text/html;charset=UTF-8"></meta>
<title>login  page </title>
<link rel="stylesheet" th:href="@{/css/bootstrap.min.css}"/>
<style type="text/css">
body{
padding-top:50px;
}
.starter-template{
padding:40px 15px;
text-align: center;
}
</style>


</head>


<body>
<nav class="navbar navbar-inverse navbar-fixed-top">
<div class="container">
<div class = "navbar-header">
<a class = "navbar-brand"  href = "#">Spring security demo</a>
</div>
<div id="navbar" class="collapse navbar-collapse">
<ul class = "nav navbar-nav">
<li><a th:href="@{/}">首頁</a></li>
</ul>
</div>
</div>
</nav>
<div class="container">
<div class="starter-template">
<p th:if="${param.logout}" class="bg-warning">成功登出</p>
<p th:if="${param.error}" class="bg-danger">有錯誤,重試1233</p>
</div>
<h2>請登入</h2>
<form name = "form" th:action="@{/login}" action="/login" method="post">
<div class="form-group">
<label for="username">賬號</label>
<input type="text" class="form-control" name="username" value="" placeholder="username"/>
</div> 
<div class="form-group">
<label for="password">mima</label>
<input type="password" class="form-control" name="password" value="" placeholder="password"/>
</div> 
<input type="submit" id="login" value="Login"  class="btn btn-primary"/>
</form>
</div>
</body>
</html>


(16)pom.xml檔案

<?xml version="1.0" encoding="UTF-8"?>
<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
<modelVersion>4.0.0</modelVersion>


<groupId>com.ljh</groupId>
<artifactId>springboot001</artifactId>
<version>0.0.1-SNAPSHOT</version>
<packaging>jar</packaging>


<name>springboot001</name>
<description>Demo project for Spring Boot</description>


<parent>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-parent</artifactId>
<version>1.5.6.RELEASE</version>
<relativePath/> <!-- lookup parent from repository -->
</parent>


<properties>
<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
<project.reporting.outputEncoding>UTF-8</project.reporting.outputEncoding>
<java.version>1.7</java.version>
</properties>


<dependencies>
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter</artifactId>
</dependency>
    <!-- https://mvnrepository.com/artifact/javax.persistence/persistence-api -->
<!-- <dependency> -->
<!--    <groupId>javax.persistence</groupId> -->
<!--    <artifactId>persistence-api</artifactId> -->
<!--    <version>1.0</version> -->
<!-- </dependency> -->
<dependency>
  <groupId>org.hibernate.javax.persistence</groupId>
  <artifactId>hibernate-jpa-2.0-api</artifactId>
  <version>1.0.1.Final</version>
</dependency>
    <!-- https://mvnrepository.com/artifact/org.springframework.boot/spring-boot-starter-data-jpa -->
<dependency>
   <groupId>org.springframework.boot</groupId>
   <artifactId>spring-boot-starter-data-jpa</artifactId>
   <version>1.5.6.RELEASE</version>
</dependency>
   
<!-- https://mvnrepository.com/artifact/org.springframework.boot/spring-boot-starter-security -->
<dependency>
   <groupId>org.springframework.boot</groupId>
   <artifactId>spring-boot-starter-security</artifactId>
   <version>1.5.6.RELEASE</version>
</dependency>
        <dependency>
            <groupId>org.springframework.boot</groupId>
            <artifactId>spring-boot-starter-web</artifactId>
        </dependency>
        <dependency>
            <groupId>mysql</groupId>
            <artifactId>mysql-connector-java</artifactId>
            <version>5.1.35</version>
        </dependency>
       <!-- https://mvnrepository.com/artifact/org.thymeleaf.extras/thymeleaf-extras-springsecurity4 -->
<dependency>
   <groupId>org.thymeleaf.extras</groupId>
   <artifactId>thymeleaf-extras-springsecurity4</artifactId>
   <version>2.1.3.RELEASE</version>
</dependency>
<dependency>  
        <groupId>org.springframework.boot</groupId>  
        <artifactId>spring-boot-starter-thymeleaf</artifactId>  
</dependency>  
<!-- https://mvnrepository.com/artifact/org.apache.tomcat/servlet-api -->
<dependency>
   <groupId>org.apache.tomcat</groupId>
   <artifactId>servlet-api</artifactId>
   <version>6.0.39</version>
</dependency>

</dependencies>


<build>
<plugins>
<plugin>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-maven-plugin</artifactId>
</plugin>
</plugins>
</build>




</project>


相應的錯誤解決辦法看下篇:http://blog.csdn.net/lijiaheng525/article/details/76916732

相關推薦

SpringBoot SpringSecurity 入門搭建

提示:僅供自己學習參考(開發環境maven3.9+jdk1.7+eclipseMar4.5.2) 1、目錄結構: 2、原始碼: (1)Springboot001Application 類 package com.ljh.springboot001; import org.s

小編帶您進入SpringBoot (1) idea的環境搭建及demo

Delve 繼續 tap initial ret epo public 三方庫 maven 1.Spring Boot簡介wiki上的介紹: Spring Boot是Spring的常規配置解決方案,用於創建可以“運行”的獨立的,生產級的基於Spring的應用程序。[22]它

SpringBoot(一):入門~搭建環境

一、直接開始搭建maven專案 1)、訪問:http://start.spring.io/       進入之後點選Switch to the full version.如下圖 跳轉之後如下圖所示:選擇包結構  專案名稱  j

1、springboot入門------搭建第一個helloword

一、用Maven專案構建 1、搭建一個Maven專案(Create Maven專案的時候的Packaging時,選擇jar)   2、pom檔案新增必須依賴:   2.1、新增父依賴: <!-- 必須要引入繼承springboot-parent 實現很多jar的依賴 管理 -

ESP32系列教程:《入門篇:ESP32開發環境搭建》--Windows使用VScode搭建ESP32開發環境

github地址:https://github.com/xiaolongba/wireless-tech 如何搭建ESP32開發環境 前言 ESP32是樂鑫在其上一代ESP8266一炮而紅之後,推出的第二代高性價比的產品,ESP32在上一代的基礎上增加了藍芽4.2的功能,加上

SpringBoot使用SpringSecurity搭建基於非對稱加密的JWT及前後端分離的搭建

安全問題是一個比較複雜的問題,之前使用過Shiro這個安全框架,確實挺簡單的,後來使用SpringSecurity,SpringSecurity更細粒度可控,現在做專案基本都使用前後端分離的,很少再使用Thymeleaf這類模板引擎,而基於前後端分離的許可權問題

SpringBoot整合SpringSecurity簡單實現登入登出從零搭建

1 . 新建一個spring-security-login的maven專案 ,pom.xml新增基本依賴 : <?xml version="1.0" encoding="UTF-8"?> <project xmlns="http://maven.apache.org/POM/4.0.0"

Spark入門實戰系列--3.Spark程式設計模型()--IDEA搭建及實戰

1 package class3 2 3 import org.apache.spark.SparkContext._ 4 import org.apache.spark.{SparkConf, SparkContext} 5 6 object Join{ 7 def

基於springboot+bootstrap+mysql+redis搭建一套完整的許可權架構【二】【整合springSecurity

        若需要整合我們的springSecurity,一種是直接使用springSecurity自帶的許可權架構,另外一種是使用我們自己設計的資料架構,本文所闡述的就是使用自己設計的RBAC許可權架構,因此我們要事先設計好使用者許可權架構的PDM如下圖所示,並建立我

【Pytorch-入門】windows的環境搭建(經驗證成功~)

自動 檢查 create span -- nump .cn otl type 前言 實驗需要,之前使的tensorflow【因為自己手邊的服務器都是windows環境TT...】,但身邊的師兄們用的都是pytorch,自己查了查現在做科研基本上都是用的pytorch,而且

Linuxnagios的搭建及相關配置

linux下nagios的搭建及相關配置一、LAMP環境部署1、安裝php 1.安裝yum源 rpm -Uvh http://download.fedoraproject.org/pub/epel/6/x86_64/epel-release-6-8.noarch.rpm rpm -Uvh http://rpm

dubbo學習(1)--簡單的入門搭建實例

實現類 set ng- dds 更新 輸出 block sys 註冊 轉載請註明源文出處:http://www.cnblogs.com/lighten/p/6828026.html 1 簡介 dubbo是一個分布式服務框架,由阿裏巴巴的工程師開發,致力於提供

Springboot(一):入門

熱啟動 exp 頁面 tor posit ole 入口 service 主程序 什麽是spring boot spring Boot是由Pivotal團隊提供的全新框架,其設計目的是用來簡化新Spring應用的初始搭建以及開發過程。該框架使用了特定的方式來進行配置,從而使開

Windows使用Nexus搭建Maven私服(安裝)

支持 blog 試用 prop 解壓 結束 factor repos name 一、下載Nexus 下載OSS最新版:https://www.sonatype.com/download-oss-sonatype 老版本:https://support.sonatype.

ubuntuspring環境搭建

ext targe out 插件 fontsize article ase tex get 一.安裝JDK 下載官網:http://www.oracle.com/technetwork/java/javase/downloads/jdk8-downloads-21331

UbuntuApache+SVN搭建SVN服務多項目管理

svn apache2 一、系統環境[email protected]/* */:~# cat /etc/issueUbuntu 16.04.2 LTS \n \l二、創建svn組和用戶[email protected]/* */:~# addgroup svnserAddin

linuxoracle11G DG搭建(四):興許驗證操作

歸檔 驗證 補充 over nts content -s 環境 fontsize linux下oracle11G DG搭建(四):興許驗證操作 環境 名稱 主庫 備庫 主機名 bjsrv shsrv 軟件版本號 RedH

cocos2dx 3.0 windows8開發環境搭建搭建 不須要cygwin

進行 文件夾 jdk 搭建 pop 官網下載 trac develop 嘗試 已經接觸cocos2dx有一段時間,但一直也僅僅是看看Demo,沒有真正的去寫代碼。由於本人僅僅是java的coder。還是半路出家的coder,編程基礎太淺。對於c++、lu

(1)Jenkins Linux環境的簡單搭建

linux java jenkins安裝部署 jdk apache-maven (1)Jenkins Linux環境下的簡單搭建 Jenkins是一個開源軟件項目,旨在提供一個開放易用的軟件平臺,使軟件的持續集成變成可能。----百度百科 這是一款基於Java開發的工具。種種

Linux私有CA搭建

openssl 內網搭建 數字證書為實現雙方安全通信提供了電子認證。在因特網、公司內部網或外部網中,使用數字證書實現身份識別和電子信息加密。數字證書中含有密鑰對(公鑰和私鑰)所有者的識別信息,通過驗證識別信息的真偽實現對證書持有者身份的認證。 證書申請及簽署步驟; 1、生成申請請求