[update]添加spring boot shiro 相关代码

Author: DougLee

spring-boot-shiro/pom.xml

@@ -83,6 +83,17 @@
 			<artifactId>pagehelper-spring-boot-starter</artifactId>
 			<version>1.2.3</version>
 		</dependency>
+		<dependency>
+			<groupId>net.sourceforge.nekohtml</groupId>
+			<artifactId>nekohtml</artifactId>
+		</dependency>
+
+		<!-- fastjson -->
+		<dependency>
+			<groupId>com.alibaba</groupId>
+			<artifactId>fastjson</artifactId>
+			<version>1.2.31</version>
+		</dependency>
 
 		<dependency>
 			<groupId>org.springframework.boot</groupId>

spring-boot-shiro/src/main/java/com/example/springbootshiro/config/ShiroConfig.java

@@ -18,33 +18,41 @@ public class ShiroConfig {
     @Bean
     public ShiroFilterFactoryBean shiroFilter(SecurityManager securityManager){
         ShiroFilterFactoryBean shiroFilterFactoryBean = new ShiroFilterFactoryBean();
-
         shiroFilterFactoryBean.setSecurityManager(securityManager);
-
-        Map<String, String> filterChainDefinitionMap = new LinkedHashMap<>();
-        //配置退出过滤器
-        filterChainDefinitionMap.put("/logout", "logout");
-
-        filterChainDefinitionMap.put("/**", "authc");
-
-        //登录界面
         shiroFilterFactoryBean.setLoginUrl("/login");
-        //登录成功后的跳转界面
         shiroFilterFactoryBean.setSuccessUrl("/index");
-        //未授权界面
         shiroFilterFactoryBean.setUnauthorizedUrl("/403");
 
+        LinkedHashMap<String, String> filterChainDefinitionMap = new LinkedHashMap<>();
+
+        filterChainDefinitionMap.put("/css/**", "anon");
+        filterChainDefinitionMap.put("/js/**", "anon");
+        filterChainDefinitionMap.put("/fonts/**", "anon");
+        filterChainDefinitionMap.put("/img/**", "anon");
+        filterChainDefinitionMap.put("/druid/**", "anon");
+        filterChainDefinitionMap.put("/user/regist", "anon");
+        filterChainDefinitionMap.put("/gifCode", "anon");
+        filterChainDefinitionMap.put("/logout", "logout");
+        filterChainDefinitionMap.put("/", "anon");
+        filterChainDefinitionMap.put("/**", "user");
+
         shiroFilterFactoryBean.setFilterChainDefinitionMap(filterChainDefinitionMap);
+
         return shiroFilterFactoryBean;
     }
 
+    @Bean
+    public ShiroRealm myShiroRealm() {
+        return new ShiroRealm();
+    }
     /**
      * 注入Shiro SerucityManager
      * @return
      */
     @Bean
     public SecurityManager securityManager(){
         DefaultWebSecurityManager securityManager = new DefaultWebSecurityManager();
+        securityManager.setRealm(myShiroRealm());
         return securityManager;
     }
 }

spring-boot-shiro/src/main/java/com/example/springbootshiro/config/ShiroRealm.java

@@ -0,0 +1,73 @@
+package com.example.springbootshiro.config;
+
+import com.example.springbootshiro.domain.MenuInfo;
+import com.example.springbootshiro.domain.RoleInfo;
+import com.example.springbootshiro.domain.UserInfo;
+import com.example.springbootshiro.service.MenuService;
+import com.example.springbootshiro.service.RoleService;
+import com.example.springbootshiro.service.UserService;
+import org.apache.shiro.SecurityUtils;
+import org.apache.shiro.authc.*;
+import org.apache.shiro.authz.AuthorizationInfo;
+import org.apache.shiro.authz.SimpleAuthorizationInfo;
+import org.apache.shiro.realm.AuthorizingRealm;
+import org.apache.shiro.subject.PrincipalCollection;
+import org.springframework.beans.factory.annotation.Autowired;
+
+import java.util.HashSet;
+import java.util.List;
+import java.util.Set;
+
+public class ShiroRealm extends AuthorizingRealm {
+
+	@Autowired
+	private UserService userService;
+	@Autowired
+	private RoleService roleService;
+	@Autowired
+	private MenuService menuService;
+
+	@Override
+	protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principal) {
+		UserInfo user = (UserInfo) SecurityUtils.getSubject().getPrincipal();
+		String userName = user.getUsername();
+
+		SimpleAuthorizationInfo simpleAuthorizationInfo = new SimpleAuthorizationInfo();
+
+		List<RoleInfo> roleList = this.roleService.findUserRole(userName);
+		Set<String> roleSet = new HashSet<String>();
+		for (RoleInfo r : roleList) {
+			roleSet.add(r.getRoleName());
+		}
+		simpleAuthorizationInfo.setRoles(roleSet);
+
+		List<MenuInfo> permissionList = this.menuService.findUserPermissions(userName);
+		Set<String> permissionSet = new HashSet<String>();
+		for (MenuInfo m : permissionList) {
+			permissionSet.add(m.getPerms());
+		}
+		simpleAuthorizationInfo.setStringPermissions(permissionSet);
+		return simpleAuthorizationInfo;
+	}
+
+	@Override
+	protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken token) throws AuthenticationException {
+		String userName = (String) token.getPrincipal();
+		String password = new String((char[]) token.getCredentials());
+
+		UserInfo user = this.userService.findByName(userName);
+
+		if (user == null) {
+			throw new UnknownAccountException("用户名或密码错误！");
+		}
+		if (!password.equals(user.getPassword())) {
+			throw new IncorrectCredentialsException("用户名或密码错误！");
+		}
+		if ("0".equals(user.getStatus())) {
+			throw new LockedAccountException("账号已被锁定,请联系管理员！");
+		}
+		SimpleAuthenticationInfo info = new SimpleAuthenticationInfo(user, password, getName());
+		return info;
+	}
+
+}

spring-boot-shiro/src/main/java/com/example/springbootshiro/controller/LoginController.java

@@ -32,9 +32,9 @@ public String login() {
     @PostMapping("/login")
     @ResponseBody
     public ResponseResult login(String username, String password, String code, Boolean rememberMe) {
-        if (StringUtils.isNullorEmpty(code)) {
-            return ResponseResult.warn("验证码不能为空!");
-        }
+//        if (StringUtils.isNullorEmpty(code)) {
+//            return ResponseResult.warn("验证码不能为空!");
+//        }
 //        Session session = super.getSession();
 //        String sessionCode = (String) session.getAttribute("_code");
 //        if (!code.toLowerCase().equals(sessionCode)) {

spring-boot-shiro/src/main/java/com/example/springbootshiro/controller/UserController.java

@@ -0,0 +1,42 @@
+package com.example.springbootshiro.controller;
+
+import com.example.springbootshiro.domain.QueryRequest;
+import com.example.springbootshiro.domain.UserInfo;
+import com.example.springbootshiro.service.UserService;
+import com.github.pagehelper.PageHelper;
+import com.github.pagehelper.PageInfo;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Controller;
+import org.springframework.ui.Model;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.ResponseBody;
+
+import java.util.List;
+import java.util.Map;
+
+/**
+ * Created by Douglee on 2018/4/2.
+ */
+@Controller
+public class UserController extends BaseController {
+    @Autowired
+    private UserService userService;
+
+    @GetMapping("user")
+    public String index(Model model) {
+        UserInfo userInfo = super.getCurrentUser();
+        model.addAttribute("user", userInfo);
+        return "user/user";
+    }
+
+    @GetMapping("user/list")
+    @ResponseBody
+    public Map<String, Object> userList(QueryRequest request, UserInfo userInfo) {
+        PageHelper.startPage(request.getPageNum(), request.getPageSize());
+        List<UserInfo> list = userService.getUserList();
+        PageInfo<UserInfo> pageInfo = new PageInfo<>(list);
+
+        return getDataTable(pageInfo);
+    }
+
+}

spring-boot-shiro/src/main/java/com/example/springbootshiro/domain/QueryRequest.java

@@ -0,0 +1,31 @@
+package com.example.springbootshiro.domain;
+
+import java.io.Serializable;
+
+/**
+ * Created by Douglee on 2018/4/2.
+ */
+public class QueryRequest implements Serializable {
+
+    private static final long serialVersionUID = -8510120969167698570L;
+
+    private int pageSize;
+
+    private int pageNum;
+
+    public int getPageSize() {
+        return pageSize;
+    }
+
+    public void setPageSize(int pageSize) {
+        this.pageSize = pageSize;
+    }
+
+    public int getPageNum() {
+        return pageNum;
+    }
+
+    public void setPageNum(int pageNum) {
+        this.pageNum = pageNum;
+    }
+}