Un récent projet, l'étude d'un peu de contrôle d'accès springboot, l'utilisation de la sécurité, facile frontal, consultez la page: xiaoming connexion de l'utilisateur:
xiaoming1 utilisateur en ligne:
Après deux connexion de l'utilisateur, avec un accès menu différent.
Le système utilise la totalité de la trame: springboot + mybatis + mysql + springsecurity, la réception en utilisant easyui
classe WebConfig.java cette page de connexion de configuration
@Configuration
public class WebConfig implements WebMvcConfigurer {
@Resource
private AsyncHandlerInterceptor loginInterceptor;
@Override
public void addViewControllers(ViewControllerRegistry registry) {
registry.addViewController("/login").setViewName("login");
}
@Override
public void addInterceptors(InterceptorRegistry registry) {
registry.addInterceptor(loginInterceptor).addPathPatterns("/**");
}
}
classe SecurityConfig, équipé de droits à la configuration des ressources, toutes les demandes afin de permettre l'accès aux ressources statiques
@Configuration
@EnableWebSecurity
public class SecurityConfig extends WebSecurityConfigurerAdapter {
@Resource
private UserDetailsService userService;
@Override
protected void configure(AuthenticationManagerBuilder auth) throws Exception {
auth.userDetailsService(userService).passwordEncoder(new BCryptPasswordEncoder());
}
@Override
protected void configure(HttpSecurity http) throws Exception {
http.authorizeRequests().
antMatchers("/boot/static/**").permitAll()
.anyRequest().authenticated()
.and()
.formLogin()
.loginPage("/login")
.failureUrl("/login?error")
.permitAll()
.and()
.logout().permitAll(); //注销行为任意访问
ValidateCodeFilter validateCodeFilter = new ValidateCodeFilter();
// 验证码拦截器,配置到UsernamePasswordAuthenticationFilter之前
http.addFilterBefore(validateCodeFilter, UsernamePasswordAuthenticationFilter.class).formLogin();
}
}
Expliquer: ValidateCodeFilter temporairement inutile, prêt à la page de connexion lorsque le code utilisé ajouter.
@Configuration
@EnableWebSecurity
public class SecurityConfig extends WebSecurityConfigurerAdapter {
@Resource
private UserDetailsService userService;
@Override
protected void configure(AuthenticationManagerBuilder auth) throws Exception {
auth.userDetailsService(userService).passwordEncoder(new BCryptPasswordEncoder());
}
@Override
protected void configure(HttpSecurity http) throws Exception {
http.authorizeRequests().
antMatchers("/boot/static/**").permitAll()
.anyRequest().authenticated()
.and()
.formLogin()
.loginPage("/login")
.failureUrl("/login?error")
.permitAll()
.and()
.logout().permitAll(); //注销行为任意访问
ValidateCodeFilter validateCodeFilter = new ValidateCodeFilter();
// 验证码拦截器,配置到UsernamePasswordAuthenticationFilter之前
http.addFilterBefore(validateCodeFilter, UsernamePasswordAuthenticationFilter.class).formLogin();
}
}
classe UserServiceImpl, méthode de validation de connexion utilisateur loadUserByUsername
@Service("userService")
public class UserServiceImpl implements UserDetailsService {
@Resource
private RoleDao roleDao;
@Resource
private UserDao userDao;
@Override
public UserDetails loadUserByUsername(String username) { //重写loadUserByUsername 方法获得 userdetails 类型用户
if(username == null){
throw new UsernameNotFoundException("用户名不存在");
}
List<SimpleGrantedAuthority> authorities = new ArrayList<>();
User user = userDao.getUserbyName(username);
List<Role> roles = roleDao.getRolebyUserId(user.getId());
//用于添加用户的权限。只要把用户权限添加到authorities 就万事大吉。
for(Role role:roles)
{
authorities.add(new SimpleGrantedAuthority(role.getRoleName()));
}
return new org.springframework.security.core.userdetails.User("xiaoming",user.getPassword(), authorities);
}
}
LoginInterceptor Deliverable,
response.setHeader("X-Frame-Options", "SAMEORIGIN");这段代码是为了解决easyui tabs不能显示页面的问题。
@Component
public class LoginInterceptor extends HandlerInterceptorAdapter {
@Override
public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
response.setHeader("X-Frame-Options", "SAMEORIGIN");
return true;
}
}
Le regard qui suit à la page de destination:
<!DOCTYPE html>
<html lang="zh-CN"
xmlns="http://www.w3.org/1999/xhtml"
xmlns:th="http://www.thymeleaf.org"
xmlns:layout="http://www.ultraq.net.nz/thymeleaf/layout"
layout:decorator="secure_template">
<head>
<meta charset="UTF-8">
<title>Validate Form on Submit - jQuery EasyUI Demo</title>
<link rel="stylesheet" type="text/css" href="/boot/static/js/easyui/themes/default/easyui.css">
<link rel="stylesheet" type="text/css" href="/boot/static/js/easyui/themes/icon.css">
<link rel="stylesheet" type="text/css" href="/boot/static/js/easyui/demo/demo.css">
<script type="text/javascript" src="/boot/static/js/easyui/jquery.min.js"></script>
<script type="text/javascript" src="/boot/static/js/easyui/jquery.easyui.min.js"></script>
<script type="text/javascript">
function submitLogin(){
if(!$('#loginForm').form('enableValidation').form('validate')){
return;
}
$('#loginForm').submit();
}
function clearForm(){
$('#loginForm').form('clear');
}
</script>
</head>
<body>
<div style="margin:70px 0;"></div>
<h2 align="center">欢迎登录boot系统</h2>
<div class="easyui-panel" title="登录" style="width:100%;max-width:400px;padding:30px 60px;">
<form name="loginForm" th:action="@{/login}" action="/login" method="POST" id="loginForm"> <!-- 3 -->
<div style="margin-bottom:20px">
<input class="easyui-textbox" name="username" id="username" style="width:100%" data-options="label:'用户名:',required:true">
</div>
<div style="margin-bottom:20px">
<input class="easyui-passwordbox" name="password" id="password" style="width:100%" data-options="label:'密 码:',required:true">
</div>
</form>
<div style="margin-bottom:20px;color:red;" th:if="${param.error}">用户名或密码错误</div>
<div style="text-align:center;padding:5px 0">
<a href="javascript:void(0)" class="easyui-linkbutton" id="login" style="width:80px" οnclick="submitLogin()">登录</a>
<a href="javascript:void(0)" class="easyui-linkbutton" οnclick="clearForm()" style="width:80px">重置</a>
</div>
</div>
</body>
</html>
Regardez la page principale:
<!DOCTYPE html>
<html lang="zh-CN"
xmlns="http://www.w3.org/1999/xhtml"
xmlns:th="http://www.thymeleaf.org"
xmlns:layout="http://www.ultraq.net.nz/thymeleaf/layout"
layout:decorator="secure_template">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<title>Template</title>
<link rel="stylesheet" href="/boot/static/js/easyui/themes/default/easyui.css" />
<link rel="stylesheet" type="text/css" href="/boot/static/resources/css/custom.css">
<link type="text/css" href="/boot/static/resources/css/common.css" rel="stylesheet">
<link type="text/css" href="/boot/static/resources/css/ddsmoothmenu.css" rel="stylesheet">
<link rel="stylesheet" type="text/css" href="/boot/static/js/easyui/themes/icon.css">
<script type="text/javascript" src="/boot/static/js/jquery.js"></script>
<script src="/boot/static/js/easyui/jquery.easyui.min.js"></script>
<script src="/boot/static/js/easyui/locale/easyui-lang-zh_CN.js"></script>
<script type="text/javascript">
function logout() {
$('#logout').submit();
}
</script>
</head>
<body class="easyui-layout">
<!-- 头部load: header.html -->
<div data-options="region:'north', border:false" id="header">
<div id="headertop">
<div class="header">
<div class="logo">
<img alt="boot系统" style="font-size:30px;font-weight:bold;">
</div>
<div style="text-align:right;padding:5px 0">
<form th:action="@{/logout}" method="post" id="logout">
<a href="javascript:void(0)" class="easyui-linkbutton" style="width:80px" οnclick="logout()">退出</a>
</form>
</div>
</div>
</div>
</div>
<!-- 左侧 -->
<div class="easyui-panel" data-options="region:'west', split:true, title:'系统菜单'" id="nav" th:include="tree.html :: html">
</div>
<!-- 中间 Content -->
<div class="easyui-panel" data-options="region:'center'">
<div class="easyui-layout" data-options="fit:true,region:'center'" th:include="nestedtabs.html :: html"></div>
</div>
</body>
</html>
LoginController classe pour obtenir une page d'atterrissage réussi après le saut:
@Controller
public class LoginController {
private final static Logger logger = LoggerFactory.getLogger(LoginController.class);
@GetMapping("/")
public String login(){
logger.info("登录成功,跳转主页面");
return "index";
}
}
classe UserController, le menu de classe
@Controller
@RequestMapping("/user")
public class UserController {
@GetMapping("/list")
public String toUserManage(){
return "user/userList";
}
}
Base de données de conception:
Table db_user
CREATE TABLE `db_user` (
`id` bigint(20) NOT NULL AUTO_INCREMENT,
`username` varchar(100) NOT NULL,
`password` varchar(100) NOT NULL,
PRIMARY KEY (`id`)
) ENGINE=InnoDB AUTO_INCREMENT=3 DEFAULT CHARSET=utf8
insert into db_user values(1,'xiaoming','$2a$10$LpzLqSAVaWZadH2N8P319u0jz4bcWCOCib9Ngt6EDGTRfNncehKMi');
insert into db_user values(1,'xiaoming1','$2a$10$LpzLqSAVaWZadH2N8P319u0jz4bcWCOCib9Ngt6EDGTRfNncehKMi');
Table db_role
CREATE TABLE `db_role` (
`id` bigint(20) NOT NULL AUTO_INCREMENT,
`name` varchar(100) NOT NULL,
PRIMARY KEY (`id`)
) ENGINE=InnoDB AUTO_INCREMENT=3 DEFAULT CHARSET=utf8
insert into db_role value(1,'ROLE_ADMIN');
insert into db_role value(2,'ROLE_USER');
db_user_role 表
CREATE TABLE `db_user_role` (
`id` bigint(20) NOT NULL AUTO_INCREMENT,
`role_id` bigint(20) NOT NULL,
`user_id` bigint(20) NOT NULL,
PRIMARY KEY (`id`)
) ENGINE=InnoDB AUTO_INCREMENT=4 DEFAULT CHARSET=utf8
insert into db_user_role values(1,1,1)
insert into db_user_role values(2,2,1)
insert into db_user_role values(3,1,2)
Collez le code un peu, l'adresse source
https://github.com/jinjunzhu/springboot.git
référence:
https://www.cnblogs.com/softidea/p/7068149.html
tables de base de données: db_role
CREATE TABLE `db_role` (
` id` bigint (20) NOT NULL AUTO_INCREMENT,
`name` varchar (20) NOT NULL,
clé primaire (` id`)
) MOTEUR = InnoDB AUTO_INCREMENT = 3 DEFAULT CHARSET = UTF-8
insérer dans les valeurs db_role (1, 'ROLE_ADMIN');
insérer dans les valeurs db_role (1, 'ROLE_USER');
tables de base de données: utilisateur_base_de_données
CREATE TABLE `db_user` (
` id` bigint (20) NOT NULL AUTO_INCREMENT,
`username` varchar (100) NOT NULL,
` password` varchar (100) NOT NULL,
clé primaire ( `id`)
) MOTEUR = InnoDB AUTO_INCREMENT = 3 DEFAULT CHARSET = UTF-8
insérer dans les valeurs de utilisateur_base_de_données (1, 'xiaoming', '$ 2a $ 10 $ QOT0aqz0gjkmF / RwoH6GGuWG3JtPTnNd6hL.rliSNc8K7ysHMjcOm');
insérer dans les valeurs de utilisateur_base_de_données (2, 'xiaoming1', '$ 2a $ 10 $ QOT0aqz0gjkmF / RwoH6GGuWG3JtPTnNd6hL.rliSNc8K7ysHMjcOm');
tables de base de données: db_user_role
CREATE TABLE `db_user_role` (
` id` bigint (20) NOT NULL AUTO_INCREMENT,
`user_id` bigint (20) NOT NULL,
` role_id` bigint (20) NOT NULL,
clé primaire ( `id`)
) MOTEUR = InnoDB AUTO_INCREMENT = 4 DEFAULT CHARSET = UTF - 8
insérer dans les valeurs db_user_role (1,1,1);
insérer dans les valeurs db_user_role (2,1,2);
insérer dans les valeurs db_user_role (3,2,2);