Spring-Security

SecurityConfig

@Configuration
@EnableWebSecurity
public class SecurityConfig implements WebMvcConfigurer {

    @Bean
    public SecurityFilterChain filterChain(HttpSecurity httpSecurity) throws Exception {
        //当路径冲突时,先配置的优先       
        httpSecurity.authorizeHttpRequests()
                .requestMatchers("/**").permitAll()
                .requestMatchers("/**").hasRole("user")
                .anyRequest().authenticated()
                .and()
                .formLogin()
                .loginPage("/jump/login")
                .loginProcessingUrl("/doLogin")
                .permitAll()
                .and()
                .rememberMe()
                .rememberMeParameter("remember-me")
                .tokenValiditySeconds(60*60)
                .and().csrf().disable();

        return httpSecurity.build();
    }

//指定密码加密器后不需要在加密后的密码前指定加密类型 exp:{bcrypt}
    @Bean
    public PasswordEncoder passwordEncoder(){
        return new BCryptPasswordEncoder();
    }


//直接设置登录角色
    @Bean
    public UserDetailsService userDetailsService(){

        UserDetails userDetails = User.withDefaultPasswordEncoder()
                .username("user").password("123456").roles("user").build();

        return new InMemoryUserDetailsManager(userDetails);
    }


}

UserDetailsServiceImpl

@Service
@Slf4j
public class UserDetailsServiceImpl implements UserDetailsService {
    UserMapper userMapper;
    @Autowired
    void UserDetailsServiceImpl(UserMapper userMapper){
        this.userMapper = userMapper;
    }

    @Override
    public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {
        UserAccount userAccount =  userMapper.findByUsername(username);
        if(null == userAccount) throw new UsernameNotFoundException("用户不存在");
        List<GrantedAuthority> u = AuthorityUtils.createAuthorityList("ROLE_user");
        PasswordEncoder encoder = PasswordEncoderFactories.createDelegatingPasswordEncoder();
        BCryptPasswordEncoder passwordEncoder = new BCryptPasswordEncoder();
        log.info("==================================================================================");
        log.info("加密后{}验证{}",passwordEncoder.encode(userAccount.getPassword()));
        //true
        log.info("{}",passwordEncoder.matches(userAccount.getPassword(), passwordEncoder.encode(userAccount.getPassword())));
        log.info("加密后{}验证{}",encoder.encode(userAccount.getPassword()));
        //false
        log.info("{}", passwordEncoder.matches(userAccount.getPassword(), encoder.encode(userAccount.getPassword())));

        //使用 PasswordEncoderFactories.createDelegatingPasswordEncoder(); 会在加密后的字符串前加{加密器类型}
        //如果在config中提前指定了加密类型,则不需要再加{类型},直接使用 BCryptPasswordEncoder加密 就行
        return new User(userAccount.getName(),passwordEncoder.encode(userAccount.getPassword()), u);
    }
}
posted @ 2023-04-11 16:38  钟音城  阅读(28)  评论(0)    收藏  举报