default
/
java-sevice-demo
Watch 9
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
2 Commits
1 Branch
Tree: 85e79d4ed5
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '85e79d4ed5'
${ noResults }
java-sevice-demo/src/main/java/com/yunzhi/demo/shiro/ShiroConfig.java

ShiroConfig.java 2.7KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576 
  1. package com.yunzhi.demo.shiro;

  2. 

  3. import com.yunzhi.demo.shiro.filters.JWTFilter;

  4. import com.yunzhi.demo.shiro.matcher.JWTCredentialsMatcher;

  5. import com.yunzhi.demo.shiro.realms.manager.IManagerService;

  6. import com.yunzhi.demo.shiro.realms.manager.ManagerRealm;

  7. import org.apache.shiro.mgt.DefaultSessionStorageEvaluator;

  8. import org.apache.shiro.mgt.DefaultSubjectDAO;

  9. import org.apache.shiro.spring.web.ShiroFilterFactoryBean;

  10. import org.apache.shiro.web.mgt.DefaultWebSecurityManager;

  11. import org.springframework.beans.factory.annotation.Autowired;

  12. import org.springframework.beans.factory.annotation.Value;

  13. import org.springframework.context.annotation.Bean;

  14. import org.springframework.context.annotation.Configuration;

  15. 

  16. import javax.servlet.Filter;

  17. import java.util.HashMap;

  18. import java.util.Map;

  19. 

  20. @Configuration

  21. public class ShiroConfig {

  22. 

  23.     @Autowired

  24.     IManagerService iManagerService;

  25. 

  26.     @Value("${shiro.unauthorizedUrl}")

  27.     private String unauthorizedUrl;

  28. 

  29.     @Value("#{${shiro.filterRuleMap}}")

  30.     private Map<String, String> filterRuleMap;

  31. 

  32.     @Bean

  33.     public ManagerRealm managerRealm() {

  34.         ManagerRealm realm = new ManagerRealm();

  35.         realm.setManagerService(iManagerService);

  36.         realm.setCredentialsMatcher(new JWTCredentialsMatcher());

  37.         return realm;

  38.     }

  39. 

  40.     @Bean("shiroFilterFactoryBean")

  41.     public ShiroFilterFactoryBean factory(DefaultWebSecurityManager securityManager) {

  42.         ShiroFilterFactoryBean factoryBean = new ShiroFilterFactoryBean();

  43. 

  44.         // 手动加入 JWTFilter

  45.         JWTFilter jwtFilter = new JWTFilter();

  46.         jwtFilter.setUnauthorizedUrl(unauthorizedUrl);

  47. 

  48.         Map<String, Filter> filterMap = new HashMap<>();

  49.         filterMap.put("jwt", jwtFilter);

  50.         factoryBean.setFilters(filterMap);

  51. 

  52.         factoryBean.setSecurityManager(securityManager);

  53.         factoryBean.setUnauthorizedUrl(unauthorizedUrl);

  54. 

  55.         factoryBean.setFilterChainDefinitionMap(filterRuleMap);

  56.         return factoryBean;

  57.     }

  58. 

  59.     @Bean("securityManager")

  60.     public DefaultWebSecurityManager securityManager() {

  61.         DefaultWebSecurityManager manager = new DefaultWebSecurityManager();

  62.         //  Use your own realm

  63.         manager.setRealm(managerRealm());

  64. 

  65.         /*

  66.          * 禁用 session

  67.          */

  68.         DefaultSubjectDAO subjectDAO = new DefaultSubjectDAO();

  69.         DefaultSessionStorageEvaluator defaultSessionStorageEvaluator = new DefaultSessionStorageEvaluator();

  70.         defaultSessionStorageEvaluator.setSessionStorageEnabled(false);

  71.         subjectDAO.setSessionStorageEvaluator(defaultSessionStorageEvaluator);

  72.         manager.setSubjectDAO(subjectDAO);

  73. 

  74.         return manager;

  75.     }

  76. }