dsfsefesfsffsfsfsfsfesfsfsfsfsfsfspackage realm;

 

import java.util.ArrayList;

import java.util.List;

 

import org.apache.commons.lang3.builder.ReflectionToStringBuilder;

import org.apache.commons.lang3.builder.ToStringStyle;

import org.apache.shiro.SecurityUtils;

import org.apache.shiro.authc.AuthenticationException;

import org.apache.shiro.authc.AuthenticationInfo;

import org.apache.shiro.authc.AuthenticationToken;

import org.apache.shiro.authc.SimpleAuthenticationInfo;

import org.apache.shiro.authc.UsernamePasswordToken;

import org.apache.shiro.authz.AuthorizationException;

import org.apache.shiro.authz.AuthorizationInfo;

import org.apache.shiro.authz.SimpleAuthorizationInfo;

import org.apache.shiro.realm.AuthorizingRealm;

import org.apache.shiro.session.Session;

import org.apache.shiro.subject.PrincipalCollection;

import org.apache.shiro.subject.Subject;

import org.springframework.beans.factory.annotation.Autowired;

 

import utils.StrUtils;

 

import com.jxzg.mvc.web.entitys.user.Role;

import com.jxzg.mvc.web.entitys.user.RoleRight;

import com.jxzg.mvc.web.entitys.user.User;

import com.jxzg.mvc.web.service.user.IUserManager;

 

public class MyRealm extends AuthorizingRealm {

 

    @Autowired

    private IUserManager userManager;

 

    /**

     * 为当前登录的Subject授予角色和权限

     * @see 经测试:本例中该方法的调用时机为用户登录后,被调用

     */

    @Override

    protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principals) {

        // 获取当前登录的用户名,等价于(String)principals.fromRealm(this.getName()).iterator().next()

        String currentUsername = (String) super.getAvailablePrincipal(principals);

        List<String> roleList = new ArrayList<String>();

        List<String> permissionList = new ArrayList<String>();

        // 从数据库中获取当前登录用户的详细信息

        User user = userManager.getByUsername(currentUsername);

        if (null != user) {

            // 实体类User中包含有用户角色的实体类信息

            if (null != user.getRole()) {

                // 获取当前登录用户的角色

                Role role = user.getRole();

                roleList.add(role.getName());

                //如果是超级管理员直接赋予所有权限

                if(role.getName().equals("admin")){

                    permissionList.add("user");

                    permissionList.add("school");

                }

                

                else{

                    // 实体类Role中包含有角色权限的实体类信息

                    if (null != role.getRights() && role.getRights().size() > 0) {

                        // 获取权限

                        for (RoleRight pmss : role.getRights()) {

                            if(pmss.isFlag()){

                                if (!StrUtils.isNullOrEmpty(pmss.getRight())) {

                                    permissionList.add(pmss.getRight().getName());

                                }

                            }

                        }

                    }

                }

            }

        } else {

            throw new AuthorizationException();

        }

        // 为当前用户设置角色和权限

        SimpleAuthorizationInfo simpleAuthorInfo = new SimpleAuthorizationInfo();

        simpleAuthorInfo.addRoles(roleList);

        simpleAuthorInfo.addStringPermissions(permissionList);

        return simpleAuthorInfo;

    }

 

    /**

     * 验证当前登录的Subject

     * @see 经测试:本例中该方法的调用时机为LoginController.login()方法中执行Subject.login()时

     */

    @Override

    protected AuthenticationInfo doGetAuthenticationInfo(

            AuthenticationToken authcToken) throws AuthenticationException {

        // 获取基于用户名和密码的令牌

        // 实际上这个authcToken是从LoginController里面currentUser.login(token)传过来的

        // 两个token的引用都是一样的

        UsernamePasswordToken token = (UsernamePasswordToken) authcToken;

        System.out.println("验证当前Subject时获取到token为"

                + ReflectionToStringBuilder.toString(token,

                        ToStringStyle.MULTI_LINE_STYLE));

        User user = userManager.getByUsername(token.getUsername());

        if (null != user) {

            AuthenticationInfo authcInfo = new SimpleAuthenticationInfo(

                    user.getUserName(), user.getPass(), user.getNickName());

            this.setSession("currentUser", user);

            return authcInfo;

        } else {

            return null;

        }

    }

 

    /**

     * 将一些数据放到ShiroSession中,以便于其它地方使用

     * @see 比如Controller,使用时直接用HttpSession.getAttribute(key)就可以取到

     */

    private void setSession(Object key, Object value) {

        Subject currentUser = SecurityUtils.getSubject();

        if (null != currentUser) {

            Session session = currentUser.getSession();

            if (null != session) {

                session.setAttribute(key, value);

            }

        }

    }

 

}

hahahahah的更多相关文章

  1. appium 滑动

    前些日子,配置好了appium测试环境,至于环境怎么搭建,参考:http://www.cnblogs.com/tobecrazy/p/4562199.html   知乎Android客户端登陆:htt ...

  2. appium实现截图和清空EditText

    前些日子,配置好了appium测试环境,至于环境怎么搭建,参考:http://www.cnblogs.com/tobecrazy/p/4562199.html   知乎Android客户端登陆:htt ...

  3. python学习道路(day8note)(抽象类,类的方法,异常处理,socket编程)

    1.#面向对象 #抽象接口 === 抽象类 #就是架构师给你一个架子,你们去写,如果满足不了直接报错 #python2 print("python2---抽象类".center(2 ...

  4. python初学day01

    1.执行Python脚本时打印的字符有颜色 1. print "\033[32;1mhello\033[0m" #打印绿色 2. print "\033[31;1mhel ...

  5. spring aop advice

    1.前置通知(BeforeAdvice): import java.lang.reflect.Method; import org.springframework.aop.MethodBeforeAd ...

  6. python基础篇-day1

    python基础篇 python是由C语言写的: pass 占位符: del,python中全局的功能,删除内存中的数据: 变量赋值的方法: user,pass = 'freddy','freddy1 ...

  7. Flume笔记--示例(使用配置文件)

    例子参考资料:http://www.aboutyun.com/thread-8917-1-1.html 自定义sink实现和属性注入:http://www.coderli.com/flume-ng-s ...

  8. 【Python&Sort】QuickSort

    Python版的快排,使用递归. 1.设置递归终止条件,当元素个数<1时 2.从列表中pop出一个元素pv 3.列表中的剩余值与pv进行对比,大的放入smaller列表,小的放入larger列表 ...

  9. 点击盒子选中里面的单选框,并给盒子添加相应样式,美化单选框、复选框样式css用法,响应式滴

    pc效果图: 移动端效果图: 代码直接上: <!DOCTYPE html> <html> <head> <meta http-equiv="Cont ...

随机推荐

  1. UVA 10003 Cutting Sticks 切木棍 dp

    题意:把一根木棍按给定的n个点切下去,每次切的花费为切的那段木棍的长度,求最小花费. 这题出在dp入门这边,但是我看完题后有强烈的既是感,这不是以前做过的石子合并的题目变形吗? 题目其实就是把n+1根 ...

  2. Struts2 一、 视图转发跳转

    <struts> <constant name="struts.118n.encoding" value="UTF-8"></co ...

  3. docker制作node程序镜像:

    准备: 需要5个文件 新建一个docker文件夹 1 .ignore git忽略文件用的 2 pakage.json 安装NODE程序的 也可以直接拷贝进 docker文件加 3 node环境 lin ...

  4. 如何在TableView上添加悬浮按钮

    如果直接在TableVIewController上贴Button的话会导致这个会随之滚动,下面解决在TableView上实现位置固定悬浮按钮的两种方法: 1.在view上贴tableView,然后将悬 ...

  5. skiing(搜索+记忆化搜索)

    skiing 时间限制:3000 ms  |  内存限制:65535 KB 难度:5   描述 Michael喜欢滑雪百这并不奇怪, 因为滑雪的确很刺激.可是为了获得速度,滑的区域必须向下倾斜,而且当 ...

  6. mount CIFS return ERR -12 and report Cannot allocate memory

    When I mount CIFS on board, it encountered error as below: # mount -t cifs //192.168.1.28/98share /t ...

  7. dog-fooding-our-api-authentication

    Dog-fooding our API - Authentication http://blog.mirajavora.com/authenticate-web-api-using-access-to ...

  8. [原理][来源解析]spring于@Transactional,Propagation.SUPPORTS,以及 Hibernate Session,以及jdbc Connection关联

    Spring 捆绑Hibernate. 夹: 一.  1. Spring 怎样处理propagation=Propagation.SUPPORTS? 2. Spring 何时生成HibernateSe ...

  9. MVC5 Controller简要创建过程(2):由ControllerFactory创建Controller

    上文已经完成了ControllerFactory的创建,接下来就是调用其CreateController()方法创建Controller了. DefaultControllerFactory中Crea ...

  10. Fix The thread xxx has exited with code 259 (0×103)

    When run the test case in VS2013, you may encounter below problem After test case end, it will show ...