Java课程实验 Spring Security 实现用户认证和授权管理

package as.lwl.config; import org.springframework.amqp.core.AmqpAdmin; import org.springframework.amqp.core.Binding; import org.springframework.amqp.core.FanoutExchange; import org.springframework.amqp.core.Queue; import org.springframework.amqp.rabbit.core.RabbitTemplate; import org.springframework.beans.factory.annotation.Autowired; import org.springframework.context.annotation.Configuration; import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder; import org.springframework.security.config.annotation.web.builders.HttpSecurity; import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity; import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter; import org.springframework.security.core.Authentication; import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder; import org.springframework.security.web.authentication.AuthenticationSuccessHandler; import javax.servlet.ServletException; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse; import java.io.IOException; @Configuration @EnableWebSecurity public class SecurityConfig extends WebSecurityConfigurerAdapter { @Override //负责接收用户名和密码 protected void configure(HttpSecurity httpSecurity) throws Exception { //开启请求访问的限制 对URL进行授权 httpSecurity.authorizeRequests() .antMatchers("/login/**").permitAll() //放行login页面所需的CSS图片 .antMatchers("/detail/common/**").hasRole("common") //需要common角色 .antMatchers("/detail/vip/**").hasRole("vip") //需要common角色 .anyRequest().authenticated(); //指定登录页面 httpSecurity.formLogin() .loginPage("/userLogin").permitAll() .usernameParameter("name") .passwordParameter("pwd") .successHandler(new AuthenticationSuccessHandler() { @Override public void onAuthenticationSuccess(HttpServletRequest httpServletRequest, HttpServletResponse httpServletResponse, Authentication authentication) throws IOException, ServletException { rabbitTemplate.convertAndSend("fanout_exchange","",httpServletRequest.getParameter("name")+"用户登录成功！"); } }) .defaultSuccessUrl("/") .failureUrl("/userLogin?error") .failureHandler((req,resp,authentication)->{ rabbitTemplate.convertAndSend("fanout_exchange","",req.getParameter("name")+"用户登录失败！"); }); //注销页面 httpSecurity.logout() .logoutUrl("/userLogout") .logoutSuccessUrl("/userLogin"); } @Autowired private AmqpAdmin amqpAdmin; @Autowired private RabbitTemplate rabbitTemplate; //验证用户名和密码并分配角色 @Override protected void configure(AuthenticationManagerBuilder auth) throws Exception { //调用密码加密器 BCryptPasswordEncoder bCryptPasswordEncoder = new BCryptPasswordEncoder(); auth.inMemoryAuthentication().passwordEncoder(bCryptPasswordEncoder) .withUser("123") .password(bCryptPasswordEncoder.encode("123")) .roles("common") .and() .withUser("456") .password(bCryptPasswordEncoder.encode("456")) .roles("vip"); //通过消息服务发送当前用户信息 amqpAdmin.declareExchange(new FanoutExchange("fanout_exchange")); //定义消息模型 amqpAdmin.declareQueue(new Queue("fanout_exchange_sms")); //定义消息队列的名称 amqpAdmin.declareBinding(new Binding("fanout_exchange_sms", //把消息模型，消息队列绑定 Binding.DestinationType.QUEUE,"fanout_exchange", "",null)); // rabbitTemplate.convertAndSend("fanout_exchange","","123"); } }