MyRealm.java example

Explorer

songjhh_blog-master
- src
  - main
    - java
      - cn
        songjhh
        project
        controller
        AdminController.java
        BlogController.java
        HomeController.java
        UserController.java
        converter
        CustomDataConverter.java
        exception
        CustomExceptionResolver.java
        mapper
        blog
        BlogMapper.java
        user
        PermissionMapper.java
        PermissionRoleMapper.java
        RoleMapper.java
        UserCustomMapper.java
        UserMapper.java
        UserRoleMapper.java
        po
        blog
        Blog.java
        BlogExample.java
        user
        Permission.java
        PermissionExample.java
        PermissionRole.java
        PermissionRoleExample.java
        Role.java
        RoleExample.java
        User.java
        UserCustom.java
        UserExample.java
        UserQueryVo.java
        UserRole.java
        UserRoleExample.java
        realm
        MyRealm.java
        service
        BlogService.java
        UserService.java
        impl
        BlogServiceImpl.java
        UserServiceImpl.java
        shiro
        CustomShiroSessionDAO.java
        filter
        kickoutSessionControlFilter.java
        listenter
        CustomSessionListener.java
        util
        CryptographyUtil.java
        RetryLimitHashedCredentialsMatcher.java

package cn.songjhh.project.realm;

import cn.songjhh.project.po.user.UserCustom;
import cn.songjhh.project.service.UserService;
import org.apache.shiro.authc.*;
import org.apache.shiro.authz.AuthorizationInfo;
import org.apache.shiro.authz.SimpleAuthorizationInfo;
import org.apache.shiro.realm.AuthorizingRealm;
import org.apache.shiro.subject.PrincipalCollection;
import org.apache.shiro.util.ByteSource;
import org.springframework.beans.factory.annotation.Autowired;

/**
 * Created by song9 on 2016/12/29.
 */
public class MyRealm extends AuthorizingRealm {

    @Autowired
    private UserService userService;

    @Override
    protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principals) {
        String userName=(String)principals.getPrimaryPrincipal();
        SimpleAuthorizationInfo authorizationInfo=new SimpleAuthorizationInfo();
        authorizationInfo.setRoles(userService.getRolesByUserName(userName));
        authorizationInfo.setStringPermissions(userService.getPermissionsByUserName(userName));
        return authorizationInfo;
    }

    @Override
    protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken token) throws AuthenticationException {
        String userName=(String)token.getPrincipal();
        UserCustom userCustom= userService.getByUserName(userName);
        if(userCustom == null) {
            throw new UnknownAccountException();
        }
        if(Boolean.TRUE.equals(userCustom.getLocked())) {
            throw new LockedAccountException();
        }
        SimpleAuthenticationInfo authcInfo=new SimpleAuthenticationInfo(userCustom.getUsername(),userCustom.getPassword(),"realm");
        authcInfo.setCredentialsSalt(ByteSource.Util.bytes(userCustom.getUsername()+userCustom.getSalt()));
        return authcInfo;
    }
}