Home > Developer > Java

Learn shiro permission framework (Day 2), learn shiro

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

Learn shiro permission framework (Day 2), learn shiro
Shiro certification Entry Program shiro-first.ini

Use this configuration file to create a securityManager factory.

 

You need to modify the eclipse ini Editor:

Entry Program code

Java code
  1. // User login and exit
  2. @ Test
  3. Public void testLoginAndLogout (){
  5. // Create a securityManager factory and create a securityManager factory through the ini configuration file
  6. Factory <SecurityManager> factory = new IniSecurityManagerFactory (
  7. "Classpath: shiro-first.ini ");
  9. // Create a SecurityManager
  10. SecurityManager securityManager = factory. getInstance ();
  12. // Set securityManager to the current running environment
  13. SecurityUtils. setSecurityManager (securityManager );
  15. // Create a subject from SecurityUtils
  16. Subject subject = SecurityUtils. getSubject ();
  18. // Prepare the token (token) before the authentication is submitted)
  19. UsernamePasswordToken token = new UsernamePasswordToken ("zhangsan", "111111 ");
  21. Try {
  22. // Perform authentication submission
  23. Subject. login (token );
  24. } Catch (AuthenticationException e ){
  25. // TODO Auto-generated catch block
  26. E. printStackTrace ();
  27. }
  29. // Whether the authentication is successful
  30. Boolean isAuthenticated = subject. isAuthenticated ();
  32. System. out. println ("authenticated:" + isAuthenticated );
  34. // Exit the operation
  35. Subject. logout ();
  37. // Whether the authentication is successful
  38. IsAuthenticated = subject. isAuthenticated ();
  40. System. out. println ("authenticated:" + isAuthenticated );
  44. }
// Log on to and exit @ Testpublic void testLoginAndLogout () {// create a securityManager Factory and create a securityManager factory using the ini configuration file <SecurityManager> Factory = new IniSecurityManagerFactory ("classpath: shiro-first.ini "); // create SecurityManagerSecurityManager securityManager = factory. getInstance (); // set securityManager to SecurityUtils in the current running environment. setSecurityManager (securityManager); // create a subjectSubject subject = SecurityUtils from SecurityUtils. getSubject (); // prepare the token (token) UsernamePasswordToken token = new UsernamePasswordToken ("zhangsan", "111111") before the authentication is submitted; try {// execute the authentication to submit the subject. login (token);} catch (AuthenticationException e) {// TODO Auto-generated catch blocke. printStackTrace ();} // whether to pass the boolean isAuthenticated = subject. isAuthenticated (); System. out. println ("authenticated:" + isAuthenticated); // exit subject. logout (); // whether to pass isAuthenticated = subject. isAuthenticated (); System. out. println ("authenticated:" + isAuthenticated );}

Execution Process

Java code
  1. 1. Create a securityManager using the ini configuration file
  2. 2. Call the subject. login method to submit the token for authentication.
  3. 3. securityManager authenticates, and securityManager authenticates by ModularRealmAuthenticator.
  4. 4. ModularRealmAuthenticator calls IniRealm (to pass a token to realm) to query user information in the ini configuration file.
  5. 5. IniRealm queries user information from the shiro-first.ini based on the input token (UsernamePasswordToken), according to the account query user information (account and password)
  6. If user information is queried, ModularRealmAuthenticator is returned with the user information (account and password)
  7. If the query fails, return null to ModularRealmAuthenticator.
  8. 6. ModularRealmAuthenticator receives IniRealm and returns Authentication information.
  9. If the returned authentication information is null, ModularRealmAuthenticator throws an exception (org. apache. shiro. authc. UnknownAccountException)
  11. If the returned authentication information is not null (inirealm finds the user), compare the password returned by IniRealm (which exists in the INIFILE) with the password in the token. If it is inconsistent, an exception is thrown (org. apache. shiro. authc. incorrectCredentialsException)
1. Create securityManager2 in the ini configuration file, call the subject. login method to submit the authentication, and submit token3 and securityManager for authentication. securityManager is finally authenticated by ModularRealmAuthenticator. 4. ModularRealmAuthenticator calls IniRealm (pass in token to realm) to query user information in the ini configuration file. 5. IniRealm queries user information from the shiro-first.ini according to the input token (UsernamePasswordToken, query user information (account and password) based on the account. If user information is found, return the user information (account and password) to ModularRealmAuthenticator. If no user information is found, modularRealmAuthenticator returns null6 and ModularRealmAuthenticator receives IniRealm and Authentication information. If the returned Authentication information is null, ModularRealmAuthenticator throws an exception (org. apache. shiro. authc. unknownAccountException) if the returned authentication information is not null (indicating that inirealm has found the user), compare the password returned by IniRealm (which exists in the INIFILE) with the password in the token, if they are inconsistent, an exception is thrown (org. apache. shiro. authc. incorrectCredentialsException)

Summary

Java code
  1. ModularRealmAuthenticator is used for authentication. You need to call realm to query user information (user information exists in the Database)
  2. ModularRealmAuthenticator compares passwords (authentication process ).
  4. Realm: the database needs to be queried based on the identity information in the token (the ini configuration file is used in the Getting Started Program). If the user returns the authentication information, if the query fails, null is returned.
ModularRealmAuthenticator for authentication. You need to call realm to query user information (user information exists in the Database) ModularRealmAuthenticator for password comparison (authentication process ). Realm: the database needs to be queried based on the identity information in the token (the ini configuration file is used in the Getting Started Program). If the user returns the authentication information, if the query fails, null is returned.

 

 

Java enterprise-level general permission security framework source code SpringMVC mybatis or hibernate + ehcache shiro druid bootstrap HTML5

[Download java framework source code]

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
learn angularjs in day apache shiro example web application easy to learn php framework learn angular 2 learn c# in one day and learn pdf php framework is easy to learn how to learn spring framework quickly
Related Article
Java's garbage collection mechanism

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More