Package net.mingsoft.config
Class ShiroConfig
java.lang.Object
net.mingsoft.config.ShiroConfig
-
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionorg.springframework.aop.framework.autoproxy.DefaultAdvisorAutoProxyCreator开启Shiro的注解(如@RequiresRoles , @RequiresPermissions),需借助SspringAOP扫描使用Sshiro注解的类,并在必要时进行安全逻辑验证 配置以下两个bean(Defaul tAdvisorAutoProxyCreator和uthorizat ionAttributeSourceAdvisor)即可实现此功能org.apache.shiro.spring.security.interceptor.AuthorizationAttributeSourceAdvisorauthorizationAttributeSourceAdvisor(org.apache.shiro.mgt.SecurityManager securityManager) 开启shiro aop注解支持 使用代理方式;所以需要开启代码支持自定义身份认证 realm;org.apache.shiro.web.session.mgt.DefaultWebSessionManager重写defaultWebSessionManager,防止url拼接jsessionidorg.apache.shiro.spring.security.interceptor.AuthorizationAttributeSourceAdvisorgetAuthorizationAttributeSourceAdvisor(org.apache.shiro.web.mgt.DefaultWebSecurityManager securityManager) org.springframework.aop.framework.autoproxy.DefaultAdvisorAutoProxyCreatororg.apache.shiro.session.mgt.eis.MemorySessionDAOorg.apache.shiro.web.servlet.SimpleCookie管理登录策略管理员菜单策略org.apache.shiro.web.servlet.SimpleCookiecookie对象org.apache.shiro.web.mgt.CookieRememberMeManagercookie管理对象org.apache.shiro.web.mgt.DefaultWebSecurityManagersecurityManager(org.apache.shiro.web.session.mgt.DefaultWebSessionManager sessionManager) 注入 securityManagerorg.apache.shiro.spring.web.ShiroFilterFactoryBeanshirFilter(org.apache.shiro.mgt.SecurityManager securityManager)
-
Constructor Details
-
ShiroConfig
public ShiroConfig()
-
-
Method Details
-
advisorAutoProxyCreator
@Bean public org.springframework.aop.framework.autoproxy.DefaultAdvisorAutoProxyCreator advisorAutoProxyCreator()开启Shiro的注解(如@RequiresRoles , @RequiresPermissions),需借助SspringAOP扫描使用Sshiro注解的类,并在必要时进行安全逻辑验证 配置以下两个bean(Defaul tAdvisorAutoProxyCreator和uthorizat ionAttributeSourceAdvisor)即可实现此功能 -
authorizationAttributeSourceAdvisor
@Bean public org.apache.shiro.spring.security.interceptor.AuthorizationAttributeSourceAdvisor authorizationAttributeSourceAdvisor(org.apache.shiro.mgt.SecurityManager securityManager) 开启shiro aop注解支持 使用代理方式;所以需要开启代码支持- Parameters:
securityManager-
-
getAuthorizationAttributeSourceAdvisor
@Bean public org.apache.shiro.spring.security.interceptor.AuthorizationAttributeSourceAdvisor getAuthorizationAttributeSourceAdvisor(@Autowired(required=false) org.apache.shiro.web.mgt.DefaultWebSecurityManager securityManager) -
getDefaultAdvisorAutoProxyCreator
@Bean public org.springframework.aop.framework.autoproxy.DefaultAdvisorAutoProxyCreator getDefaultAdvisorAutoProxyCreator() -
shirFilter
@Bean(name="shiroFilterFactoryBean") public org.apache.shiro.spring.web.ShiroFilterFactoryBean shirFilter(org.apache.shiro.mgt.SecurityManager securityManager) -
securityManager
@Bean("securityManager") public org.apache.shiro.web.mgt.DefaultWebSecurityManager securityManager(org.apache.shiro.web.session.mgt.DefaultWebSessionManager sessionManager) 注入 securityManager -
defaultWebSessionManager
@Bean public org.apache.shiro.web.session.mgt.DefaultWebSessionManager defaultWebSessionManager()重写defaultWebSessionManager,防止url拼接jsessionid- Returns:
-
rememberMeCookie
public org.apache.shiro.web.servlet.SimpleCookie rememberMeCookie()cookie对象- Returns:
-
rememberMeManager
public org.apache.shiro.web.mgt.CookieRememberMeManager rememberMeManager()cookie管理对象- Returns:
-
getMemorySessionDAO
@Bean public org.apache.shiro.session.mgt.eis.MemorySessionDAO getMemorySessionDAO() -
getSimpleCookie
@Bean public org.apache.shiro.web.servlet.SimpleCookie getSimpleCookie() -
customRealm
自定义身份认证 realm;必须写这个类,并加上 @Bean 注解,目的是注入 CustomRealm, 否则会影响 CustomRealm类 中其他类的依赖注入
-
modelStrategy
管理员菜单策略- Returns:
-
loginStrategy
管理登录策略- Returns:
-