com.xbwl.demo.service.account.ShiroDbRealm.java Source code

Java tutorial

  1. HOME
  2. Java
  3. com.xbwl.demo.service.account.ShiroDbRealm.java

Introduction

Here is the source code for com.xbwl.demo.service.account.ShiroDbRealm.java

Source

/*******************************************************************************
 * Copyright (c) 2005, 2014 springside.github.io
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 *******************************************************************************/
package com.xbwl.demo.service.account;

import java.io.Serializable;
import java.util.ArrayList;
import java.util.List;

import javax.annotation.PostConstruct;

import org.apache.commons.lang3.StringUtils;
import org.apache.shiro.authc.AuthenticationException;
import org.apache.shiro.authc.AuthenticationInfo;
import org.apache.shiro.authc.AuthenticationToken;
import org.apache.shiro.authc.SimpleAuthenticationInfo;
import org.apache.shiro.authc.UsernamePasswordToken;
import org.apache.shiro.authc.credential.HashedCredentialsMatcher;
import org.apache.shiro.authz.AuthorizationInfo;
import org.apache.shiro.authz.SimpleAuthorizationInfo;
import org.apache.shiro.realm.AuthorizingRealm;
import org.apache.shiro.subject.PrincipalCollection;
import org.apache.shiro.util.ByteSource;
import org.springside.modules.utils.Encodes;

import com.google.common.base.Objects;
import com.google.common.collect.ImmutableList;
import com.xbwl.demo.entity.User;
import com.xbwl.demo.entity.permission.Permission;
import com.xbwl.demo.service.permission.PermissionService;

public class ShiroDbRealm extends AuthorizingRealm {

    protected AccountService accountService;

    protected PermissionService permissionService;

    /**
     * ?,.
     */
    @Override
    protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken authcToken)
            throws AuthenticationException {
        UsernamePasswordToken token = (UsernamePasswordToken) authcToken;
        User user = accountService.findUserByLoginName(token.getUsername());
        if (user != null) {
            byte[] salt = Encodes.decodeHex(user.getSalt());
            return new SimpleAuthenticationInfo(new ShiroUser(user.getId(), user.getLoginName(), user.getName(),
                    user.getRoles(), user.getRoleCode()), user.getPassword(), ByteSource.Util.bytes(salt),
                    getName());
        } else {
            return null;
        }
    }

    /**
     * ?, ???.
     */
    @Override
    protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principals) {
        List<String> permissions = new ArrayList<String>();
        ShiroUser shiroUser = (ShiroUser) principals.getPrimaryPrincipal();
        User user = accountService.findUserByLoginName(shiroUser.loginName);
        SimpleAuthorizationInfo info = new SimpleAuthorizationInfo();
        info.addRoles(ImmutableList.copyOf(StringUtils.split(user.getRoleCode(), ",")));
        if (!"admin".equals(shiroUser.roleCode)) {
            List<Permission> btnList = permissionService.findBtnByRoleId(shiroUser.roleId);
            if (btnList != null && btnList.size() > 0) {
                for (int i = 0; i < btnList.size(); i++) {
                    String btnCode = btnList.get(i).getResCode();
                    permissions.add(btnCode);
                }
            }
            info.addStringPermissions(permissions);
        }
        return info;
    }

    /**
     * PasswordHash.
     */
    @PostConstruct
    public void initCredentialsMatcher() {
        HashedCredentialsMatcher matcher = new HashedCredentialsMatcher(AccountService.HASH_ALGORITHM);
        matcher.setHashIterations(AccountService.HASH_INTERATIONS);

        setCredentialsMatcher(matcher);
    }

    public void setAccountService(AccountService accountService) {
        this.accountService = accountService;
    }

    public void setPermissionService(PermissionService permissionService) {
        this.permissionService = permissionService;
    }

    /**
    * AuthenticationSubject??????.
    */
    public static class ShiroUser implements Serializable {
        private static final long serialVersionUID = -1373760761780840081L;
        public Long id;
        public String loginName;
        public String name;
        public Long roleId;
        public String roleCode;

        public ShiroUser(Long id, String loginName, String name, Long roleId, String roleCode) {
            this.id = id;
            this.loginName = loginName;
            this.name = name;
            this.roleId = roleId;
            this.roleCode = roleCode;
        }

        public String getName() {
            return name;
        }

        /**
         * <shiro:principal/>.
         */
        @Override
        public String toString() {
            return loginName;
        }

        /**
         * ?hashCode,?loginName;
         */
        @Override
        public int hashCode() {
            return Objects.hashCode(loginName);
        }

        /**
         * ?equals,?loginName;
         */
        @Override
        public boolean equals(Object obj) {
            if (this == obj) {
                return true;
            }
            if (obj == null) {
                return false;
            }
            if (getClass() != obj.getClass()) {
                return false;
            }
            ShiroUser other = (ShiroUser) obj;
            if (loginName == null) {
                if (other.loginName != null) {
                    return false;
                }
            } else if (!loginName.equals(other.loginName)) {
                return false;
            }
            return true;
        }
    }
}