本篇文章我们举例说明在spring-security中利用mysql来存储用户信息和权限信息,示例采用security默认提供的DDL。
环境:
spring-boot版本:1.5.4.RELEASE
1.项目工程结构
2.配置类SecurityConfig.java
/** * */ package nariis.chengf.security.samples.javaconfig.jdbc; import javax.sql.DataSource; import org.springframework.beans.factory.annotation.Autowired; import org.springframework.context.annotation.Bean; import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder; import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity; import com.alibaba.druid.pool.DruidDataSource; /** * @author: 作者: chengaofeng * @date: 创建时间:2018-01-09 08:31:44 * @Description: TODO * @version V1.0 */ @EnableWebSecurity public class SecurityConfig { @Bean public DruidDataSource dataSource() { DruidDataSource dataSource = new DruidDataSource(); dataSource.setDriverClassName("com.mysql.jdbc.Driver"); dataSource.setUsername("root"); dataSource.setPassword("sso"); dataSource.setName("chengf"); dataSource.setUrl("jdbc:mysql://localhost:3306/chengf?useUnicode=true&characterEncoding=UTF-8"); dataSource.setMaxActive(20); dataSource.setInitialSize(1); dataSource.setMaxWait(60000); dataSource.setMinIdle(1); dataSource.setTimeBetweenEvictionRunsMillis(60000); dataSource.setMinEvictableIdleTimeMillis(300000); dataSource.setValidationQuery("select 'x'"); dataSource.setPoolPreparedStatements(true); dataSource.setMaxPoolPreparedStatementPerConnectionSize(20); return dataSource; } @Autowired public void configureGlobal(AuthenticationManagerBuilder auth, DataSource dataSource) throws Exception { auth.jdbcAuthentication().dataSource(dataSource); } }
数据源的配置用了druid。
3.数据库表结构,因为采用的是spring-security默认的ddl,所以要创建默认的user和authorities,spring 为我们提供了默认表对应的建表语句,在spring-security-core-*.jar包的org.springframework.security.core.userdetails.jdbc目录下
create table users(username varchar_ignorecase(50) not null primary key,password varchar_ignorecase(500) not null,enabled boolean not null); create table authorities (username varchar_ignorecase(50) not null,authority varchar_ignorecase(50) not null,constraint fk_authorities_users foreign key(username) references users(username)); create unique index ix_auth_username on authorities (username,authority);
实际创建时,varchar_ignorecase类型时没有的,改成varchar即可
4.接着插入我们测试用的数据
5.启动类SecurityJdbcApp.java
package nariis.chengf.security.samples.javaconfig.jdbc; import org.springframework.boot.SpringApplication; import org.springframework.boot.autoconfigure.SpringBootApplication; /** * Hello world! * */ @SpringBootApplication public class SecurityJdbcApp { public static void main( String[] args ) { SpringApplication.run(SecurityJdbcApp.class, args); } }
6.项目的pom.xml
4.0.0 nariis.chengf security-samples-javaconfig-jdbc 0.0.1-SNAPSHOT jar security-samples-javaconfig-jdbc http://maven.apache.org UTF-8 org.springframework.boot spring-boot-starter-parent 1.5.4.RELEASE pom import junit junit test org.springframework.boot spring-boot-starter-web org.springframework.security spring-security-config org.springframework.security spring-security-web org.springframework spring-jdbc mysql mysql-connector-java runtime com.alibaba druid 1.0.27 org.springframework.boot spring-boot-maven-plugin repackage ${start-class}
7.index.html代码
Static hello jdbc!
8.启动项目
选中启动类,选择Run As -> Java Application
启动后在浏览器中输入 http://localhot:8080/index.html,如果一切正常,我们会被重定向到login页面,输入我们插入库中的测试用户名和密码
点击login后就会重定向到index.html页面
到此,我们jdbc的简单示例就完成了。后续我们还会进一步探讨采用jdbc来做认证存储,包括自定义数据表结构,用户权限继承等等功能。
下载源码