GitHub
UncleCatMySelf/myself-security
前言
大致简介项目主要逐步迭代讲解Spring Security + Spring Social + Spring Security OAuth + REST服务开发,通过实际的案例开发来讲解,项目注解详细适合作为教程案例,同时对代码的演进还有重构也会有对应的推文讲解!
什么是登录与账户安全!?
大多数初级的程序员可能理解的比较简单,即普通的表单登录,数据查询等等,但是真正的企业登录权限系统是如何的呢?现在大多数主流的权限系统一般都是使用Spring Security了,而我们的主题也是它,让我们来深入了解这个权限框架吧!
项目搭建
首先是项目的目录,项目采用Maven多模块模式开发。
1、Myself-security:主模块(pom)
2、Myself-security-core:核心业务逻辑(jar)
3、Myself-security-browser:浏览器安全特定代码(jar)
4、Myself-security-app:app相关特定代码(jar)
5、Myself-security-demo:样例程序(jar)
相关Pom文件
让我们来了解项目的主模块的pom文件,这个的packaging要选择为pom形式,我们选择引入Spring IO来控制版本,还有配置Maven插件,具体如下
4.0.0
com.myself.security
myself-security
1.0-SNAPSHOT
pom
1.0-SNAPSHOT
io.spring.platform
platform-bom
Cairo-SR4
pom
import
org.springframework.cloud
spring-cloud-dependencies
Finchley.SR1
pom
import
org.apache.maven.plugins
maven-compiler-plugin
3.7.0
1.8
1.8
UTF-8
../myselfsecuritycore
../myselfsecuritydemo
../myselfsecuritybrowser
../myselfsecurityapp
接下来是core的核心组件,这一块的代码较多,我中间部分就省略了,具体可以去GitHub查看
myself-security
com.myself.security
1.0-SNAPSHOT
../myselfsecurity
4.0.0
myself-security-core
org.springframework.cloud
spring-cloud-starter-oauth2
...
...
而app模块是针对App的权限,这一块只要引入core组件即可
myself-security
com.myself.security
1.0-SNAPSHOT
../myselfsecurity
4.0.0
myself-security-app
com.myself.security
myself-security-core
${myself.security.version}
对于browser浏览器模块,则需要加Session集群管理,由于app是使用token,而浏览器则是session
myself-security
com.myself.security
1.0-SNAPSHOT
../myselfsecurity
4.0.0
myself-security-browser
com.myself.security
myself-security-core
${myself.security.version}
org.springframework.session
spring-session
1.3.3.RELEASE
demo组件是我们的代码测试区,还有功能实现测试,我们暂时先引用browser模块。
myself-security
com.myself.security
1.0-SNAPSHOT
../myselfsecurity
4.0.0
myself-security-demo
com.myself.security
myself-security-browser
${myself.security.version}
org.springframework.boot
spring-boot-starter-test
org.springframework.boot
spring-boot-maven-plugin
2.0.5.RELEASE
repackage
demo
启动类
接下来我们要编写启动类,我使用了Swagger插件,还有初始化时我们先移除Security的登录验证,当然yml配置文件也要先关了Session管理
package com.myself;
import org.springframework.boot.SpringApplication;
import org.springframework.boot.autoconfigure.EnableAutoConfiguration;
import org.springframework.boot.autoconfigure.SpringBootApplication;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.RestController;
import springfox.documentation.swagger2.annotations.EnableSwagger2;
/**
* @author MySelf
* @create 2018/9/15
* @desc Demo SpringBoot 启动类
**/
@SpringBootApplication
@RestController
@EnableSwagger2
@EnableAutoConfiguration(exclude = {
org.springframework.boot.autoconfigure.security.servlet.SecurityAutoConfiguration.class
})
public class DemoApplication {
/**
* 启动类
* @param args {@link String}
*/
public static void main(String[] args) {
SpringApplication.run(DemoApplication.class,args);
}
/**
* 初始化创建接口服务
* @return {@link String}
*/
@GetMapping("/hello")
public String hello(){
return "Hello Spring Security";
}
}
结尾
好了,运行项目,我们就可以看到初始化成功的项目啦!
如果本文对你有帮助,欢迎关注个人技术公众号,谢谢。