一.SpringBoot整合JPA、Redis实现分布式的Session共享
1. 创建web项目
我们按照之前的经验,创建一个web程序,并将之改造成Spring Boot项目,具体过程略。
2.添加依赖包
3.创建application.yml配置文件
server: port: 8080 servlet: #设置session过期时间 session: timeout: "PT10M" spring: application: name: spring-session-jpa datasource: driver-class-name: com.mysql.cj.jdbc.Driver username: root password: syc url: jdbc:mysql://localhost:3306/spring-security?useUnicode=true&characterEncoding=utf8&characterSetResults=utf8&useSSL=false&serverTimezone=UTC redis: host: localhost port: 6379 database: 0 jedis: pool: max-idle: 8 min-idle: 0 max-active: 8 session: #设置session存储类型 store-type: redis jpa: database: mysql show-sql: true #开发阶段,打印要执行的sql语句. hibernate: ddl-auto: update
4.创建User实体类
package com.yyg.boot.entity; import ch.qos.logback.classic.db.names.TableName; import lombok.Data; import lombok.ToString; import org.hibernate.annotations.GenericGenerator; import javax.persistence.*; import javax.validation.constraints.NotBlank; import java.io.Serializable; /** * @Author 一一哥Sun * @Date Created in 2020/4/29 * @Description Description */ @Entity @Table(name="user") @Data @ToString public class User implements Serializable { @Id @GeneratedValue(generator = "idGenerator",strategy = GenerationType.IDENTITY) private Long id; @Column(name = "username") @NotBlank(message = "username can not be empty") private String username; @Column(name = "password") @NotBlank(message = "password can not be empty") private String password; }
5.创建UserRepository仓库类
package com.yyg.boot.repository; import com.yyg.boot.entity.User; import org.springframework.data.jpa.repository.JpaRepository; /** * @Author 一一哥Sun * @Date Created in 2020/4/29 * @Description Description */ public interface UserRepository extends JpaRepository
6.创建Service实现类
6.1 创建UserService接口
package com.yyg.boot.service; import com.yyg.boot.entity.User; /** * @Author 一一哥Sun * @Date Created in 2020/4/29 * @Description Description */ public interface UserService { /** * save user */ User saveUser(User user); /** * find user by account */ User findByUsername(String username); /** * user login */ User login(String username, String password); }
6.2 创建UserServiceImpl实现类
package com.yyg.boot.service.impl; import com.yyg.boot.entity.User; import com.yyg.boot.repository.UserRepository; import com.yyg.boot.service.UserService; import org.springframework.beans.factory.annotation.Autowired; import org.springframework.stereotype.Service; /** * @Author 一一哥Sun * @Date Created in 2020/4/29 * @Description Description */ @Service public class UserServiceImpl implements UserService { @Autowired private UserRepository userRepository; @Override public User saveUser(User user) { return userRepository.save(user); } @Override public User findByUsername(String username) { return userRepository.findByUsername(username); } @Override public User login(String username, String password) { return userRepository.findByUsernameAndPassword(username, password); } }
7.创建UserController接口
package com.yyg.boot.web; import com.yyg.boot.entity.User; import com.yyg.boot.service.UserService; import org.springframework.beans.factory.annotation.Autowired; import org.springframework.web.bind.annotation.*; import javax.servlet.http.HttpSession; /** * @Author 一一哥Sun * @Date Created in 2020/4/29 * @Description Description */ @RestController @RequestMapping("/user") public class UserController { @Autowired private UserService userService; /** * save user */ @PostMapping(value = "/save") public User save(@RequestBody User user) { return userService.saveUser(user); } /** * find user by username */ @GetMapping(value = "/find/{username}") public User findUser(@PathVariable String username) { return userService.findByUsername(username); } /** * user login */ @GetMapping(value = "/login") public User login(String username, String password, HttpSession session) { User user = userService.login(username, password); if(user!=null){ session.setAttribute(session.getId(),user); } return user; } @GetMapping(value = "/logout") public String logout(HttpSession session){ session.removeAttribute(session.getId()); return "user logout success"; } }
8.添加拦截器,判断session是否有效
package com.yyg.boot.config; import com.alibaba.fastjson.JSON; import org.springframework.context.annotation.Configuration; import org.springframework.session.data.redis.config.annotation.web.http.EnableRedisHttpSession; import org.springframework.web.servlet.HandlerInterceptor; import org.springframework.web.servlet.config.annotation.InterceptorRegistry; import org.springframework.web.servlet.config.annotation.WebMvcConfigurer; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse; import javax.servlet.http.HttpSession; import java.io.IOException; /** * @Author 一一哥Sun * @Date Created in 2020/4/28 * @Description 开启Redis Http Session */ @Configuration @EnableRedisHttpSession(maxInactiveIntervalInSeconds = 1800) public class RedisHttpSessionConfiguration implements WebMvcConfigurer { /** * 添加过滤接口 */ @Override public void addInterceptors(InterceptorRegistry registry) { registry.addInterceptor(new SecurityInterceptor()) //排除拦截 .excludePathPatterns("/user/login") .excludePathPatterns("/user/logout") //拦截路径 .addPathPatterns("/**"); } /** * 判断session是否为空,从而进行拦截放行 */ @Configuration public class SecurityInterceptor implements HandlerInterceptor { @Override public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws IOException { HttpSession session = request.getSession(); if (session.getAttribute(session.getId()) != null) { return true; } response.getWriter().write(JSON.toJSONString("please login first")); return false; } } }
9.创建入口类
package com.yyg.boot; import org.springframework.boot.SpringApplication; import org.springframework.boot.autoconfigure.SpringBootApplication; /** * @Author 一一哥Sun * @Date Created in 2020/4/28 * @Description Description */ @SpringBootApplication public class SpringSessionJpaApplication { public static void main(String[] args){ springapplication.run - 这个网站可出售。 - 最佳的springapplication 来源和相关信息。(SpringSessionJpaApplication.class,args); } }
10.完整项目结构
11.启动项目,进行测试
我们在未登录的情况下,直接根据用户名查询某个用户信息,会看到浏览器提示我们先要进行登录。
然后测试save接口,会发现也是提示先进行登录才可以。
此时我们进行登录,登录成功
然后我们再进行save或find接口的测试,会发现此时这些接口都已经可以正常访问了。
数据库中已经多了一个新的数据。
然后我们再退出登录
然后重新测试查询接口,会发现已经无法查询用户信息了,提示需要进行登录才可以。
再重新登录后,我们可以再启动8081这个新的进程,然后查询tom这个用户信息,会发现也查询到了tom的用户信息,说明我们已经实现了session的共享。
redis中也有了保存的session信息。
转自:知乎一一哥