github8577
diff --git a/‎.gitignore‎
Lines changed: 6 additions & 1 deletion b/‎.gitignore‎
Lines changed: 6 additions & 1 deletion
diff --git a/‎cg/ReadMe.md‎
Lines changed: 62 additions & 0 deletions b/‎cg/ReadMe.md‎
Lines changed: 62 additions & 0 deletions
diff --git a/‎cg/pom.xml‎
Lines changed: 167 additions & 0 deletions b/‎cg/pom.xml‎
Lines changed: 167 additions & 0 deletions
diff --git a/‎cg/src/main/java/scut/legend/cg/controller/UserController.java‎
Lines changed: 127 additions & 0 deletions b/‎cg/src/main/java/scut/legend/cg/controller/UserController.java‎
Lines changed: 127 additions & 0 deletions
diff --git a/‎cg/src/main/java/scut/legend/cg/controller/exception/DefaultExceptionHandler.java‎
Lines changed: 25 additions & 0 deletions b/‎cg/src/main/java/scut/legend/cg/controller/exception/DefaultExceptionHandler.java‎
Lines changed: 25 additions & 0 deletions
@@ -7,4 +7,9 @@
 # Package Files
 *.jar
 *.war
-*.zip
+*.zip
+
+.settings
+**/target
+.classpath
+.project
@@ -0,0 +1,62 @@
+# 说明文档
+## 环境介绍
+	Spring+SpringMVC+Mybatis+MySQL+Shiro+Maven
+## 运行过程
+### 1.用eclipse导入
+应该可以看到如下目录结构：
+
+![](http://i.imgur.com/f76eI6u.png)
+
+### 2.执行SQL脚本
+SQL脚本位于webapp->WEB-INF->sql下，该脚本在MySQL5.7上测试通过。
+主要有五张表：
+
+![](http://i.imgur.com/HupJjhX.png)
+
+由用户、角色和权限之间的关系不难得出这五张表。
+
+### 3.修改项目配置
+要修改的主要是jdbc的连接配置，将jdbc.properties对应的属性修改成你本机的属性即可：
+
+![](http://i.imgur.com/QoGWzSP.png)
+
+### 4.确保Maven已导入相关依赖
+
+---
+## 项目演示
+
+为方便演示，sql脚本中已有相应数据：
+
+有两个用户：admin和user
+
+admin的role为admin,user的role为user
+
+role["admin"]具有user:view,user:create,user:update,user:delete四种权限
+
+role["user"]只拥有user:view的权限
+
+
+Shiro的核心配置如下：
+
+![](http://i.imgur.com/ahXALOK.png)
+
+接下来进行测试，启动项目，在浏览器中输入：
+
+### http://localhost:8080/cg/index
+由于/index配置了authc过滤器，因此用户在未认证之前会跳到loginUrl，也就是[http://localhost:8080/cg/login](http://localhost:8080/cg/login)进行认证：
+
+![](http://i.imgur.com/2FYS7za.png)
+
+输入正确的用户名跟密码(user/123456)后登录成功，再输入[http://localhost:8080/cg/index](http://localhost:8080/cg/index)，正常进入页面：
+
+
+![](http://i.imgur.com/wm6yDCC.png)
+
+此时用户role为user,拥有的权限为user:view,输入：[http://localhost:8080/cg/index2](http://localhost:8080/cg/index2 "http://localhost:8080/cg/index2"),[http://localhost:8080/cg/user](http://localhost:8080/cg/user "http://localhost:8080/cg/user"),
+都可以正常访问，而[http://localhost:8080/cg/admin](http://localhost:8080/cg/admin "http://localhost:8080/cg/admin")则不能访问，由于用户已经登录，所以会跳到unauthorizedUrl即http://localhost:8080/cg/unauthorized，如图：
+
+
+![](http://i.imgur.com/xp6TkIx.png)
+
+注销：[http://localhost:8080/cg/logout](http://localhost:8080/cg/logout "http://localhost:8080/cg/logout")
+之后会跳到登录页面，换成admin/123456登录再验证如上url。
@@ -0,0 +1,167 @@
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+	xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
+	<modelVersion>4.0.0</modelVersion>
+	<groupId>scut.legend</groupId>
+	<artifactId>cg</artifactId>
+	<packaging>war</packaging>
+	<version>0.0.1-SNAPSHOT</version>
+	<name>cg Maven Webapp</name>
+	<url>http://maven.apache.org</url>
+
+	<properties>
+		<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
+		<spring.version>4.1.6.RELEASE</spring.version>
+		<shiro.version>1.2.2</shiro.version>
+	</properties>
+
+
+	<dependencies>
+		<!-- junit依赖 -->
+		<dependency>
+			<groupId>junit</groupId>
+			<artifactId>junit</artifactId>
+			<version>4.12</version>
+			<scope>test</scope>
+		</dependency>
+		<!-- 日志依赖slf4j+logback -->
+		<dependency>
+			<groupId>ch.qos.logback</groupId>
+			<artifactId>logback-classic</artifactId>
+			<version>1.1.7</version>
+		</dependency>
+		<dependency>
+			<groupId>org.logback-extensions</groupId>
+			<artifactId>logback-ext-spring</artifactId>
+			<version>0.1.1</version>
+		</dependency>
+		<!-- spring相关依赖 -->
+		<dependency>
+			<groupId>org.springframework</groupId>
+			<artifactId>spring-context</artifactId>
+			<version>${spring.version}</version>
+		</dependency>
+		<!-- springMVC -->
+		<dependency>
+			<groupId>org.springframework</groupId>
+			<artifactId>spring-webmvc</artifactId>
+			<version>${spring.version}</version>
+		</dependency>
+
+		<dependency>  
+            <groupId>org.springframework</groupId>  
+            <artifactId>spring-jdbc</artifactId>  
+            <version>${spring.version}</version>  
+        </dependency>
+		<!-- 数据库相关依赖 -->
+		<!-- 数据库连接池 -->
+		<dependency>
+			<groupId>com.alibaba</groupId>
+			<artifactId>druid</artifactId>
+			<version>1.0.18</version>
+		</dependency>
+		<!-- mysql驱动 -->
+		<dependency>
+			<groupId>mysql</groupId>
+			<artifactId>mysql-connector-java</artifactId>
+			<version>5.1.38</version>
+		</dependency>
+		<!-- mybatis相关 -->
+		<dependency>
+			<groupId>org.mybatis</groupId>
+			<artifactId>mybatis</artifactId>
+			<version>3.4.1</version>
+		</dependency>
+
+		<dependency>
+			<groupId>org.mybatis</groupId>
+			<artifactId>mybatis-spring</artifactId>
+			<version>1.3.0</version>
+		</dependency>
+
+		<!-- servlet API -->
+		<dependency>
+			<groupId>javax.servlet</groupId>
+			<artifactId>javax.servlet-api</artifactId>
+			<version>3.1.0</version>
+			<scope>provided</scope>
+		</dependency>
+		<dependency>
+			<groupId>jstl</groupId>
+			<artifactId>jstl</artifactId>
+			<version>1.2</version>
+			<scope>provided</scope>
+		</dependency>
+		<!-- fastjson -->
+		<dependency>
+			<groupId>com.alibaba</groupId>
+			<artifactId>fastjson</artifactId>
+			<version>1.2.23</version>
+		</dependency>
+		
+		<!-- Shiro相关依赖 -->
+		<dependency>
+			<groupId>org.apache.shiro</groupId>
+			<artifactId>shiro-core</artifactId>
+			<version>${shiro.version}</version>
+		</dependency>
+		<dependency>
+			<groupId>org.apache.shiro</groupId>
+			<artifactId>shiro-web</artifactId>
+			<version>${shiro.version}</version>
+		</dependency>
+		<dependency>
+			<groupId>org.apache.shiro</groupId>
+			<artifactId>shiro-spring</artifactId>
+			<version>${shiro.version}</version>
+		</dependency>
+		<dependency>
+            <groupId>org.apache.shiro</groupId>
+            <artifactId>shiro-quartz</artifactId>
+            <version>${shiro.version}</version>
+        </dependency>
+        <dependency>
+            <groupId>org.apache.shiro</groupId>
+            <artifactId>shiro-ehcache</artifactId>
+            <version>${shiro.version}</version>
+        </dependency>
+        <dependency>
+		    <groupId>commons-fileupload</groupId>
+		    <artifactId>commons-fileupload</artifactId>
+		    <version>1.3.1</version>
+		</dependency>
+		<dependency>
+		    <groupId>commons-io</groupId>
+		    <artifactId>commons-io</artifactId>
+		    <version>2.2</version>
+		</dependency>
+		<dependency>
+		    <groupId>commons-logging</groupId>
+		    <artifactId>commons-logging</artifactId>
+		    <version>1.1.3</version>
+		</dependency>
+		<dependency>
+		    <groupId>org.apache.commons</groupId>
+		    <artifactId>commons-lang3</artifactId>
+		    <version>3.1</version>
+		</dependency>
+		
+		<dependency>
+            <groupId>commons-collections</groupId>
+            <artifactId>commons-collections</artifactId>
+            <version>3.2.1</version>
+        </dependency>
+       <!-- @ResponseBody 转成json数据时要用到 --> 
+    <dependency>
+        <groupId>com.fasterxml.jackson.core</groupId>
+        <artifactId>jackson-databind</artifactId>
+        <version>2.2.3</version>
+    </dependency>
+	</dependencies>
+
+
+
+
+	<build>
+		<finalName>cg</finalName>
+	</build>
+</project>
@@ -0,0 +1,127 @@
+package scut.legend.cg.controller;
+
+import java.util.List;
+
+import javax.annotation.Resource;
+
+import org.apache.shiro.SecurityUtils;
+import org.apache.shiro.authc.IncorrectCredentialsException;
+import org.apache.shiro.authc.UnknownAccountException;
+import org.apache.shiro.authc.UsernamePasswordToken;
+import org.apache.shiro.authc.credential.PasswordService;
+import org.apache.shiro.session.Session;
+import org.apache.shiro.subject.Subject;
+import org.springframework.stereotype.Controller;
+import org.springframework.web.bind.annotation.PathVariable;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestMethod;
+import org.springframework.web.bind.annotation.RequestParam;
+import org.springframework.web.bind.annotation.ResponseBody;
+import org.springframework.web.servlet.ModelAndView;
+
+import com.sun.org.apache.xml.internal.security.keys.keyresolver.implementations.PrivateKeyResolver;
+
+import ch.qos.logback.core.net.LoginAuthenticator;
+import scut.legend.cg.po.User;
+import scut.legend.cg.service.UserService;
+
+@Controller
+public class UserController {
+	@Resource
+	private UserService userService;
+	@Resource
+	private PasswordService passwordService;
+	
+//	@RequestMapping(value="/user")
+//	@ResponseBody
+//	public User testUser(@RequestBody User user){
+//		System.out.println(user);
+//		return user;
+//	}
+//	
+	@RequestMapping(value="/user/{id}")
+	@ResponseBody
+	public User testList(@PathVariable("id")Integer id){
+		User user=userService.getUserById(id);
+		return user;
+	}
+	
+	@RequestMapping(value="/login",method=RequestMethod.POST)
+	@ResponseBody
+	public String login(@RequestBody User user){
+		UsernamePasswordToken token=new UsernamePasswordToken(user.getUsername(),user.getPassword());
+		try{
+			SecurityUtils.getSubject().login(token);
+			return "success";
+		}catch(UnknownAccountException e){
+			return "账号不存在";
+		}catch(IncorrectCredentialsException e){
+			return "密码错误";
+		}catch (Exception e) {
+			return "其他错误";
+		}
+	}
+	
+	@RequestMapping(value="/login",method=RequestMethod.GET)
+	public String login(){
+		return "login";
+	}
+	
+	@RequestMapping(value="/unauthorized")
+	public String unauthorized(){
+		return "unauthorized";
+	}
+	
+	@RequestMapping(value="/encry")
+	@ResponseBody
+	public String encry(@RequestParam(value="password")String password){
+		return passwordService.encryptPassword(password);
+	}
+	
+	@RequestMapping(value="/logout")
+	public ModelAndView logout(){
+		SecurityUtils.getSubject().logout();
+		return new ModelAndView("login");
+	}
+	
+	@RequestMapping(value="/index")
+	@ResponseBody
+	public String index(){
+		return "如果你看到这个页面，说明你已经登录,否则会跳到登录页面";
+	}
+	
+	@RequestMapping(value="/index2")
+	@ResponseBody
+	public String index2(){
+		return "如果你看到这个页面，说明你已经登录或者选择了记住我选项";
+	}
+	
+	@RequestMapping(value="/user")
+	@ResponseBody
+	public String getUser(){
+		return "role为user的用户才能看到这个页面";
+	}
+	
+	@RequestMapping(value="/admin")
+	@ResponseBody
+	public String getAdmin(){
+		return "role为admin的用户才能看到这个页面";
+	}
+	
+	
+	@RequestMapping(value="/user/view")
+	@ResponseBody
+	public String viewUser(){
+		return "拥有user:view权限的用户才能看到这个页面";
+	}
+	
+	@RequestMapping(value="/user/create")
+	@ResponseBody
+	public String createUser(){
+		return "拥有user:create权限的用户才能看到这个页面";
+	}
+	
+	
+	
+}
@@ -0,0 +1,25 @@
+package scut.legend.cg.controller.exception;
+
+import org.apache.shiro.authz.UnauthorizedException;
+import org.springframework.http.HttpStatus;
+import org.springframework.web.bind.annotation.ControllerAdvice;
+import org.springframework.web.bind.annotation.ExceptionHandler;
+import org.springframework.web.bind.annotation.ResponseStatus;
+import org.springframework.web.context.request.NativeWebRequest;
+import org.springframework.web.servlet.ModelAndView;
+
+@ControllerAdvice
+public class DefaultExceptionHandler {
+    /**
+     * 没有权限 异常
+     */
+    @ExceptionHandler({UnauthorizedException.class})
+    //@ResponseStatus(HttpStatus.UNAUTHORIZED)
+    public ModelAndView processUnauthenticatedException(NativeWebRequest request, UnauthorizedException e) {
+        ModelAndView mv = new ModelAndView();
+        mv.addObject("exception", e);
+        mv.setViewName("unauthorized");
+        return mv;
+    }
+
+}