public class UserRealm extends AuthorizingRealm {
/**
* 授权
*/
@Override
protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principals) {
System.out.println("UserRealm.doGetAuthorizationInfo()");
//1.获取登录用户
User user = (User)principals.getPrimaryPrincipal();
HashSet<String> set = new HashSet<String>();
if("admin".equals(user.getName())){
set.add("user:add");
set.add("user:update");
}
//权限和角色一般从数据库中获取放入下面
SimpleAuthorizationInfo simpleAuthorizationInfo = new SimpleAuthorizationInfo();
// simpleAuthorizationInfo.setRoles(roles);//添加角色
simpleAuthorizationInfo.setStringPermissions(set);//添加
return simpleAuthorizationInfo;
}
/**
* 获取用户认证信息
*/
@Override
protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken token) throws AuthenticationException {
System.out.println("UserRealm.doGetAuthenticationInfo()");
//得到需要认证的用户名
String name = (String )token.getPrincipal();
//得到需要认证的密码
char[] credentials = (char[])token.getCredentials();
//数据库查询的密码
String password = null; //查询数据库密码
User user= null;
if("admin".equals(name)){
password = "df655ad8d3229f3269fad2a8bab59b6c";
user = new User();
user.setPassword(password);
user.setName(name);
}
SimpleAuthenticationInfo simpleAuthenticationInfo = new
SimpleAuthenticationInfo(user, password, ByteSource.Util.bytes(name),getName());
return simpleAuthenticationInfo;
}
}
/**
* 授权
*/
@Override
protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principals) {
System.out.println("UserRealm.doGetAuthorizationInfo()");
//1.获取登录用户
User user = (User)principals.getPrimaryPrincipal();
HashSet<String> set = new HashSet<String>();
if("admin".equals(user.getName())){
set.add("user:add");
set.add("user:update");
}
//权限和角色一般从数据库中获取放入下面
SimpleAuthorizationInfo simpleAuthorizationInfo = new SimpleAuthorizationInfo();
// simpleAuthorizationInfo.setRoles(roles);//添加角色
simpleAuthorizationInfo.setStringPermissions(set);//添加
return simpleAuthorizationInfo;
}
/**
* 获取用户认证信息
*/
@Override
protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken token) throws AuthenticationException {
System.out.println("UserRealm.doGetAuthenticationInfo()");
//得到需要认证的用户名
String name = (String )token.getPrincipal();
//得到需要认证的密码
char[] credentials = (char[])token.getCredentials();
//数据库查询的密码
String password = null; //查询数据库密码
User user= null;
if("admin".equals(name)){
password = "df655ad8d3229f3269fad2a8bab59b6c";
user = new User();
user.setPassword(password);
user.setName(name);
}
SimpleAuthenticationInfo simpleAuthenticationInfo = new
SimpleAuthenticationInfo(user, password, ByteSource.Util.bytes(name),getName());
return simpleAuthenticationInfo;
}
}