- pom.xml文件中引入redis的依赖
- 在application.xml配置redis:
- <bean id="jedisConnectionFactory"
- class="org.springframework.data.redis.connection.jedis.JedisConnectionFactory">
- <property name="poolConfig" ref="jedisPoolConfig" />
- <property name="usePool" value="true" />
- <property name="hostName" value="${redis.host}" />
- <property name="port" value="${redis.port}" />
- <property name="password" value="${redis.password}" />
- <property name="timeout" value="${redis.timeout}" />
- <property name="database" value="${redis.database}" />
- </bean>
- <bean name="jedisPoolConfig" class="redis.clients.jedis.JedisPoolConfig">
- <property name="maxIdle" value="${redis.maxIdle}" />
- </bean>
- <!--note: use string template -->
- <bean id="redisTemplate" class="org.springframework.data.redis.core.StringRedisTemplate"
- lazy-init="false">
- <property name="connectionFactory" ref="jedisConnectionFactory" />
- <property name="keySerializer">
- <bean class="org.springframework.data.redis.serializer.StringRedisSerializer"/>
- </property>
- <property name="valueSerializer">
- <bean class="org.springframework.data.redis.serializer.JdkSerializationRedisSerializer"/>
- </property>
- </bean>
其中,注意到redisTemplate的序列化属性的配置。
3. shiro配置文件中加入:
- <!-- 使用redis存储管理session -->
- <bean id="sessionManager" class="org.apache.shiro.web.session.mgt.DefaultWebSessionManager">
- <!-- 删除失效session -->
- <property name="sessionValidationSchedulerEnabled" value="true" />
- <!-- session失效时间(毫秒) -->
- <property name="globalSessionTimeout" value="1800000" />
- <property name="sessionDAO" ref="sessionDao" />
- </bean>
- <bean id="securityManager" class="org.apache.shiro.web.mgt.DefaultWebSecurityManager">
- <property name="realm" ref="authenticationRealm" />
- <property name="cacheManager" ref="shiroCacheManager" />
- <property name="sessionManager" ref="sessionManager" />
- </bean>
4. 创建SessionDao类继承EnterpriseCacheSessionDAO:
- @Repository("sessionDao")
- public class SessionDao extends EnterpriseCacheSessionDAO {
- @Resource(name = "redisTemplate")
- private RedisTemplate redisTemplate;
- @Override
- protected Serializable doCreate(Session session) {
- Serializable sessionId = super.doCreate(session);
- redisTemplate.boundValueOps("shiro_session_" + sessionId.toString()).set(session, 30, TimeUnit.MINUTES);
- return sessionId;
- }
- @Override
- protected Session doReadSession(Serializable sessionId) {
- Session session = super.doReadSession(sessionId);
- if (session == null) {
- session = (Session) redisTemplate.boundValueOps("shiro_session_" + sessionId.toString()).get();
- }
- return session;
- }
- @Override
- protected void doUpdate(Session session) {
- super.doUpdate(session);
- redisTemplate.boundValueOps("shiro_session_" + session.getId()).set(session, 30, TimeUnit.MINUTES);
- }
- @Override
- protected void doDelete(Session session) {
- redisTemplate.delete("shiro_session_" + session.getId().toString());
- super.doDelete(session);
- }
- }
redisTemplate中boundValueOps为对key的绑定简化的api,可以通过bound封装指定的key,然后进行一系列的操作而无须“显式”的再次指定Key。
5. 4.在本机上同时运行两个相同项目(端口号不同)测试,开启redis服务,登录其中一个项目成功后,redis客户端显示
再登录另一个项目,发现无需登录,redis客户端只存储一个session。