Shiro's encrypted realm login and logout

The first step MD5 encryption

public class MD5Test {

    @Test
    public void test01(){

        String password ="666";//密码 明文

        //加密：md5
        Md5Hash md5Hash = new Md5Hash(password);
        System.out.println(md5Hash);

        //加密：md5 盐
        Md5Hash zhangsan = new Md5Hash(password, "zhangsan");
        System.out.println(zhangsan);

        //加密：md5 盐 ，散列次数3
        //cd757bae8bd31da92c6b14c235668091
        Md5Hash zhangsan1 = new Md5Hash(password, "zhangsan", 3);
        System.out.println(zhangsan1);
    }
}

Customize Realm, rewrite authentication method

public class PasswordRealm extends AuthorizingRealm {

    public String getName(){

        return "PasswordRealm";
    }

    @Override
    protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principalCollection) {
        return null;
    }

    //认证
    @Override
    protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken token) throws AuthenticationException {
        String username = (String)token.getPrincipal();
        if (!username.equals("zhangsan")){
            return null;
        }

        //String password = "666";模拟数据库中保存加密之后的密文：666+ 账号(盐) + 散列次数
        String password = "cd757bae8bd31da92c6b14c235668091";
        //info对象表示realm登入比对信息：参数1：用户信息（真实登入中是登入对象user对象），参数2：密码 参数3：盐 参数4：当前realm名字
        SimpleAuthenticationInfo info = new SimpleAuthenticationInfo(username, password, ByteSource.Util.bytes("zhangsan"), getName());

        return info;
    }
}

Create a shiro-cryptography.ini configuration file

[main]
#定义凭证匹配器
credentialsMatcher=org.apache.shiro.authc.credential.HashedCredentialsMatcher
#散列算法
credentialsMatcher.hashAlgorithmName=md5
#散列次数
credentialsMatcher.hashIterations=3
#将凭证匹配器设置到realm
myRealm= com.feng.realm.PasswordRealm
myRealm.credentialsMatcher=$credentialsMatcher
securityManager.realms=$myRealm

Write test program

public class MyTest {

    @Test
    public void test01(){

        Factory<SecurityManager> factory = new IniSecurityManagerFactory("classpath:shiro-cryptography.ini");

        SecurityManager securityManager = factory.getInstance();

        SecurityUtils.setSecurityManager(securityManager);

        Subject subject = SecurityUtils.getSubject();

        UsernamePasswordToken token = new UsernamePasswordToken("zhangsan", "666");

        try {
            subject.login(token);
        }catch (Exception e){

            e.printStackTrace();
        }

        System.out.println("登入是否成功"+subject.isAuthenticated());

        subject.logout();
        System.out.println("登入是否成功"+subject.isAuthenticated());
    }
}