Package org.nutz.integration.shiro.realm

Source Code of org.nutz.integration.shiro.realm.NutDaoRealm

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
package org.nutz.integration.shiro.realm;

import javax.sql.DataSource;

import org.apache.shiro.authc.AuthenticationException;
import org.apache.shiro.authc.AuthenticationInfo;
import org.apache.shiro.authc.AuthenticationToken;
import org.apache.shiro.authc.LockedAccountException;
import org.apache.shiro.authc.SimpleAccount;
import org.apache.shiro.authc.UsernamePasswordToken;
import org.apache.shiro.authz.AuthorizationInfo;
import org.apache.shiro.authz.SimpleAuthorizationInfo;
import org.apache.shiro.realm.AuthorizingRealm;
import org.apache.shiro.subject.PrincipalCollection;
import org.apache.shiro.util.ByteSource;
import org.nutz.dao.Cnd;
import org.nutz.dao.Dao;
import org.nutz.dao.impl.NutDao;
import org.nutz.integration.Webs;
import org.nutz.integration.shiro.realm.bean.User;
import org.nutz.ioc.Ioc;

/**
* 用NutDao来实现Shiro的Realm
* <p/> 可以通过配置文件注入数据源
* <p/> 在Web环境中也可以通过自动搜索来获取NutDao
* @author wendal
*
*/
public class NutDaoRealm extends AuthorizingRealm {
 
  protected Dao dao;

  protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principalCollection) {
    String username = principalCollection.getPrimaryPrincipal().toString();
    User user = dao().fetch(User.class, Cnd.where("name", "=", username));
        if (user == null)
            return null;
        if (user.isLocked())
            throw new LockedAccountException("Account [" + username + "] is locked.");
       
        SimpleAuthorizationInfo auth = new SimpleAuthorizationInfo();
        auth.setRoles(user.getRoleStrSet());
        auth.addStringPermissions(user.getPermissionStrSet());
       
        return auth;
  }

  protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken token) throws AuthenticationException {
    UsernamePasswordToken upToken = (UsernamePasswordToken) token;
    User user = dao().fetch(User.class, Cnd.where("name", "=", upToken.getUsername()));
        if (user == null)
            return null;
        if (user.isLocked())
            throw new LockedAccountException("Account [" + upToken.getUsername() + "] is locked.");
        dao().fetchLinks(user, null);
        SimpleAccount account = new SimpleAccount(upToken.getUsername(), user.getPasswd(), name);
        if (user.getSalt() != null)
            account.setCredentialsSalt(ByteSource.Util.bytes(user.getSalt()));
        return account;
  }
 
  public NutDaoRealm() {
    this("nutz");
  }

  public NutDaoRealm(String name) {
    this.name = name;
  }
 
  private String name;
 
  public Dao dao() {
    if (dao == null) {
      Ioc ioc = Webs.ioc();
      dao = ioc.get(Dao.class, daoBeanName);
      return dao;
    }
    return dao;
  }
 
  public void setDao(Dao dao) {
    this.dao = dao;
  }
 
  public void setDataSource(DataSource dataSource) {
    this.dao = new NutDao(dataSource);
  }
 
  private String daoBeanName = "dao";
 
  public void setDaoBeanName(String daoBeanName) {
    this.daoBeanName = daoBeanName;
  }
 
}
TOP

Related Classes of org.nutz.integration.shiro.realm.NutDaoRealm

  • org.apache.shiro.authc.SimpleAccount
  • org.apache.shiro.authc.UsernamePasswordToken
  • org.apache.shiro.authz.SimpleAuthorizationInfo
  • org.nutz.dao.impl.NutDao
  • org.nutz.integration.shiro.realm.bean.User
  • org.nutz.ioc.Ioc
  • org.apache.shiro.authc.LockedAccountException
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.