security登录认证

0ff5fdaf · ManongJu · 7aec65eb · 0ff5fdaf · 0ff5fdaf · 0ff5fdaf
10 changed file
--- a/auth-center/pom.xml
+++ b/auth-center/pom.xml
@@ -21,15 +21,26 @@
 			<groupId>org.springframework.boot</groupId>
 			<artifactId>spring-boot-starter-actuator</artifactId>
 		</dependency>
-		<!--<dependency>-->
-			<!--<groupId>org.springframework.cloud</groupId>-->
-			<!--<artifactId>spring-cloud-starter-eureka</artifactId>-->
-		<!--</dependency>-->
+		<dependency>
+			<groupId>org.springframework.cloud</groupId>
+			<artifactId>spring-cloud-starter-eureka</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.springframework.boot</groupId>
+			<artifactId>spring-boot-starter-security</artifactId>
+		</dependency>
 		<dependency>
 			<groupId>org.springframework.cloud</groupId>
 			<artifactId>spring-cloud-starter-oauth2</artifactId>
 		</dependency>
-
+		<dependency>
+			<groupId>org.springframework.boot</groupId>
+			<artifactId>spring-boot-starter-web</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.springframework.boot</groupId>
+			<artifactId>spring-boot-starter-thymeleaf</artifactId>
+		</dependency>
 		<dependency>
 			<groupId>org.springframework.boot</groupId>
 			<artifactId>spring-boot-starter-test</artifactId>

--- a/auth-center/src/main/java/com/microservice/skeleton/auth/AuthCenterApplication.java
+++ b/auth-center/src/main/java/com/microservice/skeleton/auth/AuthCenterApplication.java
@@ -2,8 +2,10 @@ package com.microservice.skeleton.auth;

 import org.springframework.boot.SpringApplication;
 import org.springframework.boot.autoconfigure.SpringBootApplication;
+import org.springframework.cloud.client.discovery.EnableDiscoveryClient;

 @SpringBootApplication
+@EnableDiscoveryClient
 public class AuthCenterApplication {

 	public static void main(String[] args) {

--- a/auth-center/src/main/java/com/microservice/skeleton/auth/config/WebSecurityConfig.java
+++ b/auth-center/src/main/java/com/microservice/skeleton/auth/config/WebSecurityConfig.java
+package com.microservice.skeleton.auth.config;
+
+import com.microservice.skeleton.auth.service.impl.UserDetailsServiceImpl;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
+import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
+import org.springframework.security.crypto.password.PasswordEncoder;
+
+/**
+ * Created by Mr.Yangxiufeng on 2017/12/27.
+ * Time:16:42
+ * ProjectName:Mirco-Service-Skeleton
+ */
+@Configuration
+@EnableWebSecurity
+public class WebSecurityConfig extends WebSecurityConfigurerAdapter {
+    @Autowired
+    private UserDetailsServiceImpl userDetailsService;
+
+    @Bean
+    public PasswordEncoder passwordEncoder() {
+        return new BCryptPasswordEncoder();
+    }
+
+    @Override
+    protected void configure(AuthenticationManagerBuilder auth) throws Exception {
+        auth.userDetailsService(userDetailsService)
+            .passwordEncoder(passwordEncoder());
+    }
+
+    @Override
+    protected void configure(HttpSecurity http) throws Exception {
+        http.authorizeRequests()
+                .anyRequest().authenticated()
+                .and()
+                    .formLogin()
+                        .loginPage("/login")
+                        .failureUrl("/login?error")
+                        .permitAll()
+                .and()
+                    .logout()
+                        .permitAll();
+        http.csrf().disable().httpBasic();
+    }
+}
--- a/auth-center/src/main/java/com/microservice/skeleton/auth/controller/HelloController.java
+++ b/auth-center/src/main/java/com/microservice/skeleton/auth/controller/HelloController.java
+package com.microservice.skeleton.auth.controller;
+
+import org.springframework.stereotype.Controller;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestMethod;
+
+/**
+ * Created by Mr.Yangxiufeng on 2017/12/27.
+ * Time:17:02
+ * ProjectName:Mirco-Service-Skeleton
+ */
+@Controller
+public class HelloController {
+    @RequestMapping("/")
+    public String index() {
+        return "index";
+    }
+
+    @RequestMapping("/hello")
+    public String hello() {
+        return "hello";
+    }
+    @RequestMapping("/login")
+    public String login() {
+        return "login";
+    }
+    @RequestMapping(value = "/doLogin",method = RequestMethod.POST)
+    public void doLogin(String username,String password){
+        System.out.println(username);
+    }
+}
--- a/auth-center/src/main/java/com/microservice/skeleton/auth/respository/RoleRepository.java
+++ b/auth-center/src/main/java/com/microservice/skeleton/auth/respository/RoleRepository.java
+package com.microservice.skeleton.auth.respository;
+
+import com.microservice.skeleton.auth.entity.RcRoleEntity;
+import org.springframework.data.jpa.repository.JpaRepository;
+import org.springframework.stereotype.Repository;
+
+/**
+ * Created by Mr.Yangxiufeng on 2017/12/27.
+ * Time:16:09
+ * ProjectName:Mirco-Service-Skeleton
+ */
+@Repository
+public interface RoleRepository extends JpaRepository<RcRoleEntity,Integer>{
+}
--- a/auth-center/src/main/java/com/microservice/skeleton/auth/service/impl/UserDetailsServiceImpl.java
+++ b/auth-center/src/main/java/com/microservice/skeleton/auth/service/impl/UserDetailsServiceImpl.java
+package com.microservice.skeleton.auth.service.impl;
+
+import com.microservice.skeleton.auth.entity.RcUserEntity;
+import com.microservice.skeleton.auth.service.UserService;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.security.core.GrantedAuthority;
+import org.springframework.security.core.userdetails.User;
+import org.springframework.security.core.userdetails.UserDetails;
+import org.springframework.security.core.userdetails.UserDetailsService;
+import org.springframework.security.core.userdetails.UsernameNotFoundException;
+import org.springframework.stereotype.Service;
+
+import java.util.HashSet;
+import java.util.Set;
+
+/**
+ * Created by Mr.Yangxiufeng on 2017/12/27.
+ * Time:16:37
+ * ProjectName:Mirco-Service-Skeleton
+ */
+@Service
+public class UserDetailsServiceImpl implements UserDetailsService{
+    @Autowired
+    private UserService userService;
+    @Override
+    public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {
+        RcUserEntity userEntity = userService.findByUsername(username);
+        if (userEntity == null){
+            throw new UsernameNotFoundException("用户:" + username + ",不存在!");
+        }
+        Set<GrantedAuthority> grantedAuthorities = new HashSet<>();
+        User user = new User(userEntity.getUsername(),userEntity.getPassword(),grantedAuthorities);
+        return user;
+    }
+}
--- a/auth-center/src/main/resources/application.yml
+++ b/auth-center/src/main/resources/application.yml
 spring:
  application:
    name: auth2.0-center
+  zipkin:
+      base-url: http://10.10.8.2:9050
  jpa:
    show-sql: true
  datasource:
@@ -10,4 +12,24 @@ spring:
    druid:
      driver-class-name: com.mysql.jdbc.Driver
 server:
-  port: 9060
\ No newline at end of file
+  port: 9060
+
+eureka:
+  instance:
+    prefer-ip-address: true #使用IP注册
+    instance-id: ${spring.cloud.client.ipAddress}:${server.port}
+    lease-renewal-interval-in-seconds: 5 ##为了能够快速删除
+    lease-expiration-duration-in-seconds: 10 ##为了能够快速删除
+  client:
+      service-url:
+        defaultZone: http://register1:9010/eureka/,http://register2:9011/eureka/
+###actuator监控点 start####
+endpoints:
+  health:
+    sensitive: false
+    enabled: true
+##默认情况下很多端点是不允许访问的，会返回401:Unauthorized
+management:
+  security:
+    enabled: false
+###actuator监控点 end####
\ No newline at end of file
--- a/auth-center/src/main/resources/templates/hello.html
+++ b/auth-center/src/main/resources/templates/hello.html
+<!DOCTYPE html>
+<html xmlns="http://www.w3.org/1999/xhtml" xmlns:th="http://www.thymeleaf.org"
+      xmlns:sec="http://www.thymeleaf.org/thymeleaf-extras-springsecurity3">
+<head>
+    <title>Hello World!</title>
+</head>
+<body>
+<h1>Hello world!</h1>
+</body>
+</html>
\ No newline at end of file
--- a/auth-center/src/main/resources/templates/index.html
+++ b/auth-center/src/main/resources/templates/index.html
+<!DOCTYPE html>
+<html xmlns="http://www.w3.org/1999/xhtml" xmlns:th="http://www.thymeleaf.org" xmlns:sec="http://www.thymeleaf.org/thymeleaf-extras-springsecurity3">
+<head>
+    <title>Spring Security入门</title>
+</head>
+<body>
+<h1>欢迎使用Spring Security!</h1>
+<p>点击 <a th:href="@{/hello}">这里</a> 打个招呼吧</p>
+</body>
+</html>
\ No newline at end of file
--- a/auth-center/src/main/resources/templates/login.html
+++ b/auth-center/src/main/resources/templates/login.html
+<!DOCTYPE html>
+<html xmlns="http://www.w3.org/1999/xhtml"
+      xmlns:th="http://www.thymeleaf.org"
+      xmlns:sec="http://www.thymeleaf.org/thymeleaf-extras-springsecurity3">
+<head>
+    <title>Spring Security Example </title>
+</head>
+<body>
+<div th:if="${param.error}">
+    用户名或密码错
+</div>
+<div th:if="${param.logout}">
+    您已注销成功
+</div>
+<form th:action="@{/login}" method="post">
+    <div><label> 用户名 : <input type="text" name="username"/> </label></div>
+    <div><label> 密  码 : <input type="password" name="password"/> </label></div>
+    <div><input type="submit" value="登录"/></div>
+</form>
+</body>
+</html>
\ No newline at end of file