8

我开始使用 Guice/Shiro 而不是 Spring/Spring Security。我查看了 Shiro 网站上的示例,所有配置示例都是作为 INI 文件示例制作的。是否可以在纯 Java 中配置 Shiro,因为 Guice Servlet 是要配置的?

4

1 回答 1

14

是的,这是可能的,但如果您希望 Guice 创建您的领域,则需要一些胶水代码。

  1. 绑定领域实现:
    bind(Realm.class).to(MyRealm.class).in(Singleton.class);
  1. 绑定 WebSecurityManager:
    @Provides @Singleton WebSecurityManager securityManager(Realm realm) {
      DefaultWebSecurityManager sm = new DefaultWebSecurityManager();
      sm.setRealm(realm);
      return sm;
    }
  1. Shiro 过滤器的子类之一,因此您可以使用 Guice 提供的 WebSecurityManager:
    public class SecurityFilter extends IniShiroFilter {

      static class SecurityManagerFactory extends WebIniSecurityManagerFactory {

        private final WebSecurityManager securityManager;

        public SecurityManagerFactory(WebSecurityManager securityManager) {
          this.securityManager = securityManager;
        }

        public SecurityManagerFactory(WebSecurityManager securityManager, Ini ini) {
          super(ini);
          this.securityManager = securityManager;
        }

        @Override
        protected SecurityManager createDefaultInstance() {
          return securityManager;
        }
      }

      private final Provider<WebSecurityManager> securityManager;

      @Inject
      SecurityFilter(Provider<WebSecurityManager> securityManager) {
        super();
        this.securityManager = securityManager;
      }


      protected Map<String, ?> applySecurityManager(Ini ini) {
        SecurityManagerFactory factory;
        if (ini == null || ini.isEmpty()) {
          factory = new SecurityManagerFactory(securityManager.get());
        } else {
          factory = new SecurityManagerFactory(securityManager.get(), ini);
        }
        setSecurityManager((WebSecurityManager) factory.getInstance());
        return factory.getBeans();
      }
    }
  1. 配置过滤器:
    Joiner lines = Joiner.on("\n");
    Map<String, String> config = ImmutableMap.of("config", lines.join(
        "; here you can provide additional ini",
        "[roles]",
        "admin = *",
        "[urls]",
        "/secure/** = authcBasic"
    ));
    filter("/*").through(SecurityFilter.class, config);
于 2011-05-04T19:16:02.113 回答