1.首先看下我的項目結(jié)構(gòu)

我們逐個講解

/** * 用戶登錄配置類 * @author Administrator * */public class AdminUserDateils implements UserDetails {private static final long serialVersionUID = -1546619839676530441L; private transient YCAdmin yCAdmin; public AdminUserDateils() {} public AdminUserDateils(YCAdmin yCAdmin) { if (yCAdmin != null) { this.yCAdmin = yCAdmin; } } public YCAdmin getyCAdmin() {return yCAdmin;}public void setyCAdmin(YCAdmin yCAdmin) {this.yCAdmin = yCAdmin;}@Overridepublic Collection<? extends GrantedAuthority> getAuthorities() { Collection<GrantedAuthority> authorities = new ArrayList<>(); SimpleGrantedAuthority authority = new SimpleGrantedAuthority('admin'); authorities.add(authority); return authorities;}//用戶名密碼@Overridepublic String getPassword() { return yCAdmin.getAdminPassword();}//賬號@Overridepublic String getUsername() {return yCAdmin.getAdminAccount();}@Overridepublic boolean isAccountNonExpired() {return true;}@Overridepublic boolean isAccountNonLocked() {return true;}@Overridepublic boolean isCredentialsNonExpired() {return true;}@Overridepublic boolean isEnabled() {return true;}}

首先以上AdminUserDateils類是配置用戶登錄成功后，來存儲用戶登錄的信息

/** * Spring-Security * @author Administrator * */@Servicepublic class AdminCustomerDetailsService implements UserDetailsService{@Autowiredprivate YCAdminMapper yCAdminMapper;@Overridepublic UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {YCAdmin ycAdmin= yCAdminMapper.selectYCAdminByAccount(username);if(ycAdmin==null) {throw new UsernameNotFoundException('未找到該用戶！！');}//配置的AdminUserDateilsAdminUserDateils adminUserDateils = new AdminUserDateils(ycAdmin);return adminUserDateils;}}

以上AdminCustomerDetailsService是根據(jù)查找用戶名的，需要實現(xiàn)UserDetailsService接口的loadUserByUsername的方法也就是會找用戶名，這個根據(jù)mapper層，也就是數(shù)據(jù)庫查找，返回只也就是剛才配置的AdminUserDateils類

public class YhPasswordEncoder implements PasswordEncoder{@Overridepublic String encode(CharSequence rawPassword) {return Des3.encrypt(rawPassword.toString());}@Overridepublic boolean matches(CharSequence rawPassword, String encodedPassword) {// TODO Auto-generated method stubreturn encode(rawPassword).equals(encodedPassword);}}

以上YhPasswordEncoder 需要繼承是我們PasswordEncoder配置用戶密碼加密的，這里的加密可以按照自己業(yè)務(wù)需求來使用加密，按照這樣換一種加密類型就可以了。

public class AdminSecurityConfiguration {@Configuration@Order(2)@EnableWebSecuritypublic static class ClientSecurityConfig extends WebSecurityConfigurerAdapter {@Autowiredprivate AdminCustomerDetailsService adminCustomerDetailsService;@Value('${yunhui.admin.urlContext:/houtai}')private String adminUrlContext;@Value('${yunhui.admin.noLoginUrls:}')private String noLoginUrls;@Overrideprotected void configure(HttpSecurity http) throws Exception {//循環(huán)獲取用戶不需要驗證url（這里是記錄在yml）List<String> clientNoLoginUrls = new ArrayList<String>();if (!noLoginUrls.isEmpty()) {for (String s : noLoginUrls.split(',')) {clientNoLoginUrls.add(adminUrlContext + s);}}http.//需要驗證登錄的urlantMatcher(adminUrlContext + '/**').authorizeRequests()//不需登錄驗證的url.antMatchers(clientNoLoginUrls.toArray(new String[0])).permitAll().anyRequest().authenticated().and()//開啟表單驗證.formLogin().//驗證登錄的urlloginProcessingUrl('/houtai/login')//登錄的頁面.loginPage('/houtai/login')//登錄成功后跳轉(zhuǎn).defaultSuccessUrl('/houtai').permitAll().and()//注銷登錄的url.logout().logoutUrl('/houtai/loginout')//注銷之后跳轉(zhuǎn)的頁面.logoutSuccessUrl('/houtai').and().rememberMe().and().csrf().disable();;}@Overridepublic void configure(AuthenticationManagerBuilder auth) throws Exception {//需要哪個service，和驗證密碼的方式，剛才我們都配置了auth.userDetailsService(adminCustomerDetailsService).passwordEncoder(new YhPasswordEncoder());}}

最后就是配置首先開啟@Configuration@EnableWebSecurity的注解

一個是我們剛才配置的service其他兩個兩個變量是在配置文件配置的

最后配置我們表單驗證就可以了input的name必須是username和password，除非重新配置了，action='/houtai/login'就是直接這樣就可以實現(xiàn)登錄了

如果有HttpSecurity配置的細(xì)節(jié)問題可以提問

補(bǔ)充可以自己配置登錄成功和失敗類

到此這篇關(guān)于SpringBoot使用Spring Security實現(xiàn)登錄注銷功能的文章就介紹到這了,更多相關(guān)Spring Security登錄注銷內(nèi)容請搜索好吧啦網(wǎng)以前的文章或繼續(xù)瀏覽下面的相關(guān)文章希望大家以后多多支持好吧啦網(wǎng)！