本文地址：

shiro官网:

shiro中文手冊：

本文作者：

------------------------------------------------------------------------------------------------------------------------------------

一。新建java webproject 这里取名为shirodemo

二。加入依赖的jar包。例如以下：

三。加入web对shiro的支持

如第一篇文章所述，在此基础上添加webs.xml部署描写叙述：

       	
      
       org.apache.shiro.web.env.EnvironmentLoaderListener
        
       
       	
      
       shiro
        	
      
       org.apache.shiro.web.servlet.ShiroFilter
        
       
       	
      
       shiro
        	
      
       /*
        
     

四。加入jsp页面登陆button以及标签支持：

<% String user = request.getParameter("username"); String pwd = request.getParameter("password");if(user != null && pwd != null){	 Subject sub = SecurityUtils.getSubject();	 String context = request.getContextPath();	 try{	 	sub.login(new UsernamePasswordToken(user.toUpperCase(),pwd));	 	out.println("登录成功");	 }catch(IncorrectCredentialsException e){		 out.println("{success:false,msg:'username和password不对！'}");	 }catch(UnknownAccountException e){		 out.println("{success:false,msg:'用户名不存在。'}");	 }	 return;}%>

在jsp页面中添加username与password登陆框。

五。新建realm实现

package com.susheng.shiro;import javax.annotation.PostConstruct;import org.apache.shiro.SecurityUtils;import org.apache.shiro.authc.AuthenticationException;import org.apache.shiro.authc.AuthenticationInfo;import org.apache.shiro.authc.AuthenticationToken;import org.apache.shiro.authc.IncorrectCredentialsException;import org.apache.shiro.authc.LockedAccountException;import org.apache.shiro.authc.SimpleAuthenticationInfo;import org.apache.shiro.authc.UnknownAccountException;import org.apache.shiro.authc.UsernamePasswordToken;import org.apache.shiro.authc.credential.HashedCredentialsMatcher;import org.apache.shiro.authz.AuthorizationInfo;import org.apache.shiro.authz.SimpleAuthorizationInfo;import org.apache.shiro.cache.CacheManager;import org.apache.shiro.realm.AuthorizingRealm;import org.apache.shiro.subject.PrincipalCollection;import org.apache.shiro.subject.Subject;import org.slf4j.Logger;import org.slf4j.LoggerFactory;//认证数据库存储public class ShiroRealm extends AuthorizingRealm {	public Logger logger = LoggerFactory.getLogger(getClass());		final static String AUTHCACHENAME = "AUTHCACHENAME";	public static final String HASH_ALGORITHM = "MD5";	public static final int HASH_INTERATIONS = 1;	public ShiroDbRealm() {		// 认证		super.setAuthenticationCachingEnabled(false);		// 授权		super.setAuthorizationCacheName(AUTHCACHENAME);	}	// 授权	@Override	protected AuthorizationInfo doGetAuthorizationInfo(			PrincipalCollection principalCollection) {		if (!SecurityUtils.getSubject().isAuthenticated()) {			doClearCache(principalCollection);			SecurityUtils.getSubject().logout();			return null;		}		// 加入角色及权限信息		SimpleAuthorizationInfo sazi = new SimpleAuthorizationInfo();		return sazi;	}	// 认证	@Override	protected AuthenticationInfo doGetAuthenticationInfo(			AuthenticationToken token) throws AuthenticationException {		UsernamePasswordToken upToken = (UsernamePasswordToken) token;		String userName = upToken.getUsername();		String passWord = new String(upToken.getPassword());		AuthenticationInfo authinfo = new SimpleAuthenticationInfo(				userName, passWord, getName());		return authinfo;	}	/**	 * 设定Password校验的Hash算法与迭代次数.	 */	@PostConstruct	public void initCredentialsMatcher() {		HashedCredentialsMatcher matcher = new HashedCredentialsMatcher(				HASH_ALGORITHM);		matcher.setHashIterations(HASH_INTERATIONS);		setCredentialsMatcher(matcher);	}}

六。shiro.ini文件内容添加对realm的支持。

## Licensed to the Apache Software Foundation (ASF) under one# or more contributor license agreements.  See the NOTICE file# distributed with this work for additional information# regarding copyright ownership.  The ASF licenses this file# to you under the Apache License, Version 2.0 (the# "License"); you may not use this file except in compliance# with the License.  You may obtain a copy of the License at##     http://www.apache.org/licenses/LICENSE-2.0## Unless required by applicable law or agreed to in writing,# software distributed under the License is distributed on an# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY# KIND, either express or implied.  See the License for the# specific language governing permissions and limitations# under the License.## =============================================================================# Quickstart INI Realm configuration## For those that might not understand the references in this file, the# definitions are all based on the classic Mel Brooks' film "Spaceballs". ;)# =============================================================================# -----------------------------------------------------------------------------# Users and their assigned roles## Each line conforms to the format defined in the# org.apache.shiro.realm.text.TextConfigurationRealm#setUserDefinitions JavaDoc# -----------------------------------------------------------------------------#realmmyRealm = com.susheng.shiro.ShiroDbRealmsecurityManager.realm = $myRealm[users]# user 'root' with password 'secret' and the 'admin' roleroot = secret, admin# user 'guest' with the password 'guest' and the 'guest' roleguest = guest, guest# user 'presidentskroob' with password '12345' ("That's the same combination on# my luggage!!!" ;)), and role 'president'presidentskroob = 12345, president# user 'darkhelmet' with password 'ludicrousspeed' and roles 'darklord' and 'schwartz'darkhelmet = ludicrousspeed, darklord, schwartz# user 'lonestarr' with password 'vespa' and roles 'goodguy' and 'schwartz'lonestarr = vespa, goodguy, schwartz# -----------------------------------------------------------------------------# Roles with assigned permissions# # Each line conforms to the format defined in the# org.apache.shiro.realm.text.TextConfigurationRealm#setRoleDefinitions JavaDoc# -----------------------------------------------------------------------------[roles]# 'admin' role has all permissions, indicated by the wildcard '*'admin = *# The 'schwartz' role can do anything (*) with any lightsaber:schwartz = lightsaber:*# The 'goodguy' role is allowed to 'drive' (action) the winnebago (type) with# license plate 'eagle5' (instance specific id)goodguy = winnebago:drive:eagle5[urls]/login.jsp = anon/index.html = user/index.jsp = user/homePageDebug.jsp = user/module/** = user

七。tomcat添加对这个应用的部署。启动tomcat，输入相应的url。

查看实现效果：

登录界面的显示

点击登录之后，插入了shiro的实现。

临时没有进行实质认证。仅仅是大概搭建的shiro环境。

自己插入自己的realm实现就能够了。

OK。如今。以及实现了对web的支持。

代码下载地址：