更新时间:2018年01月28日 11:39:50 作者:彭超 我要评论
spring security针对该功能有两种实现方式,一种是简单的使用加密来保证基于 cookie 的 token 的安全,另一种是通过数据库或其它持久化存储机制来保存生成的 token。这篇文章主要给大家介绍了关于spring security 5.x实现兼容多种密码的加密方式,需要的朋友可以参考下。
前言
本文主要给大家介绍了关于spring security 5.x实现兼容多种密码的加密方式,分享出来供大家参考学习,下面话不多说了,来一起看看详细的介绍吧。
1、spring security PasswordEncoder
spring security 5不需要配置密码的加密方式,而是用户密码加前缀的方式表明加密方式,如:
spring security官方推荐使用更加安全的bcrypt加密方式。
这样可以在同一系统中支持多种加密方式,迁移用户比较省事。spring security 5支持的加密方式在PasswordEncoderFactories中定义:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
public
class
PasswordEncoderFactories {
public
static
PasswordEncoder createDelegatingPasswordEncoder() {
String encodingId =
"bcrypt"
`;`
Map<String, PasswordEncoder> encoders =
new
HashMap();
encoders.put(encodingId,
new
BCryptPasswordEncoder());
encoders.put(
`"ldap"`,
new
LdapShaPasswordEncoder());
encoders.put(
`"MD4"`,
new
Md4PasswordEncoder());
encoders.put(
`"MD5",` `new` `MessageDigestPasswordEncoder(
"MD5"`));
encoders.put(
`"noop"`, NoOpPasswordEncoder.getInstance());
encoders.put(
`"pbkdf2"`,
new
Pbkdf2PasswordEncoder());
encoders.put(
`"scrypt"`,
new
SCryptPasswordEncoder());
encoders.put(
`"SHA-1",` `new` `MessageDigestPasswordEncoder(
"SHA-1"`));
encoders.put(
`"SHA-256",` `new` `MessageDigestPasswordEncoder(
"SHA-256"`));
encoders.put(
`"sha256"`,
new
StandardPasswordEncoder());
return
new
DelegatingPasswordEncoder(encodingId, encoders);
}
private
PasswordEncoderFactories() {
}
}
2 测试
2.1 pom.xml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
<?
`xml
version=
"1.0"
encoding=
"UTF-8"`?>
<
`project
xmlns=
"http://maven.apache.org/POM/4.0.0"
xmlns:xsi=
"http://www.w3.org/2001/XMLSchema-instance"`
xsi:schemaLocation
`="[http://maven.apache.org/POM/4.0.0](http://maven.apache.org/POM/4.0.0) [http://maven.apache.org/xsd/maven-4.0.0.xsd](http://maven.apache.org/xsd/maven-4.0.0.xsd)"
>`
<
`modelVersion>4.0.0</
modelVersion`>
<
`groupId>com.hfcsbc</
groupId`>
<
`artifactId>security</
artifactId`>
<
`version>0.0.1-SNAPSHOT</
version`>
<
`packaging>jar</
packaging`>
<
`name>security</
name`>
<
`description>Demo project for Spring Boot</
description`>
<
`parent`>
<
`groupId>org.springframework.boot</
groupId`>
<
`artifactId>spring-boot-starter-parent</
artifactId`>
<
`version>2.0.0.M7</
version`>
<
`relativePath`/>
<!-- lookup parent from repository -->
</
`parent`>
<
`properties`>
<
`project.build.sourceEncoding>UTF-8</
project.build.sourceEncoding`>
<
`project.reporting.outputEncoding>UTF-8</
project.reporting.outputEncoding`>
<
`java.version>1.8</
java.version`>
</
`properties`>
<
`dependencies`>
<
`dependency`>
<
`groupId>org.springframework.boot</
groupId`>
<
`artifactId>spring-boot-starter-security</
artifactId`>
</
`dependency`>
<
`dependency`>
<
`groupId>org.springframework.boot</
groupId`>
<
`artifactId>spring-boot-starter-test</
artifactId`>
<
`scope>test</
scope`>
</
`dependency`>
<
`dependency`>
<
`groupId>org.springframework.security</
groupId`>
<
`artifactId>spring-security-test</
artifactId`>
<
`scope>test</
scope`>
</
`dependency`>
<
`dependency`>
<
`groupId>org.projectlombok</
groupId`>
<
`artifactId>lombok</
artifactId`>
</
`dependency`>
</
`dependencies`>
<
`build`>
<
`plugins`>
<
`plugin`>
<
`groupId>org.springframework.boot</
groupId`>
<
`artifactId>spring-boot-maven-plugin</
artifactId`>
</
`plugin`>
</
`plugins`>
</
`build`>
<
`repositories`>
<
`repository`>
<
`id>spring-snapshots</
id`>
<
`name>Spring Snapshots</
name`>
<
`url>[https://repo.spring.io/snapshot](https://repo.spring.io/snapshot)</
url`>
<
`snapshots`>
<
`enabled>true</
enabled`>
</
`snapshots`>
</
`repository`>
<
`repository`>
<
`id>spring-milestones</
id`>
<
`name>Spring Milestones</
name`>
<
`url>[https://repo.spring.io/milestone](https://repo.spring.io/milestone)</
url`>
<
`snapshots`>
<
`enabled>false</
enabled`>
</
`snapshots`>
</
`repository`>
</
`repositories`>
<
`pluginRepositories`>
<
`pluginRepository`>
<
`id>spring-snapshots</
id`>
<
`name>Spring Snapshots</
name`>
<
`url>[https://repo.spring.io/snapshot](https://repo.spring.io/snapshot)</
url`>
<
`snapshots`>
<
`enabled>true</
enabled`>
</
`snapshots`>
</
`pluginRepository`>
<
`pluginRepository`>
<
`id>spring-milestones</
id`>
<
`name>Spring Milestones</
name`>
<
`url>[https://repo.spring.io/milestone](https://repo.spring.io/milestone)</
url`>
<
`snapshots`>
<
`enabled>false</
enabled`>
</
`snapshots`>
</
`pluginRepository`>
</
`pluginRepositories`>
</
`project`>
2.2 测试
spring security 5.x默认使用bcrypt加密
1
2
3
4
5
6
7
8
9
10
11
@Slf4j
public
class
DomainUserDetailsService {
public
static
void
main(String[] args){
PasswordEncoder passwordEncoder = PasswordEncoderFactories.createDelegatingPasswordEncoder();
String encode = passwordEncoder.encode(
`"password"`);
log.info(
`"加密后的密码:"
+ encode);`
log.info(
`"bcrypt密码对比:"
+ passwordEncoder.matches("password"
, encode));`
String md5Password =
"{MD5}88e2d8cd1e92fd5544c8621508cd706b"
`;`//MD5加密前的密码为:password
log.info(
`"MD5密码对比:"
+ passwordEncoder.matches("password"
, encode));`
}
}
总结
以上就是这篇文章的全部内容了,希望本文的内容对大家的学习或者工作具有一定的参考学习价值,如果有疑问大家可以留言交流,谢谢大家对脚本之家的支持。
原文链接:http://www.wisely.top/2018/01/27/spring-security-5x-jian-rong-duo-zhong-mi-ma-jia-m/
Original url: Access
Created at: 2019-10-23 16:21:26
Category: default
Tags: none
未标明原创文章均为采集,版权归作者所有,转载无需和我联系,请注明原出处,南摩阿彌陀佛,知识,不只知道,要得到
最新评论