spring security 5.x实现兼容多种密码的加密方式_java_脚本之家
spring security 5.x实现兼容多种密码的加密方式
更新时间:2018年01月28日 11:39:50 作者:彭超 
我要评论
spring security针对该功能有两种实现方式,一种是简单的使用加密来保证基于 cookie 的 token 的安全,另一种是通过数据库或其它持久化存储机制来保存生成的 token。这篇文章主要给大家介绍了关于spring security 5.x实现兼容多种密码的加密方式,需要的朋友可以参考下。
前言
本文主要给大家介绍了关于spring security 5.x实现兼容多种密码的加密方式,分享出来供大家参考学习,下面话不多说了,来一起看看详细的介绍吧。
1、spring security PasswordEncoder
spring security 5不需要配置密码的加密方式,而是用户密码加前缀的方式表明加密方式,如:
- {MD5}88e2d8cd1e92fd5544c8621508cd706b代表使用的是MD5加密方式;
- {bcrypt}$2a$10$eZeGvVV2ZXr/vgiVFzqzS.JLV878ApBgRT9maPK1Wrg0ovsf4YuI6代表使用的是bcrypt加密方式。
spring security官方推荐使用更加安全的bcrypt加密方式。
这样可以在同一系统中支持多种加密方式,迁移用户比较省事。spring security 5支持的加密方式在PasswordEncoderFactories中定义:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
public class PasswordEncoderFactories {
public static PasswordEncoder createDelegatingPasswordEncoder() {
String encodingId = "bcrypt"`;`
Map<String, PasswordEncoder> encoders = new HashMap();
encoders.put(encodingId, new BCryptPasswordEncoder());
encoders.put(`"ldap"`, new LdapShaPasswordEncoder());
encoders.put(`"MD4"`, new Md4PasswordEncoder());
encoders.put(`"MD5",` `new` `MessageDigestPasswordEncoder("MD5"`));
encoders.put(`"noop"`, NoOpPasswordEncoder.getInstance());
encoders.put(`"pbkdf2"`, new Pbkdf2PasswordEncoder());
encoders.put(`"scrypt"`, new SCryptPasswordEncoder());
encoders.put(`"SHA-1",` `new` `MessageDigestPasswordEncoder("SHA-1"`));
encoders.put(`"SHA-256",` `new` `MessageDigestPasswordEncoder("SHA-256"`));
encoders.put(`"sha256"`, new StandardPasswordEncoder());
return new DelegatingPasswordEncoder(encodingId, encoders);
}
private PasswordEncoderFactories() {
}
}
2 测试
2.1 pom.xml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
<?`xml version="1.0" encoding="UTF-8"`?>
<`project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"`
xsi:schemaLocation`="[http://maven.apache.org/POM/4.0.0](http://maven.apache.org/POM/4.0.0) [http://maven.apache.org/xsd/maven-4.0.0.xsd](http://maven.apache.org/xsd/maven-4.0.0.xsd)">`
<`modelVersion>4.0.0</modelVersion`>
<`groupId>com.hfcsbc</groupId`>
<`artifactId>security</artifactId`>
<`version>0.0.1-SNAPSHOT</version`>
<`packaging>jar</packaging`>
<`name>security</name`>
<`description>Demo project for Spring Boot</description`>
<`parent`>
<`groupId>org.springframework.boot</groupId`>
<`artifactId>spring-boot-starter-parent</artifactId`>
<`version>2.0.0.M7</version`>
<`relativePath`/> <!-- lookup parent from repository -->
</`parent`>
<`properties`>
<`project.build.sourceEncoding>UTF-8</project.build.sourceEncoding`>
<`project.reporting.outputEncoding>UTF-8</project.reporting.outputEncoding`>
<`java.version>1.8</java.version`>
</`properties`>
<`dependencies`>
<`dependency`>
<`groupId>org.springframework.boot</groupId`>
<`artifactId>spring-boot-starter-security</artifactId`>
</`dependency`>
<`dependency`>
<`groupId>org.springframework.boot</groupId`>
<`artifactId>spring-boot-starter-test</artifactId`>
<`scope>test</scope`>
</`dependency`>
<`dependency`>
<`groupId>org.springframework.security</groupId`>
<`artifactId>spring-security-test</artifactId`>
<`scope>test</scope`>
</`dependency`>
<`dependency`>
<`groupId>org.projectlombok</groupId`>
<`artifactId>lombok</artifactId`>
</`dependency`>
</`dependencies`>
<`build`>
<`plugins`>
<`plugin`>
<`groupId>org.springframework.boot</groupId`>
<`artifactId>spring-boot-maven-plugin</artifactId`>
</`plugin`>
</`plugins`>
</`build`>
<`repositories`>
<`repository`>
<`id>spring-snapshots</id`>
<`name>Spring Snapshots</name`>
<`url>[https://repo.spring.io/snapshot](https://repo.spring.io/snapshot)</url`>
<`snapshots`>
<`enabled>true</enabled`>
</`snapshots`>
</`repository`>
<`repository`>
<`id>spring-milestones</id`>
<`name>Spring Milestones</name`>
<`url>[https://repo.spring.io/milestone](https://repo.spring.io/milestone)</url`>
<`snapshots`>
<`enabled>false</enabled`>
</`snapshots`>
</`repository`>
</`repositories`>
<`pluginRepositories`>
<`pluginRepository`>
<`id>spring-snapshots</id`>
<`name>Spring Snapshots</name`>
<`url>[https://repo.spring.io/snapshot](https://repo.spring.io/snapshot)</url`>
<`snapshots`>
<`enabled>true</enabled`>
</`snapshots`>
</`pluginRepository`>
<`pluginRepository`>
<`id>spring-milestones</id`>
<`name>Spring Milestones</name`>
<`url>[https://repo.spring.io/milestone](https://repo.spring.io/milestone)</url`>
<`snapshots`>
<`enabled>false</enabled`>
</`snapshots`>
</`pluginRepository`>
</`pluginRepositories`>
</`project`>
2.2 测试
spring security 5.x默认使用bcrypt加密
1
2
3
4
5
6
7
8
9
10
11
@Slf4j
public class DomainUserDetailsService {
public static void main(String[] args){
PasswordEncoder passwordEncoder = PasswordEncoderFactories.createDelegatingPasswordEncoder();
String encode = passwordEncoder.encode(`"password"`);
log.info(`"加密后的密码:" + encode);`
log.info(`"bcrypt密码对比:" + passwordEncoder.matches("password", encode));`
String md5Password = "{MD5}88e2d8cd1e92fd5544c8621508cd706b"`;`//MD5加密前的密码为:password
log.info(`"MD5密码对比:" + passwordEncoder.matches("password", encode));`
}
}
总结
以上就是这篇文章的全部内容了,希望本文的内容对大家的学习或者工作具有一定的参考学习价值,如果有疑问大家可以留言交流,谢谢大家对脚本之家的支持。
原文链接:http://www.wisely.top/2018/01/27/spring-security-5x-jian-rong-duo-zhong-mi-ma-jia-m/
Original url: Access
Created at: 2019-10-23 16:21:26
Category: default
Tags: none
未标明原创文章均为采集,版权归作者所有,转载无需和我联系,请注明原出处,南摩阿彌陀佛,知识,不只知道,要得到
最新评论