集群环境下的Session并发管理
1.pom.xml
<?xml version="1.0" encoding="UTF-8"?><project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 https://maven.apache.org/xsd/maven-4.0.0.xsd"><modelVersion>4.0.0</modelVersion><parent><groupId>org.springframework.boot</groupId><artifactId>spring-boot-starter-parent</artifactId><version>2.6.4</version><relativePath/> <!-- lookup parent from repository --></parent><groupId>com.yl</groupId><artifactId>securitydemo</artifactId><version>0.0.1-SNAPSHOT</version><name>securitydemo</name><description>Demo project for Spring Boot</description><properties><java.version>11</java.version></properties><dependencies><dependency><groupId>org.springframework.boot</groupId><artifactId>spring-boot-starter-security</artifactId></dependency><dependency><groupId>org.springframework.boot</groupId><artifactId>spring-boot-starter-web</artifactId></dependency><dependency><groupId>org.springframework.boot</groupId><artifactId>spring-boot-starter-jdbc</artifactId></dependency><dependency><groupId>com.alibaba</groupId><artifactId>druid-spring-boot-starter</artifactId><version>1.1.10</version></dependency><dependency><groupId>org.mybatis.spring.boot</groupId><artifactId>mybatis-spring-boot-starter</artifactId><version>2.2.2</version></dependency><dependency><groupId>mysql</groupId><artifactId>mysql-connector-java</artifactId><scope>runtime</scope></dependency><dependency><groupId>com.github.penggle</groupId><artifactId>kaptcha</artifactId><version>2.3.2</version></dependency><dependency><groupId>org.springframework.session</groupId><artifactId>spring-session-data-redis</artifactId></dependency><dependency><groupId>org.springframework.boot</groupId><artifactId>spring-boot-starter-data-redis</artifactId></dependency><dependency><groupId>org.springframework.boot</groupId><artifactId>spring-boot-starter-test</artifactId><scope>test</scope></dependency><dependency><groupId>org.springframework.security</groupId><artifactId>spring-security-test</artifactId><scope>test</scope></dependency></dependencies><build><resources><resource><directory>src/main/java</directory><includes><include>**/*.xml</include></includes></resource><resource><directory>src/min/resources</directory></resource></resources><plugins><plugin><groupId>org.springframework.boot</groupId><artifactId>spring-boot-maven-plugin</artifactId></plugin></plugins></build></project>
2.application.properties
server.port=8080spring.datasource.url=jdbc:mysql://localhost:3306/demo?useUnicode=true&characterEncoding=utf8&useSSL=false&serverTimezone=Asia/Shanghaispring.datasource.type=com.alibaba.druid.pool.DruidDataSourcespring.datasource.driver-class-name = com.mysql.cj.jdbc.Driverspring.datasource.username=rootspring.datasource.password=rootspring.redis.host=192.168.244.136spring.redis.port=6379spring.redis.password=root123
3.建表语句
DROP TABLE IF EXISTS `role`;CREATE TABLE `role` (`id` int(11) NOT NULL AUTO_INCREMENT,`name` varchar(100) CHARACTER SET utf8mb4 COLLATE utf8mb4_0900_ai_ci NULL DEFAULT NULL,`description` varchar(100) CHARACTER SET utf8mb4 COLLATE utf8mb4_0900_ai_ci NULL DEFAULT NULL,PRIMARY KEY (`id`) USING BTREE) ENGINE = InnoDB AUTO_INCREMENT = 4 CHARACTER SET = utf8mb4 COLLATE = utf8mb4_0900_ai_ci ROW_FORMAT = Dynamic;-- ------------------------------ Records of role-- ----------------------------INSERT INTO `role` VALUES (1, 'ROLE_db', '数据库管理员');INSERT INTO `role` VALUES (2, 'ROLE_admin', '系统管理员');INSERT INTO `role` VALUES (3, 'ROLE_user', '用户');-- ------------------------------ Table structure for user-- ----------------------------DROP TABLE IF EXISTS `user`;CREATE TABLE `user` (`id` int(11) NOT NULL AUTO_INCREMENT,`username` varchar(100) CHARACTER SET utf8mb4 COLLATE utf8mb4_0900_ai_ci NULL DEFAULT NULL,`password` varchar(100) CHARACTER SET utf8mb4 COLLATE utf8mb4_0900_ai_ci NULL DEFAULT NULL,`enabled` tinyint(1) NULL DEFAULT NULL,`locked` tinyint(1) NULL DEFAULT NULL,PRIMARY KEY (`id`) USING BTREE) ENGINE = InnoDB AUTO_INCREMENT = 4 CHARACTER SET = utf8mb4 COLLATE = utf8mb4_0900_ai_ci ROW_FORMAT = Dynamic;-- ------------------------------ Records of user-- ----------------------------INSERT INTO `user` VALUES (1, 'root', '$2a$10$O8G0X/sUPAA76MV7U3BwY.3Uo8/QMBcqK678Rwkoz.fowbce.CLtO', 1, 0);INSERT INTO `user` VALUES (2, 'admin', '$2a$10$O8G0X/sUPAA76MV7U3BwY.3Uo8/QMBcqK678Rwkoz.fowbce.CLtO', 1, 0);INSERT INTO `user` VALUES (3, 'tom', '$2a$10$O8G0X/sUPAA76MV7U3BwY.3Uo8/QMBcqK678Rwkoz.fowbce.CLtO', 1, 0);-- ------------------------------ Table structure for user_role_ref-- ----------------------------DROP TABLE IF EXISTS `user_role_ref`;CREATE TABLE `user_role_ref` (`id` int(11) NOT NULL AUTO_INCREMENT,`user_id` int(11) NULL DEFAULT NULL,`role_id` int(11) NULL DEFAULT NULL,PRIMARY KEY (`id`) USING BTREE) ENGINE = InnoDB AUTO_INCREMENT = 5 CHARACTER SET = utf8mb4 COLLATE = utf8mb4_0900_ai_ci ROW_FORMAT = Dynamic;-- ------------------------------ Records of user_role_ref-- ----------------------------INSERT INTO `user_role_ref` VALUES (1, 1, 1);INSERT INTO `user_role_ref` VALUES (2, 1, 2);INSERT INTO `user_role_ref` VALUES (3, 2, 2);INSERT INTO `user_role_ref` VALUES (4, 3, 3);SET FOREIGN_KEY_CHECKS = 1;
4.实体类
package com.yl.securitydemo.model;import org.springframework.security.core.GrantedAuthority;import org.springframework.security.core.authority.SimpleGrantedAuthority;import org.springframework.security.core.userdetails.UserDetails;import java.util.ArrayList;import java.util.Collection;import java.util.List;import java.util.Objects;public class User implements UserDetails {private Integer id;private String username;private String password;private Boolean enabled;private Boolean locked;private List<Role> roles;public Integer getId() {return id;}public void setId(Integer id) {this.id = id;}public void setUsername(String username) {this.username = username;}@Overridepublic Collection<? extends GrantedAuthority> getAuthorities() {List<SimpleGrantedAuthority> list = new ArrayList<>();for (Role role : roles) {list.add(new SimpleGrantedAuthority("ROLE_" + role.getName()));}return list;}@Overridepublic String getPassword() {return password;}@Overridepublic String getUsername() {return username;}// 账户是否未过期@Overridepublic boolean isAccountNonExpired() {return true;}// 账户是否未锁定@Overridepublic boolean isAccountNonLocked() {return !locked;}// 凭证是否未过期@Overridepublic boolean isCredentialsNonExpired() {return true;}@Overridepublic boolean isEnabled() {return enabled;}public void setPassword(String password) {this.password = password;}public void setEnabled(Boolean enabled) {this.enabled = enabled;}public void setLocked(Boolean locked) {this.locked = locked;}public List<Role> getRoles() {return roles;}public void setRoles(List<Role> roles) {this.roles = roles;}@Overridepublic boolean equals(Object o) {if (this == o) return true;if (o == null || getClass() != o.getClass()) return false;User user = (User) o;return username.equals(user.username);}@Overridepublic int hashCode() {return Objects.hash(username);}@Overridepublic String toString() {return "User{" +"id=" + id +", username='" + username + '\'' +", password='" + password + '\'' +", enabled=" + enabled +", locked=" + locked +'}';}}
package com.yl.securitydemo.model;import java.io.Serializable;public class Role implements Serializable {private Integer id;private String name;private String description;public Integer getId() {return id;}public void setId(Integer id) {this.id = id;}public String getName() {return name;}public void setName(String name) {this.name = name;}public String getDescription() {return description;}public void setDescription(String description) {this.description = description;}@Overridepublic String toString() {return "Role{" +"id=" + id +", name='" + name + '\'' +", description='" + description + '\'' +'}';}}
package com.yl.securitydemo.model;import java.io.Serializable;public class UserRoleRef implements Serializable {private Integer id;private Integer userId;private Integer roleId;public Integer getId() {return id;}public void setId(Integer id) {this.id = id;}public Integer getUserId() {return userId;}public void setUserId(Integer userId) {this.userId = userId;}public Integer getRoleId() {return roleId;}public void setRoleId(Integer roleId) {this.roleId = roleId;}@Overridepublic String toString() {return "UserRoleRef{" +"id=" + id +", userId=" + userId +", roleId=" + roleId +'}';}}
5.mapper及其xml文件
package com.yl.securitydemo.mapper;import com.yl.securitydemo.model.Role;import com.yl.securitydemo.model.User;import org.apache.ibatis.annotations.Mapper;import java.util.List;@Mapperpublic interface UserMapper {User loadUserByUsername(String username);List<Role> getRolesByUserId(Integer userId);}
<?xml version="1.0" encoding="UTF-8"?><!DOCTYPE mapper PUBLIC "-//mybatis.org//DTD Mapper 3.0//EN" "http://mybatis.org/dtd/mybatis-3-mapper.dtd"><mapper namespace="com.yl.securitydemo.mapper.UserMapper"><select id="loadUserByUsername" resultType="com.yl.securitydemo.model.User">select * from user where username = #{username}</select><select id="getRolesByUserId" resultType="com.yl.securitydemo.model.Role">select * from role where id in (select role_id from user_role_ref where user_id = #{userId})</select></mapper>
6.userservice
package com.yl.securitydemo.service;import com.yl.securitydemo.mapper.UserMapper;import com.yl.securitydemo.model.User;import org.springframework.beans.factory.annotation.Autowired;import org.springframework.security.core.userdetails.UserDetails;import org.springframework.security.core.userdetails.UserDetailsService;import org.springframework.security.core.userdetails.UsernameNotFoundException;import org.springframework.stereotype.Service;@Servicepublic class UserService implements UserDetailsService {@AutowiredUserMapper userMapper;@Overridepublic UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {User user = userMapper.loadUserByUsername(username);if (user == null) {throw new UsernameNotFoundException("用户名不存在");}user.setRoles(userMapper.getRolesByUserId(user.getId()));return user;}}
7.security的配置
package com.yl.securitydemo.config;import com.yl.securitydemo.service.UserService;import org.springframework.beans.factory.annotation.Autowired;import org.springframework.context.annotation.Bean;import org.springframework.context.annotation.Configuration;import org.springframework.security.authentication.AuthenticationManager;import org.springframework.security.authentication.ProviderManager;import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;import org.springframework.security.config.annotation.web.builders.HttpSecurity;import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;import org.springframework.security.core.Authentication;import org.springframework.security.core.AuthenticationException;import org.springframework.security.core.userdetails.UserDetailsService;import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;import org.springframework.security.crypto.password.NoOpPasswordEncoder;import org.springframework.security.crypto.password.PasswordEncoder;import org.springframework.security.web.authentication.AuthenticationFailureHandler;import org.springframework.security.web.authentication.AuthenticationSuccessHandler;import org.springframework.security.web.session.HttpSessionEventPublisher;import org.springframework.session.FindByIndexNameSessionRepository;import org.springframework.session.security.SpringSessionBackedSessionRegistry;import javax.servlet.ServletException;import javax.servlet.http.HttpServletRequest;import javax.servlet.http.HttpServletResponse;import java.io.IOException;@Configurationpublic class SecurityConfig extends WebSecurityConfigurerAdapter {@AutowiredUserService userService;@AutowiredFindByIndexNameSessionRepository sessionRepository;// @Autowired// MyWebAuthenticationDetailsSource myWebAuthenticationDetailsSource;@BeanPasswordEncoder passwordEncoder() {return new BCryptPasswordEncoder();}// @Bean// MyAuthenticationProvider myAuthenticationProvider() {// MyAuthenticationProvider provider = new MyAuthenticationProvider();// provider.setPasswordEncoder(passwordEncoder());// provider.setUserDetailsService(userService);// return provider;// }@BeanSpringSessionBackedSessionRegistry sessionRegistry() {return new SpringSessionBackedSessionRegistry(sessionRepository);}// @Bean// HttpSessionEventPublisher httpSessionEventPublisher() {// return new HttpSessionEventPublisher();// }// @Override// @Bean// protected AuthenticationManager authenticationManager() throws Exception {// return new ProviderManager(myAuthenticationProvider());// }@Overrideprotected void configure(AuthenticationManagerBuilder auth) throws Exception {auth.userDetailsService(userService);}@Overrideprotected void configure(HttpSecurity http) throws Exception {http.authorizeRequests()// .antMatchers("/getVerifyCode")// .permitAll().anyRequest().authenticated().and().formLogin()// .authenticationDetailsSource(myWebAuthenticationDetailsSource).permitAll().and().csrf().disable().sessionManagement().maximumSessions(1) //限制能登录的用户个数为1.maxSessionsPreventsLogin(true)// 禁止后面的用户登录.sessionRegistry(sessionRegistry());}}
8.controller
package com.yl.securitydemo.controller;import org.springframework.beans.factory.annotation.Value;import org.springframework.web.bind.annotation.GetMapping;import org.springframework.web.bind.annotation.RestController;import javax.servlet.http.HttpSession;@RestControllerpublic class HelloController {@GetMapping("/hello")public String hello() {return "hello";}@Value("${server.port}")Integer port;@GetMapping("/get")public String get(HttpSession session) {return session.getAttribute("name") + ":" + port;}@GetMapping("/set")public String set(HttpSession session){session.setAttribute("name","yl");return String.valueOf(port);}}
9.测试
1.打包项目,并且以8080和8081两个端口号启动两个实例
2.在客户端A登录admin账号,并且访问8080端口的hello接口
3.在客户端B再登录admin账号,访问8081端口的hello接口,登录发现账号已经登录了,成功限制用户的登录个数为1
版权说明 : 本文为转载文章, 版权归原作者所有 版权申明
原文链接 : https://blog.csdn.net/weixin_41359273/article/details/124178779
内容来源于网络,如有侵权,请联系作者删除!