devbox
小舞很执着
这个屌丝很懒,什么也没留下!
关注作者
热门标签
热门文章
当前位置:   article > 正文

基于springsecurity、mybatisplus实现注册功能_mabatisplus判断电话号,用户名,身份证号不可重复

作者:小舞很执着 | 2024-08-03 07:25:16

mabatisplus判断电话号,用户名,身份证号不可重复

使用springsecurity框架提供了加密算法,方便对密码进行加密

1、新建项目、数据库配置、添加依赖

2、代码生成

3、不使用security框架注册的效果

4、使用security中的PasswordEncoder进行加密

5、测试

 6、补充(判断是否重复、空值

使用springsecurity框架提供了加密算法,方便对密码进行加密

1、新建项目、数据库配置、添加依赖

新建一个spring boot项目,数据库User表。

依赖:web、security、mybatisplus、mysql、lombok

  1. <!--web-->
  2.         <dependency>
  3.             <groupId>org.springframework.boot</groupId>
  4.             <artifactId>spring-boot-starter-web</artifactId>
  5.         </dependency>
  6.  
  7.         <!--mybatisplus-->
  8.         <dependency>
  9.             <groupId>com.baomidou</groupId>
  10.             <artifactId>mybatis-plus-boot-starter</artifactId>
  11.             <version>3.4.3</version>
  12.         </dependency>
  13.  
  14.         <!--mysql-->
  15.         <dependency>
  16.             <groupId>mysql</groupId>
  17.             <artifactId>mysql-connector-java</artifactId>
  18.         </dependency>
  19.  
  20.         <!--security-->
  21.         <dependency>
  22.             <groupId>org.springframework.boot</groupId>
  23.             <artifactId>spring-boot-starter-security</artifactId>
  24.         </dependency>
  25.  
  26.         <!--lombok-->
  27.         <dependency>
  28.             <groupId>org.projectlombok</groupId>
  29.             <artifactId>lombok</artifactId>
  30.         </dependency>

 application.yml

  1. server:
  2.   port: 8080
  3.  
  4. spring:
  5.   datasource:
  6.     driver-class-name: com.mysql.cj.jdbc.Driver
  7.     url: jdbc:mysql://localhost:3306/forum?characterEncoding=utf-8&useSSL=false&serverTimezone=UTC
  8.     username: root
  9.     password: 123456
  10.  
  11. mybatis-plus:
  12.   global-config:
  13.     db-config:
  14.       #数据库主键自增
  15.       id-type: auto
  16.       #逻辑删除
  17.       logic-delete-field: delFlag
  18.       #逻辑已删除
  19.       logic-delete-value: 1
  20.       #逻辑未删除
  21.       logic-not-delete-value: 0
  22.     configuration:
  23.       #是否开启自动驼峰命名规则映射
  24.       map-underscore-to-camel-case: true
  25.       #开启控制台 SQL 日志打印
  26.       log-impl: org.apache.ibatis.logging.stdout.StdOutImpl

2、代码生成

生成UserService、UserServiceImpl、UserController、User实体类

3、不使用security框架注册的效果

UserController

  1. package com.example.demo.controller;
  2.  
  3. import com.example.demo.entity.User;
  4. import com.example.demo.service.UserService;
  5. import org.springframework.beans.factory.annotation.Autowired;
  6. import org.springframework.web.bind.annotation.GetMapping;
  7. import org.springframework.web.bind.annotation.PostMapping;
  8. import org.springframework.web.bind.annotation.RequestBody;
  9. import org.springframework.web.bind.annotation.RestController;
  10.  
  11.  
  12. @RestController
  13. public class UserController {
  14.     @Autowired
  15.     private UserService userService;
  16.     @PostMapping("/register")
  17.     public String register(@RequestBody User user){
  18.         return userService.register(user);
  19.     }
  20. }

UserSercixeImpl

  1. package com.example.demo.service.impl;
  2.  
  3. import com.baomidou.mybatisplus.extension.service.impl.ServiceImpl;
  4. import com.example.demo.entity.User;
  5. import com.example.demo.mapper.UserMapper;
  6. import com.example.demo.service.UserService;
  7. import org.springframework.stereotype.Service;
  8.  
  9. @Service
  10. public class UserServiceImpl extends ServiceImpl<UserMapper, User> implements UserService {
  11.     @Override
  12.     public String register(User user) {
  13.         boolean save = save(user);
  14.         return String.valueOf(save);
  15.     }
  16. }

注释掉security依赖发送请求,我们可以看到存到数据库里的密码是明文密码,未经过加密的

 

 

4、使用security中的PasswordEncoder进行加密

取消security注释

配置SecurityConfig配置类

SecurityConfig

  1. package com.example.demo.config;
  2.  
  3. import org.springframework.context.annotation.Bean;
  4. import org.springframework.context.annotation.Configuration;
  5. import org.springframework.security.authentication.AuthenticationManager;
  6. import org.springframework.security.config.annotation.web.builders.HttpSecurity;
  7. import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
  8. import org.springframework.security.config.http.SessionCreationPolicy;
  9. import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
  10. import org.springframework.security.crypto.password.PasswordEncoder;
  11. import org.springframework.stereotype.Component;
  12.  
  13. /**
  14.  * @BelongsProject: SprngSecurityLogin
  15.  * @BelongsPackage: com.example.demo.config
  16.  * @Author: tanxudong
  17.  * @CreateTime: 2023-04-21  18:49
  18.  * @Description: TODO
  19.  * @Version: 1.0
  20.  */
  21. @Configuration
  22. public class SecurityConfig extends WebSecurityConfigurerAdapter {
  23.  
  24.     @Bean
  25.     @Override
  26.     public AuthenticationManager authenticationManagerBean() throws Exception {
  27.         return super.authenticationManagerBean();
  28.     }
  29.  
  30.     @Override
  31.     protected void configure(HttpSecurity http) throws Exception {
  32.         /*基于spring security,为了防止跨站提交攻击,通常会启用csrf,
  33.         所有http请求都被会CsrfFilter拦截,
  34.         而CsrfFilter中有一个私有类DefaultRequiresCsrfMatcher,
  35.         POST方法被排除在外了,也就是说只有GET|HEAD|TRACE|OPTIONS这4类方法会被放行。*/
  36.         http.csrf().disable()
  37.                 .authorizeRequests().mvcMatchers("/register").permitAll();
  38.     }
  39.  
  40.     @Bean
  41.     public PasswordEncoder passwordEncoder(){
  42.         return new BCryptPasswordEncoder();
  43.     }
  44.  
  45. }

UserServiceImpl

  1. package com.example.demo.service.impl;
  2.  
  3. import com.baomidou.mybatisplus.extension.service.impl.ServiceImpl;
  4. import com.example.demo.entity.User;
  5. import com.example.demo.mapper.UserMapper;
  6. import com.example.demo.service.UserService;
  7. import org.springframework.beans.factory.annotation.Autowired;
  8. import org.springframework.security.crypto.password.PasswordEncoder;
  9. import org.springframework.stereotype.Service;
  10.  
  11. /**
  12.  * @BelongsProject: SprngSecurityLogin
  13.  * @BelongsPackage: com.example.demo.service.impl
  14.  * @Author: tanxudong
  15.  * @CreateTime: 2023-04-21  17:58
  16.  * @Description: TODO
  17.  * @Version: 1.0
  18.  */
  19. @Service
  20. public class UserServiceImpl extends ServiceImpl<UserMapper, User> implements UserService {
  21.     @Autowired
  22.     private PasswordEncoder passwordEncoder;
  23.     @Override
  24.     public String register(User user) {
  25.         String encodePassword = passwordEncoder.encode(user.getPassword());
  26.         user.setPassword(encodePassword);
  27.         boolean save = save(user);
  28.         return String.valueOf(save);
  29.     }
  30. }

5、测试

再次发起post请求

对比两次结果,没使用security前是明文密码,使用后是密文

 

 6、补充(判断是否重复、空值)

有时候会要求用户名唯一,所以要加一次判断,判断是否重复。

同时,不仅需要前端进行某些字段的判空,后端也需要进行一次判断。

  1. package com.example.demo.service.impl;
  2.  
  3. import com.baomidou.mybatisplus.core.conditions.query.LambdaQueryWrapper;
  4. import com.baomidou.mybatisplus.extension.service.impl.ServiceImpl;
  5. import com.example.demo.entity.User;
  6. import com.example.demo.mapper.UserMapper;
  7. import com.example.demo.service.UserService;
  8. import org.springframework.beans.factory.annotation.Autowired;
  9. import org.springframework.security.crypto.password.PasswordEncoder;
  10. import org.springframework.stereotype.Service;
  11. import org.springframework.util.StringUtils;
  12.  
  13. /**
  14.  * @BelongsProject: SprngSecurityLogin
  15.  * @BelongsPackage: com.example.demo.service.impl
  16.  * @Author: tanxudong
  17.  * @CreateTime: 2023-04-21  17:58
  18.  * @Description: TODO
  19.  * @Version: 1.0
  20.  */
  21. @Service
  22. public class UserServiceImpl extends ServiceImpl<UserMapper, User> implements UserService {
  23.     @Autowired
  24.     private PasswordEncoder passwordEncoder;
  25.     @Override
  26.     public String register(User user) {
  27.  
  28.         /*对用户名是否重复进行判断,同理其他的也可以这样判断*/
  29.         if (ExistUsername(user.getUsername())){
  30.             throw new RuntimeException("用户名重复");
  31.         }
  32.  
  33.         /*判断用户名是否为空*/
  34.         if (!StringUtils.hasText(user.getUsername())){
  35.             throw new RuntimeException("用户名不能为空");
  36.         }
  37.  
  38.         String encodePassword = passwordEncoder.encode(user.getPassword());
  39.         user.setPassword(encodePassword);
  40.         boolean save = save(user);
  41.         return String.valueOf(save);
  42.     }
  43.  
  44.     /*对用户名是否重复进行判断*/
  45.     private boolean ExistUsername(String username) {
  46.         LambdaQueryWrapper<User> queryWrapper = new LambdaQueryWrapper<>();
  47.         queryWrapper.eq(User::getUsername,username);
  48.         //如果查询的条数大于0,说明重复,返回true
  49.         return count(queryWrapper)>0;
  50.     }
  51. }

 

声明:本文内容由网友自发贡献,不代表【wpsshop博客】立场,版权归原作者所有,本站不承担相应法律责任。如您发现有侵权的内容,请联系我们。转载请注明出处:https://www.wpsshop.cn/w/小舞很执着/article/detail/922018
推荐阅读
相关标签

Copyright © 2003-2013 www.wpsshop.cn 版权所有,并保留所有权利。

  

闽ICP备14008679号